Company Background

Our client is a leading global data center provider delivering hyperscale and edge infrastructure solutions across the Americas, EMEA, and Asia-Pacific. With 80+ data centers in 20+ countries, they partner with industry leaders such as Google, Oracle, NVIDIA, and Microsoft Azure to power the world’s digital infrastructure. Recognized as a USA TODAY Top Workplace for four consecutive years, the company continues to expand its global footprint and customer ecosystem.

Project Description

We are looking for a Cloud Infrastructure Engineer to help shape and deliver a modern cloud and hybrid IT strategy across Azure, AWS, and GCP. In this role, you will design scalable, secure, and cost-effective infrastructure that supports enterprise applications, hybrid connectivity, and next-generation data and AI/ML workloads.

Technologies

• Azure ecosystem
• Azure DevOps
• GCP / AWS
• Infrastructure as Code: Bicep
• Windows Server
• Microsoft SQL Server

What You'll Do

• Lead the assessment and modernization of enterprise cloud workloads, defining migration roadmaps across retain, re-platform, refactor, and retire scenarios;
• Design governed multi-cloud landing zones across Azure, AWS, and/or GCP, standardizing networking, identity, policy, and account/subscription topology through Terraform and Bicep;
• Establish cloud-agnostic infrastructure practices, reusable IaC modules, and automated provisioning standards to reduce manual operations and subscription sprawl;
• Govern identity and access across cloud platforms, SaaS applications, and CI/CD workloads using Microsoft Entra ID, conditional access, workload identity federation, and service principal controls;
• Architect secure hybrid and cross-cloud connectivity, including ExpressRoute, SD-WAN, traffic segmentation, and low-latency data transfer patterns;
• Implement zero-trust security controls for IT/OT boundaries, including inspected and policy-enforced traffic flows for SCADA, HMI, ICS, and enterprise systems;
• Design resilient, highly available cloud architectures with defined RTO/RPO targets and automated disaster recovery validation;
• Build platform services, CI/CD templates, and self-service infrastructure capabilities that enable internal teams to consume cloud services through documented standards and APIs;
• Implement governance, policy-as-code, and FinOps practices to enforce security, compliance, cost tagging, spend attribution, and cloud cost optimization;
• Support strategic modernization initiatives, including Kubernetes adoption, application containerization, database optimization, and reduction of Windows server licensing costs;

Job Requirements

• 7+ years of experience in cloud infrastructure engineering, with deep hands-on expertise in Microsoft Azure and production experience with at least two major cloud providers, such as Azure, AWS, or GCP;
• Strong experience with cloud networking, IAM, compute, IaaS/PaaS services, and Microsoft Entra ID / Azure AD, including conditional access, workload identity federation, SAML/SCIM, and service principal governance;
• Proven expertise in IaC using Terraform and/or Bicep, including governed landing zones, module registries, and cloud infrastructure migration;
• Hands-on experience designing and operating CI/CD pipelines using Azure DevOps, GitHub Actions, or similar tools, including pipeline-as-code, security scanning, and deployment gates;
• Solid understanding of zero-trust architecture, IT/OT boundary security, and industrial control environments such as SCADA, HMI, and ICS;
• Experience designing and validating disaster recovery architectures across regions and cloud providers, including RTO/RPO definition and automated failover testing;
• Familiarity with FinOps practices and tools, including cost tagging, spend attribution, showback/chargeback models, CloudHealth, CloudCor, or native cloud cost tools;
• Experience with policy-as-code frameworks such as Azure Policy, AWS SCPs, GCP Organization Policies, or Open Policy Agent;
• English level: B2 or higher;

What Do We Offer

The global benefits package includes:

• Technical and non-technical training for professional and personal growth;
• Internal conferences and meetups to learn from industry experts;
• Support and mentorship from an experienced employee to help you professional grow and development;
• Health insurance;
• English courses;
• Sports activities to promote a healthy lifestyle;
• Flexible work options, including remote and hybrid opportunities;
• Referral program for bringing in new talent;
• Work anniversary program and additional vacation days.

