Senior Security Engineer

Summary

Join airSlate's Security Team and contribute to the protection of user data and platform stability. You will conduct comprehensive security testing of applications, collaborate with various teams to ensure security standards compliance, and provide guidance on secure development practices. Responsibilities include managing security automation tools, supporting incident response, and configuring security solutions. The ideal candidate possesses a Bachelor's degree in a technical field, at least 4 years of relevant experience, and strong communication skills. airSlate offers a flexible work environment, bonuses, professional growth opportunities, health and well-being benefits, stock options, and open communication.

Requirements

• Bachelor's degree in a technical field (e.g., Computer Science, Information Security, Engineering) from a technical university
• At least 4 years of professional experience in information security, application security, or a related domain
• Hands-on experience in performing security assessments and understanding system architecture
• Strong communication skills to effectively collaborate and drive remediation efforts
• Experience with security automation tools and integrating them into CI/CD workflows
• Knowledge of compliance standards and frameworks
• Proficiency in incident response and post-mortem analysis
• Ability to provide security guidance throughout the SDLC
• ��1 level English proficiency (both written and spoken) is required

Responsibilities

• Conduct comprehensive security testing of web, mobile, and network-based applications. This includes performing security assessments, identifying risks, and advocating for necessary fixes in collaboration with product and engineering teams
• Collaborate with product and compliance teams to ensure adherence to security standards and frameworks (e.g., PCI DSS, SOC 2, CASA) and assist in audit and external assessment preparations
• Provide guidance on secure development practices at all stages of the SDLC, including architecture reviews, threat modeling, and risk assessments, to support secure-by-design solutions
• Manage and maintain security automation tools such as SAST, DAST, SCA, and others, ensuring effective vulnerability detection, reporting, and integration into CI/CD workflows
• Support incident response efforts, including investigation, triage, containment, and post-mortem analysis across various scenarios (application-level, infrastructure, user-related, etc.)
• Configure and monitor CDN, Web Application Firewalls (WAF), and bot management solutions to enhance application security
• Apply a strong generalist security foundation to various tasks, including: Cloud security best practices (AWS/GCP), Endpoint protection (e.g., antivirus, EDR solutions), User security awareness initiatives, Development and enforcement of information security policies, Threat modeling and risk assessment methodologies (e.g., STRIDE)

Benefits

• Flexible work environment — We value the advantages of in-person collaboration and prioritize work from our offices in Wroclaw or Bialystok. However, we also provide flexible work arrangements to accommodate remote or hybrid options and flexible scheduling
• Bonuses and compensation — On top of a competitive base salary, we reward our team members' performance with a quarterly bonus to recognize achievements, time, and effort
• Professional growth opportunities — We are committed to ongoing improvement and welcome those passionate about learning. We cover professional development courses, conferences, literature, English classes, and more for each team member
• Health and well-being — We prioritize the health and well-being of our team. This is why we provide a Luxmed subscription, a multisport card for every team member, access to the office's massage room, free lunches, and healthy in-office snacks to sustain your energy
• Stock options — At airSlate, our team members are more than employees; they're business partners. We issue stock options that grant ownership in the company, allowing everyone to share in its growth
• Open communication — We encourage transparent communication from all team members at airSlate. Feel free to share your thoughts, ideas, and concerns with our management team, CEO, any member of our leadership team, or any team lead at any time