Senior Software Security Engineer

Complexio’s Foundational AI platform automates business processes by ingesting and understanding complete enterprise data—both structured and unstructured. Through proprietary models, knowledge graphs, and orchestration layers, Complexio maps human-computer interactions and autonomously executes complex workflows at scale.

Established as a joint venture between Hafnia and Símbolo—with partners including Marfin Management, C Transport Maritime, BW Epic Kosan, and Trans Sea Transport—Complexio is redefining enterprise productivity through context-aware, privacy-first automation.

We're looking for a Senior Software Security Engineer to join our team in implementing a privacy-preserving access control framework across our autonomous business process automation platform. 

Requirements

Responsibilities

• Design and implement a comprehensive data privacy and access control architecture that addresses multi-dimensional classification, dynamic permissions, and information barriers.
• Tech lead a small dedicated team focused on privacy-preserving access controls and coordinate with cross-functional teams including data ingestion, knowledge mapping, and automation developers.
• Develop and enforce security and privacy standards, policies, and best practices throughout the product development lifecycle.

Technical Implementation

• Architect a multi-layered access control model combining Role-Based Access Control (RBAC), Attribute-Based Access Control (ABAC), and purpose-based limitations.
• Oversee implementation of fine-grained data classification frameworks using NLP and other technologies.
• Design and validate permission propagation mechanisms for graph data models and derived insights.
• Establish security boundaries for autonomous AI agents, ensuring proper context isolation and privilege controls.

Cross-Team Coordination

• Work closely with engineering teams to integrate privacy controls into the data pipeline, knowledge graph, and AI components.
• Collaborate with product management to balance privacy requirements with usability and functionality.
• Coordinate with customer success to address client-specific privacy and compliance needs.
• Influence and guide development teams to prioritize privacy-by-design principles.

Qualifications

• 5+ years of experience on a similar position.
• Advanced knowledge of Python (async/await, cryptography libraries, FastAPI).
• Experience with container security (Docker, Kubernetes secrets, network policies).
• Experience with identity providers (Microsoft EntraID, Okta, Auth0 integration)).
• Experience with database systems (PostgreSQL, Redis, experience with graph databases preferred) and cloud security (AWS/Azure IAM, KMS, security groups).
• Knowledge of AI/ML systems and the unique privacy challenges they present.
• Understanding of data privacy regulations (GDPR, CCPA) and their technical implementation requirements.
• Familiarity with LLMs and the privacy implications of their use in enterprise contexts.
• Understanding of vector databases and embedding-based systems.
• Background in data lineage and provenance tracking systems.
• Experience with graph databases (particularly Neo4j) and their security models.
• Security certifications such as CISSP, CIPT, or CIPP/E.
• Experience in regulated industries (finance, healthcare, legal) with complex information barrier requirements.

Core Development Skills

• Experience building encryption systems (e.g. using AES, RSA, and key management services).
• Hands-on development with OAuth 2.0, OpenID Connect, JWT validation, and RBAC/ABAC systems.
• Building secure REST/GraphQL APIs with middleware for authentication, rate limiting, and input validation.
• Implementing access controls, query filtering, and audit logging for SQL and NoSQL databases.
• Securing pub/sub systems with encryption, authentication, and access controls.

Practical Experience

• Built production encryption/decryption systems handling sensitive data at scale.
• Implemented fine-grained permission systems beyond simple role-based access.
• Developed secure multi-tenant applications with data isolation between customers.
• Created audit logging and compliance reporting for regulated environments.
• Integrated with enterprise identity systems in complex organizational structures.

Benefits

• Join a pioneering joint venture at the intersection of AI and industry transformation.
• Work with a diverse and collaborative team of experts from various disciplines.
• Opportunity for professional growth and continuous learning in a dynamic field.