Salary Range: PLN 350,700 - 474,400 + Benefits + Equity

Subject to alignment to the responsibilities and duties of the role.

About Graphcore

At Graphcore, we’re building the future of AI compute.We’re a team of semiconductor, software and AI experts, with deep experience in creating the complete AI compute stack - from silicon and software to infrastructure at datacenter scale.As part of the SoftBank Group, backed by significant long-term investment, we are delivering key technology into the fast-growing SoftBank AI ecosystem.To meet the vast and exciting AI opportunity, Graphcore is expanding its teams around the world.We are bringing together the brightest minds to solve the toughest problems, in a place where everyone has the opportunity to make an impact on the company, our products and the future of artificial intelligence.

Job Summary 

You will contribute to the architecture, implementation and deployment of highly scalable management and observability solutions for AI infrastructure built using our next-generation products.  Covering monitoring, observability, control, and data center infrastructure management, you will work with software, cloud and customer-facing teams, to establish first-hand knowledge of these solutions, creating proof-of-concepts, reference designs and integrations with third-party tooling.

Your team will work with product, architecture and other delivery teams to ensure that functionally complete, simple to deploy, and easy to use solutions are deployed internally to support engineering efforts and supply reference designs to our customers.

Responsibilities and Duties

• Contribute to all phases of overall product development, from product definition, architecture, and design, through implementation, debugging, testing and early customer support.
• Contribute to the design and implementation of fault-remediation solutions at scale.
• Implement multi-component integrations based on Graphcore and third-party technology stacks, from data ingestion to decision making, ensuring seamless management, monitoring and UI.
• Create reference designs including documentation, configuration files, scripts, source code, etc.
• Deploy solution(s) internally for use by our engineering teams to aid debugging, performance analysis, benchmarking, test/QA, etc. at all scales.
• Maintain and improve deployed infrastructure long term to provide the best service for our customers.
• Ensure solutions are properly tested by working with the development and QA teams to enhance unit testing and ensure a comprehensive test plan is in place.
• Mentor and guide junior engineers, fostering a culture of continuous learning and improvement.

Skills and Experience 

• BSc or MSc degree in Computer Engineering, Computer Science, or related degree or equivalent experience.
• Demonstrated success in architecting and implementing scalable, performant, reliable cluster management systems including telemetry collection & analysis engines.
• Experience in managing big scale datacenters focusing on hardware observability solutions.
• Experience in maintaining and scaling modern observability stacks using Prometheus, Grafana, OTEL, ClickHouse, Kafka, Superset or Elastic Stack
• Understanding of secure telemetry practices and data exposure controls.
• Working knowledge of Datadog, Dynatrace or Splunk.
• Experience in large-scale telemetry datasets, time series databases, down-sampling techniques, and creating actionable dashboards.
• Experience automation technologies, such as Ansible or Terraform.
• Experience in containerisation (Docker, Kubernetes) 
• Experience in managing or developing in Linux environments.
• Strong and demonstrable skill in at least one of C/C++/Go and Python.
• Excellent written and verbal communication skills.

Desirable:

• Knowledge of cloud-native development and deployment methodologies (SaaS/PaaS/IaaS).
• Knowledge of data center networking and monitoring best practices.
• Knowledge of monitoring, observability and management solutions in use by hyperscalers.
• Knowledge of declarative management systems.

Benefits

In addition to a competitive salary, annual leave policy, medical and dental health plans, a gym card and employee pension (matched up to 4%). We review our benefits on a yearly basis to ensure we offer a valuable and rewarding benefits programme to our employees.  We welcome people of different backgrounds and experiences; we’re committed to building an inclusive work environment that makes Graphcore a great home for everyone. We offer an equal opportunity process and understand that there are visible and invisible differences in all of us. We can provide a flexible approach to interview and encourage you to chat to us if you require any reasonable adjustments.

Sponsorship

Applicants for this position must hold the right to work in the Poland. Unfortunately at this time, we are unable to provide visa sponsorship or support for visa applications.

