- Position: Senior Security Architect
- Working model: Mostly remote, 5 office visits per year
- Rates: up to 39 000 PLN/month
Join our client! They are a product company that creates a platform that facilitates communication and monitoring of employees not work at desks in large companies. The application is available in both web and mobile versions. It easily enables the integration of internal company systems, customer databases, internal customer calendars, and other messengers, all available on your smartphone! The application is dedicated to companies from various industries (SaaS).
The role:
We’re looking for a Senior Security Architect to safeguard our client’s cloud solutions and web applications. Dive into a dynamic role where your expertise in pentest, SAST, DAST, IDS, SDLC, and DevOps will make a real impact. Collaborate with talented teams and drive security best practices.
Responsibilities:
- Execute and enhance the Beekeeper Security posture.
- Be a key contributor in developing a security strategy towards AI usage.
- Manage recurring security review processes, including penetration testing.
- Own automated DAST, SAST, and SCA setups, coordinate follow-up actions resolution across the organization, and tune for maximal efficiency.
- Contribute to Software Development Lifecycle by promoting secure coding, API, and AI security; review third-party components and vulnerabilities with SCA tool.
- Conduct risk assessments, perform Threat Intelligence reviews, and manual security analysis (SIEM alerts).
- Coordinate internal security knowledge sharing sessions facilitated by engineers, support the security awareness trainings.
Requirements:
- 6+ years of professional experience in application and cloud security.
- Experience applying security best practices in cloud environments such as AWS and GCP.
- Understanding of emerging security concerns related to LLMs and AI systems.
- Strong understanding of application and API security principles (e.g., OWASP Top 10, OWASP API Top 10).
- Solid understanding of data security, encryption techniques and secure data handling.
- Practical experience with source code analysis and the ability to read and understand Python and Java.
- Working knowledge of network protocols and security concepts, including TCP/IP, DNS, WAFs, and IDS.
- Understanding of SaaS microservice architecture, container orchestration, and security controls
- Hands-on experience with security monitoring tools: SAST, DAST, SCA
- Strong grasp of CI/CD pipeline security practices and automation tooling.
- Hands-on experience with Kubernetes and containerized infrastructure.
- Hands-on experience with SCA tools and vulnerability management
Very nice to have:
- Advanced interest or expertise in LLM/AI security.
- Production experience writing Python and Java code.
- Familiarity with Azure cloud security practices.
- Experience with Jenkins CI/CD pipelines.
- Knowledge of Terraform or similar IaC orchestrated platforms.
- Contributions to security communities or open-source projects.
- Proven ability to collaborate across DevOps and InfoSec teams.
The offer:
- An amazing team with 20+ nationalities
- Eager to learn?! We have a Personal Learning & Development Budget to help you develop all the skills you need to succeed.
- Phone & Home Internet reimbursement every month.
- 26 days of annual leave per year + 2 Mental Health Days per year
- Sabbatical Program – 1 month paid leave at 3, 6, 10 years of tenure.
- Private medical insurance — covered for you and partially for your partner/family
- Creative Allowance
- Laptop for work purposes.
- Budget for setting up your home office.