Infrastructure Engineer
NETLOCK Kft.
This opportunity is for you if you…
- have advanced hands-on experience with the following mandatory skills:
- Network infrastructure - deep, hands-on experience with TCP/IP, routing, switching, and VLANs,
- Firewalling and secure connectivity - hands-on firewall management (iptables/nftables and/or an enterprise firewall platform), network segmentation, NAT, DNS/DHCP, and VPN (IPSec, WireGuard, or OpenVPN),
- Load balancing and reverse proxies - HAProxy, nginx, or equivalent,
- Network and system monitoring - metrics, dashboards, and alert rules (e.g. Prometheus + Grafana),
- Scripting and automation of operational tasks (e.g. Bash or Python),
- Incident response / on-call experience - triage, root cause analysis, post-mortems,
- bring a minimum of 2-3 years of professional experience in IT security or infrastructure operations,
- are eager to work hands-on with modern infrastructure, take ownership of critical systems, and continuously learn and improve your technical skills,
- are a native Hungarian speaker (spoken and written) with professional English.
It’s a plus if you...
- have experience modernizing infrastructure with contemporary tooling, such as:
- Kubernetes (EKS, K3s/RKE2) and GitOps with ArgoCD,
- Helm chart authoring,
- have solid Linux server administration experience (installation, configuration, hardening, troubleshooting, patching),
- have experience with configuration management and Infrastructure-as-Code (Ansible, Terraform / Terragrunt),
- have hands-on experience with virtualization and storage (KVM/Proxmox/VMware, LVM/RAID, NFS/SMB),
- have hands-on AWS experience, particularly networking services (VPC, Security Groups, Route 53, ELB/NLB, Transit Gateway),
- have certification or hands-on experience in 2–3 of the following areas:
- Network engineering certifications (e.g. CCNA/CCNP) or enterprise firewall platforms (Fortinet, Palo Alto, Cisco),
- Linux certifications (e.g. RHCSA/RHCE, LFCS),
- PKI/HSM/Certificate Authority operations,
- HashiCorp Vault administration,
- OpenLDAP administration,
- Istio service mesh operations,
- Database operations (PostgreSQL/Aurora, MariaDB, MongoDB Atlas, Redis, Kafka/MSK).
Who we are?
We are a global trust-technology company with more than 25 years of experience in digital identity, advanced cryptography, and qualified trust services. Originating in Hungary and operating internationally with offices in Florida, US and Budapest, HU, we combine European regulatory strength with global reach.
Our team includes one of the region’s largest groups of PKI specialists, cryptographers, and security engineers, experts who have helped shaping the foundations of modern digital trust. As one of Europe’s earliest Qualified Trust Service Providers, we pioneered solutions in electronic signatures, identity verification, cryptographic infrastructure, and content authenticity.
Today, we enable organizations not only to verify identities and sign securely, but to trust their digital world in a way that was never possible before. At the heart of this leap forward is our world-first twin-engine solution: the fusion of C2PA provenance and qualified electronic signatures. This breakthrough creates a verifiable chain of trust for any digital asset, from documents to images to complex media, redefining what authenticity means in the age of AI. It elevates our long-standing trust-service foundations into a new standard for digital truth.
As technology evolves, we are committed to integrating the latest breakthroughs in cryptography, provenance, and AI-driven verification, ensuring trust remains one step ahead of innovation. Our mission is simple: To restore trust in the digital world.
Get to know the role
At NETLOCK, the network is the trust boundary - the certificates we issue and the signatures we activate only mean something if the infrastructure behind them stays secure, segmented, and reachable. In this role you'll own the on-premises network and connectivity layer that makes that possible: firewalls, routing, segmentation, VPN, and load balancing, for systems where misconfiguration isn't just inconvenient, it's a compliance event.
This is a hands-on operations role. You'll run and harden production infrastructure day to day, lead incident response when issues hit, and help move the environment forward with automation and modern tooling. You'll join a small, senior-leaning team operating security-critical systems under real regulatory oversight - including HSM key ceremonies. If you take pride in infrastructure that stays quiet because it's built right, you'll fit in here.
What we offer?
- You will be part of a young, supportive, and dynamic team where junior and more experienced colleagues collaborate closely, support each other, and openly share their knowledge and experience.
- You will work in a modern technology environment where you can freely use the latest tools, technologies, and AI-driven solutions to support your work and drive innovation.
- To make your workdays more enjoyable, we provide unlimited coffee so you can recharge during breaks and informal moments with your colleagues.
- We offer a competitive and above-market salary that reflects your expertise, performance, and the energy you invest in your work.
- In addition to competitive base benefits, after successfully completing your probation period you will also receive a high-value cafeteria benefits package that can be flexibly tailored to your personal needs and lifestyle.
- The health and well-being of our employees is important to us, which is why after your probation period we provide a comprehensive private health insurance package, allowing you to focus on your work while feeling secure in your everyday life.
- In this role, you can expect a high degree of autonomy, giving space for initiative and ownership, while also offering opportunities for rapid professional growth and continuous learning.