Company Background

Our client is the market leader in contact center robotic process automation (RPA). Its patented platform automates manual management processes in contact centers, helping enterprises reduce costs while improving agent engagement and customer experience. The platform powers over 1 billion automated actions annually and has delivered significant measurable ROI across industries such as financial services, telecommunications, insurance, and healthcare.

Project Description

The project focuses on deploying and managing a multi-tenant, namespace-isolated Kubernetes platform in a hosted AWS environment. You will design and implement secure, scalable tenant environments, automate deployments using GitOps, and ensure infrastructure reliability and compliance.

Technologies

• Kubernetes, Helm, Kustomize, GitOps (Argo CD, Flux), OpenTofu
• AWS (RDS, S3, KMS, IAM, Secrets Manager)
• NiFi, MariaDB, Flink, Dremio
• OpenTelemetry, Grafana, Jaeger/Tempo, ELK/Loki
• Service Mesh (Linkerd, Istio), OPA
• Bash, Python, PowerShell

What You'll Do

• Design and implement namespace-isolated tenant environments within shared Kubernetes clusters;
• Develop and maintain Helm charts with tenant-specific configurations;
• Build and manage GitOps-based CI/CD pipelines for per-tenant deployments;
• Integrate tenant workloads with backend systems (RDS/MariaDB, Flink, Dremio, S3);
• Implement compute isolation (node affinity, taints, tolerations);
• Apply security controls (RBAC, NetworkPolicies, OPA, service mesh);
• Ensure observability and monitoring using OpenTelemetry, Grafana, and centralized logging;
• Support secure deployment automation and rollback strategies;
• Collaborate with architecture and security teams on compliance validation;
• Participate in backend readiness efforts and transition from NiFi to microservices;

Job Requirements

• 5+ years of experience in DevOps, cloud infrastructure, or platform engineering;
• Strong hands-on experience with Kubernetes, including multi-tenant architecture and namespace management;
• Proficiency with Helm, Kustomize, and GitOps tools (Argo CD, Flux);
• Hands-on experience with AWS services (RDS, S3, IAM, KMS, Secrets Manager);
• Experience implementing secure CI/CD pipelines;
• Familiarity with backend/data systems (Flink, Dremio, MariaDB);
• Experience with NiFi (process groups, permissions, variable registries);
• Understanding of service mesh technologies and policy enforcement (OPA);
• Scripting experience (Bash, Python, PowerShell);
• Strong analytical and troubleshooting skills;
• Ability to work independently in fast-paced environments;
• Excellent collaboration and communication skills;
• English level: B2 or higher;

What Do We Offer

The global benefits package includes:

• Technical and non-technical training for professional and personal growth;
• Internal conferences and meetups to learn from industry experts;
• Support and mentorship from an experienced employee to help you professional grow and development;
• Health insurance;
• English courses;
• Sports activities to promote a healthy lifestyle;
• Flexible work options, including remote and hybrid opportunities;
• Referral program for bringing in new talent;
• Work anniversary program and additional vacation days.

Work with HelloFresh in Warsaw and its HelloTech organisation, HelloFresh’s global technology backbone with more than 1000 people, building the digital products that power our end-to-end food experience. From meal kits and ready-to-eat meals to specialty offerings like pet food and premium meat & seafood, HelloTech creates the platforms that bring tailored food solutions to millions of customers every month.

Our subscription-based, direct-to-consumer model relies on technology at every step, from customer-facing apps and personalization logic to pricing, forecasting, supply chain optimization, and initiatives that help reduce food waste. While our brands operate independently to serve distinct customer needs, they are united by shared platforms, data, and operational excellence built by HelloTech.

HelloTech works in autonomous, cross-functional alliances, each owning a specific product or domain end to end. By working with our Warsaw office, you will help shape scalable, data-driven products used across 18 countries, working with a modern tech stack and international teams to continuously improve how people discover, order, and enjoy HelloFresh’s products, today and in the future.

