Senior Security Engineer

Summary

Join Appfire's Information Security team as a Senior Security Engineer, reporting to the CISO. You will contribute to diverse security engineering and architecture tasks, managing risk and collaborating with business leaders. Responsibilities include designing and supporting security in cloud environments, performing security assessments and penetration testing, enforcing compliance, and supporting incident response. You will also contribute to vulnerability management and integrate security standards into Appfire acquisitions. This role offers remote work flexibility from any location in Poland and opportunities for professional development. Appfire prioritizes a people-first approach, offering flexible work arrangements and various benefits.

Requirements

• Degree in Computer Science, Information Security, Engineering, or equivalent experience
• 5+ years of experience working in cyber security engineering and/or architecture at a software company
• Experience with at least one vulnerability scanning tool (e.g., Qualys, Rapid7, Wiz, etc.)
• Experience as a pen tester for web-based applications and familiarity with the OWASP top ten vulnerability categories
• Working knowledge of at least one scripting language, Python preferred, and Linux concepts/command-line familiarity
• Understanding of key cryptography concepts such as symmetric/asymmetric keys, algorithms, and protocols (PKI, GPG, RSA, x509 certificates, and TLS/SSL)
• Ability to work effectively within a fast-paced, changing environment with high growth
• A self-starter with a demonstrated ability to take initiative, who can proactively identify issues/opportunities and recommend actions
• Strategic analysis, creative problem-solving, and business judgment are required
• Excellent interpersonal and communication skills, including writing skills

Responsibilities

• Collaborate with Engineering, IT Operations, and DevOps to design, engineer, and support security within our cloud environments, products, and vendor solutions, while promoting DevSecOps
• Perform security assessments and penetration testing (manage and perform) on web applications, mobile clients, etc
• Enforce continuous security compliance for our Cloud apps and cloud infrastructure
• Review and approve controls needed to protect data and technology assets in compliance with policies, regulations, and legal requirements
• Support incident response and security operations
• Ensure compliance with and support our vulnerability management program, including SCA, SAST, DAST, penetration testing, and bug bounty programs
• Provide expertise in the integration efforts of Appfire acquisitions and alignment to information security standards and policies
• Implement and maintain information security systems and services to support the Information Security team
• Engage in professional development to maintain continual growth in professional skills and knowledge essential to the position

Preferred Qualifications

• Experience performing security work in a multi-cloud environment is preferred
• Experience with basic SQL and manipulating large data files preferred
• Knowledge of common information security frameworks such as CIS, NIST, ISO 27001 & SOC 2 a plus
• You are dedicated to elevating client and co-worker experiences, knowing that exceptional work centers on serving others
• You adapt swiftly to new business demands, understanding that change fuels collective and individual growth
• You excel in communication, effectively connecting in remote/hybrid environments using tools like Slack, Zoom, and G Suite and through occasional in-person events
• You have exceptional coaching, mentoring, and people development skills

Benefits

• Salary Ranges: Perm (UoP) 24 000 - 28 000 PLN gross/month
• Every Appfire employee is eligible for company equity
• Home Office allowance – 200 PLN/month to cover your electricity and internet bills
• MyBenefit Platform – 150 PLN/month to spend on shopping, culture and entertainment, Multisport, travel, and more
• Lunch Card – 300 PLN/month to spend on groceries/restaurants (excluding alcohol and other excise duties items)
• You can apply for a 50% tax-deductible cost on creative works (AKUP/IP tax-deductible costs)
• Access to the Appfire University learning platform – a hub of knowledge, interactive resources, and engaging instructor-led courses designed to fuel your learning journey with unparalleled depth and accessibility
• English language courses
• 26 working days of paid annual leave, regardless of years of experience
• Wellness Days – additional time off each month to recharge and take care of yourself
• Private healthcare
• Life Insurance
• 3 fully paid days each year to participate in Appfire Town, Appfire’s Corporate Social Responsibility (CSR) Program
• Indefinite Employment contract from day one, no trial periods