—

About the role: What's in the Box

This journey involves keeping HelloFresh a trusted name—someone with a passion for security and an appetite for new challenges. Security Engineers work in a variety of ways to constantly iterate and improve HelloFresh’s security posture.

This role aims to improve the HelloFresh Security Logging & Monitoring Program by maturing the tools, processes, and playbooks to reduce dwell time (indicators of which would be lowered MTTD&R). You will facilitate efficient Incident Detection and Response in AWS cloud and enterprise IT environments.

At HelloTech, flexibility and cross-functional collaboration are core to how we work. While this role is aligned to a specific focus area, strong candidates may also be considered for opportunities across different teams or projects.

What you’ll do: The Recipe

• Responsible for SOC monitoring, use-case building, triage, and advisory using cloud-native SIEM platforms.
• Conduct initial triage of security events and incidents and document progress throughout the Incident Response Lifecycle.
• Automate, optimize, and operate modern security solutions like EDR/EPPs and conventional Firewalls, IDS/IPS, Email Security, VPN, and MDM tools.
• Leverage premium and open-source threat intel feeds to regularly sweep environments against rising APT campaigns.
• Prepare status reports and follow up with the stakeholders through Jira and Incident Mgmt. Platform to close the remediation loop.
• Contribute to the continuous improvement of security logging and monitoring maturity.

What you’ll bring: The Ingredients

• A minimum of 2 years of experience working in mature SOC environments.
• Security monitoring and incident response experience in public cloud environments such as AWS.
• Experience with cloud SIEM & SOAR platforms, DDoS mitigation and prevention tools, and Layer-7 Web-based perimeter security controls.
• Understanding of network intrusion methods, network containment, segregation techniques, and technologies such as Sandboxes and Intrusion Detection/Prevention Systems (ID/PS).
• Ability to operate EDR, EPP, and Device Management solutions as per best security practices.
• Decent programming skills to enable data processing, IaC, and security automations.
• Good communication and reporting skills.
• Experience with log analysis stacks like ElasticSearch, Splunk, or SumoLogic.
• Open to working on-call in rotational shifts.

Above all, we are looking for individuals who will make HelloFresh better. We believe there are many different ways of developing skills and we love diverse experiences! So even if you don’t “tick all the boxes” but think you’d thrive in this role, we would really like to learn more about you.

What we offer: The Toppings

• Global collaboration at scale: Collaborate with experienced engineers and product partners across HelloTech’s international teams, in a culture of active knowledge sharing.
• Technology with real-world impact: Build and operate modern systems at global scale, supporting 6+ million customers and complex supply chain operations.
• Technical/Product/Design leadership: Drive best practices and influence architecture/design, quality, and ways of working in an autonomous, product-led setup.
• End-to-end development/delivery: Drive decisions from problem definition to production, improving systems and enabling long-term scalability.
• Access to workspace at Warsaw Centre Point: The hub offers modern facilities including showers, breakout zones, outdoor space, cycle parking, and refreshments (coffee, soft drinks, and fruit).

Are you the missing ingredient? If this sounds like a tasty opportunity, we’d be excited to hear from you. We aim to review your profile and respond within 5 business days.

#IT & #Security

About the Role

Veeam is looking for a Senior Data Security & Privacy Engineer to own privacy-by-design and data protection engineering for the Veeam Data Cloud (VDC) data plane on Microsoft Azure and AWS. You will be the dedicated security and privacy engineering partner for VDC, responsible for how customer data is classified, ingested, encrypted, stored, processed, accessed, monitored, retained, and deleted across VDC workloads. 
 
This is a product security and enablement role: you will build shared security/privacy services, guardrails, and paved roads that make secure, compliant defaults easy for product teams to adopt. You will ship code via pull requests, provide reference implementations and self-service tooling, and measure adoption to drive consistent protections across the data plane. 
 

What You’ll Do

• Build and maintain shared platform capabilities that enable product teams to securely access Veeam Data Cloud and services (humans, services, agents) with secure-by-default patterns.
• Set standard patterns for authentication, authorization, and least-privilege access in a multi-tenant SaaS environment, with explicit focus on customer data access (humans, services, automation, break-glass).
• Engineer and operationalize privacy-by-design controls: data minimization, purpose limitation, and safe-by-default handling of personal/sensitive data (incl. data discovery and classification).
• Build and maintain data lifecycle mechanisms (retention policies, legal hold support where applicable, secure deletion, export/erasure workflows) that scale across tenants and regions.
• Own the encryption and key management strategy for customer data (in transit and at rest), including key rotation, access policies, and integrations with platform KMS (e.g., Azure Key Vault / managed HSM where used).
• Define and build a shared security + privacy control plane with internal APIs/SDKs and self-service workflows (tenant isolation, policy-as-code, consistent enforcement, abuse/rate limiting, and guardrails that reduce the chance of data exposure).
• Define secure logging, audit trails, and telemetry libraries (what we log, how we avoid/ redact sensitive data, how logs support detection, incident response, and privacy investigations).
• Ship production-quality code (services, SDKs, templates, lint rules, CI/CD checks, infrastructure-as-code guardrails) that creates paved roads and makes the secure path the default path for product teams.
• Create reference architectures, reusable patterns, and developer documentation; run enablement (onboarding, office hours) and define adoption metrics to drive consistent rollout across teams. 
• Build scalable data-flow mapping and threat modeling mechanisms (templates, tooling, review checklists) for features that touch customer data; translate findings into platform backlog items and reusable controls.
• Partner with Engineering, SRE, AI Security, Platform Security, Product Security, and Compliance/Privacy stakeholders to improve security and privacy baselines for our services. 
• Turn repeat security issues (dependencies/SBOM, container/VM findings, secrets exposure, pentest items) into automated fixes and guardrails (policies, pipelines, templates) that prevent regressions.
• Help meet external security and privacy requirements (e.g., SOC 2 / ISO / FedRAMP-style / IRAP) by delivering architecture and implementation changes that are measurable, auditable, and durable.

What You’ll Bring

• Experience as a Security Architect / Data Security Engineer / Privacy Engineer in a cloud-native, multi-tenant SaaS, with clear ownership of data protection and privacy engineering outcomes.
• Strong knowledge of Azure security and data services (identity/managed identities, Key Vault, storage, databases, networking), and the ability to apply the right controls to protect customer data at scale (AWS familiarity is a plus).
• Strong software engineering background and proven ability to ship and maintain production systems: proficiency in one or more of C#/.NET, Go, Java, Python, or TypeScript; comfortable with pull requests, code reviews, testing, and CI/CD.
• Hands-on experience engineering encryption, key management, tenant isolation, and access control for large-scale data systems (including designing for incident response and forensics). 
• Understanding of compliance and privacy expectations (SOC 2 / ISO 27001 / FedRAMP-style) and how they translate into practical data handling controls (auditability, least privilege, retention/deletion, data residency as applicable). 
• Track record applying secure SDLC practices (threat modeling, secure design reviews, dependency/vulnerability management) and turning requirements into code and automation.
• Clear communication and ability to work with engineering/SRE/AppSec teams.

Bonus Skills

• Shared platform services for data protection (central KMS strategy, entitlement services, tokenization/masking). 
• Experience building secure observability for data planes and forensics for anomalous access. 
• Multicloud/hybrid data protection experience. 
• Security-focused development experience and relevant certifications (Azure security/architecture, cloud security, privacy/data protection).

What You’ll Get 

• 26 paid days off annually, plus 4 extra global VeeaMe Days for self-care and 24 paid volunteer hours annually through Veeam Cares
• Paid parental, maternity, and paternity leave
• Fully covered family medical plan, dental, rehab, and vaccinations
• Life, critical illness, and disability insurance
• Employer pension contribution via PPK
• Monthly Edenred allowance of 450 PLN for meals
• MultiSport card fully covered by Veeam, giving access to sports facilities nationwide
• Up to 12 free therapy sessions annually, plus legal and financial advice
• Opportunities to learn and grow through on-demand libraries (LinkedIn Learning, O’Reilly), mentoring, workshops and learning events like our annual Global Day of Learning

#LI-DS1
#Hybrid

Why Join Exadel

We’re an AI-first global tech company with 25+ years of engineering leadership, 2,000+ team members, and 500+ active projects powering Fortune 500 clients, including HBO, Microsoft, Google, and Starbucks.

From AI platforms to digital transformation, we partner with enterprise leaders to build what’s next.

What powers it all? Our people are ambitious, collaborative, and constantly evolving.

About the Client  

The leading provider of vehicle lifecycle solutions, with headquarters in Chicago, enables the companies that build, insure, and replace vehicles to power the next generation of transportation. Its platform delivers advanced mobile, artificial intelligence, and car technologies. It connects a network of 350+ insurance companies, 24,000+ repair facilities, hundreds of parts suppliers, and dozens of third-party data and service providers. The customer's collective solutions enhance productivity and help clients deliver better experiences for end consumers.

What You’ll Do

• Maintain and improve our identity-server — a Python/FastAPI service that handles Okta SSO authentication, JWT token signing, RBAC via Okta groups, and user redirect routing
• Configure and manage Okta across SSO (SAML/OIDC), SCIM provisioning, MFA/Adaptive Auth, Workflows, and Lifecycle Management
• Support multi-IDP federation — connecting external identity providers into our Okta tenant
• Fix user provisioning and deprovisioning delays, automate manual access management workflows
• Address security gaps in access controls and conduct access reviews
• Maintain and extend CLI tooling for Okta user management (user search, group management, bulk assignment, role migration)

What You Bring

• 5+ years of experience in identity and access management engineering
• Deep Okta expertise - both admin console configuration and programmatic integration via Okta APIs/SDKs
• Hands-on experience with SSO protocols (SAML 2.0, OIDC/OAuth 2.0) and federation architectures
• Production experience with Python (FastAPI, Flask, or Django) for building identity/auth services (other language is also acceptable)
• Working knowledge of Terraform for managing IAM infrastructure as code
• Experience with SCIM provisioning for automated user lifecycle management
• Comfortable working independently as the sole IAM owner - you define problems and drive solutions without hand-holding
• Familiarity with SOC 2 and/or HIPAA compliance requirements as they relate to access controls

English level 

Intermediate+

Legal & Hiring Information 

• Exadel is proud to be an Equal Opportunity Employer committed to inclusion across minority, gender identity, sexual orientation, disability, age, and more
• Reasonable accommodations are available to enable individuals with disabilities to perform essential functions
• Please note: this job description is not exhaustive. Duties and responsibilities may evolve based on business needs

Your Benefits at Exadel  

Exadel benefits vary by location and contract type. Your recruiter will fill you in on the details.

• International projects
• In-office, hybrid, or remote flexibility
• Medical healthcare
• Recognition program
• Ongoing learning & reimbursement 
• Well-being program
• Team events & local benefits 
• Sports compensation 
• Referral bonuses 
• Top-tier equipment provision

Exadel Culture

We lead with trust, respect, and purpose. We believe in open dialogue, creative freedom, and mentorship that helps you grow, lead, and make a real difference. Ours is a culture where ideas are challenged, voices are heard, and your impact matters.

Why Join Exadel

We’re an AI-first global tech company with 25+ years of engineering leadership, 2,000+ team members, and 500+ active projects powering Fortune 500 clients, including HBO, Microsoft, Google, and Starbucks.

From AI platforms to digital transformation, we partner with enterprise leaders to build what’s next.

What powers it all? Our people are ambitious, collaborative, and constantly evolving.

About the Client  

The leading provider of vehicle lifecycle solutions, with headquarters in Chicago, enables the companies that build, insure, and replace vehicles to power the next generation of transportation. Its platform delivers advanced mobile, artificial intelligence, and car technologies. It connects a network of 350+ insurance companies, 24,000+ repair facilities, hundreds of parts suppliers, and dozens of third-party data and service providers. The customer's collective solutions enhance productivity and help clients deliver better experiences for end consumers.

What You’ll Do

• Maintain and improve our identity-server — a Python/FastAPI service that handles Okta SSO authentication, JWT token signing, RBAC via Okta groups, and user redirect routing
• Configure and manage Okta across SSO (SAML/OIDC), SCIM provisioning, MFA/Adaptive Auth, Workflows, and Lifecycle Management
• Support multi-IDP federation — connecting external identity providers into our Okta tenant
• Fix user provisioning and deprovisioning delays, automate manual access management workflows
• Address security gaps in access controls and conduct access reviews
• Maintain and extend CLI tooling for Okta user management (user search, group management, bulk assignment, role migration)

What You Bring

• 5+ years of experience in identity and access management engineering
• Deep Okta expertise - both admin console configuration and programmatic integration via Okta APIs/SDKs
• Hands-on experience with SSO protocols (SAML 2.0, OIDC/OAuth 2.0) and federation architectures
• Production experience with Python (FastAPI, Flask, or Django) for building identity/auth services (other language is also acceptable)
• Working knowledge of Terraform for managing IAM infrastructure as code
• Experience with SCIM provisioning for automated user lifecycle management
• Comfortable working independently as the sole IAM owner - you define problems and drive solutions without hand-holding
• Familiarity with SOC 2 and/or HIPAA compliance requirements as they relate to access controls

English level 

Intermediate+

Legal & Hiring Information 

• Exadel is proud to be an Equal Opportunity Employer committed to inclusion across minority, gender identity, sexual orientation, disability, age, and more
• Reasonable accommodations are available to enable individuals with disabilities to perform essential functions
• Please note: this job description is not exhaustive. Duties and responsibilities may evolve based on business needs

Your Benefits at Exadel  

Exadel benefits vary by location and contract type. Your recruiter will fill you in on the details.

• International projects
• In-office, hybrid, or remote flexibility
• Medical healthcare
• Recognition program
• Ongoing learning & reimbursement 
• Well-being program
• Team events & local benefits 
• Sports compensation 
• Referral bonuses 
• Top-tier equipment provision

Exadel Culture

We lead with trust, respect, and purpose. We believe in open dialogue, creative freedom, and mentorship that helps you grow, lead, and make a real difference. Ours is a culture where ideas are challenged, voices are heard, and your impact matters.

Why Join Exadel

We’re an AI-first global tech company with 25+ years of engineering leadership, 2,000+ team members, and 500+ active projects powering Fortune 500 clients, including HBO, Microsoft, Google, and Starbucks.

From AI platforms to digital transformation, we partner with enterprise leaders to build what’s next.

What powers it all? Our people are ambitious, collaborative, and constantly evolving.

About the Client  

The leading provider of vehicle lifecycle solutions, with headquarters in Chicago, enables the companies that build, insure, and replace vehicles to power the next generation of transportation. Its platform delivers advanced mobile, artificial intelligence, and car technologies. It connects a network of 350+ insurance companies, 24,000+ repair facilities, hundreds of parts suppliers, and dozens of third-party data and service providers. The customer's collective solutions enhance productivity and help clients deliver better experiences for end consumers.

What You’ll Do

• Maintain and improve our identity-server — a Python/FastAPI service that handles Okta SSO authentication, JWT token signing, RBAC via Okta groups, and user redirect routing
• Configure and manage Okta across SSO (SAML/OIDC), SCIM provisioning, MFA/Adaptive Auth, Workflows, and Lifecycle Management
• Support multi-IDP federation — connecting external identity providers into our Okta tenant
• Fix user provisioning and deprovisioning delays, automate manual access management workflows
• Address security gaps in access controls and conduct access reviews
• Maintain and extend CLI tooling for Okta user management (user search, group management, bulk assignment, role migration)

What You Bring

• 5+ years of experience in identity and access management engineering
• Deep Okta expertise - both admin console configuration and programmatic integration via Okta APIs/SDKs
• Hands-on experience with SSO protocols (SAML 2.0, OIDC/OAuth 2.0) and federation architectures
• Production experience with Python (FastAPI, Flask, or Django) for building identity/auth services (other language is also acceptable)
• Working knowledge of Terraform for managing IAM infrastructure as code
• Experience with SCIM provisioning for automated user lifecycle management
• Comfortable working independently as the sole IAM owner - you define problems and drive solutions without hand-holding
• Familiarity with SOC 2 and/or HIPAA compliance requirements as they relate to access controls

English level 

Intermediate+

Legal & Hiring Information 

• Exadel is proud to be an Equal Opportunity Employer committed to inclusion across minority, gender identity, sexual orientation, disability, age, and more
• Reasonable accommodations are available to enable individuals with disabilities to perform essential functions
• Please note: this job description is not exhaustive. Duties and responsibilities may evolve based on business needs

Your Benefits at Exadel  

Exadel benefits vary by location and contract type. Your recruiter will fill you in on the details.

• International projects
• In-office, hybrid, or remote flexibility
• Medical healthcare
• Recognition program
• Ongoing learning & reimbursement 
• Well-being program
• Team events & local benefits 
• Sports compensation 
• Referral bonuses 
• Top-tier equipment provision

Exadel Culture

We lead with trust, respect, and purpose. We believe in open dialogue, creative freedom, and mentorship that helps you grow, lead, and make a real difference. Ours is a culture where ideas are challenged, voices are heard, and your impact matters.

About the Role

As an Application Security Engineer (Offensive Testing), you will lead and perform penetration testing and DAST for Veeam Data Cloud products. You’ll use Burp Suite and modern web/API testing techniques to find real, exploitable issues, help prioritize risk, and work with engineering teams to drive fixes to completion.

You will also improve testing tools and processes, make testing more repeatable, and help teams prevent recurring vulnerabilities—especially around authentication, authorization, session management, and tenant isolation.

What You’ll Do

• Own offensive testing: plan what to test, how deep to go, and how often; create clear, consistent reports and reusable playbooks
• Perform manual pentesting (main focus): test web apps and APIs, especially authentication/authorization, multi-tenant boundaries, and critical workflows; chain issues into realistic attack paths
• Use Burp Suite daily: validate and reproduce findings with advanced Burp features; build and maintain repeatable scopes, macros, and authenticated flows
• Run and improve DAST: execute and tune authenticated scans, reduce false positives, and work with CI/platform teams to scale scanning and manage credentials
• Drive remediation: deliver high-quality write-ups, partner with engineers to fix and retest, and help prevent regressions; ensure findings are tracked with the right severity and SLAs
• Improve security long-term: spot recurring patterns and help teams prevent them through standards, libraries, platform controls, and input to threat modeling/design reviews

What You’ll Bring

• Strong web and API pentesting experience, especially in authorization (IDOR/BOLA, privilege escalation, role/tenant boundaries), authentication/session flows (tokens, identity integrations), and common vulnerabilities (injection, SSRF, deserialization, misconfigurations) with practical exploitation skills
• Advanced Burp Suite skills: manual validation, targeted fuzzing, authenticated testing, and workflow automation (extensions/macros)
• Experience writing Semgrep rules to detect insecure patterns and improve secure-by-default development
• DAST experience at scale: running or supporting authenticated scans, tuning coverage, and reducing false positives
• Clear written communication: concise PoCs and actionable remediation guidance for engineers

Bonus Skills

• SaaS multi-tenant security testing experience; OAuth2/OIDC/SAML depth; bug bounty triage; writing custom tooling or Burp extensions

What You’ll Get 

• 26 paid days off annually, plus 4 extra global VeeaMe Days for self-care and 24 paid volunteer hours annually through Veeam Cares
• Paid parental, maternity, and paternity leave
• Fully covered family medical plan, dental, rehab, and vaccinations
• Life, critical illness, and disability insurance
• Employer pension contribution via PPK
• Monthly Edenred allowance of 450 PLN for meals
• MultiSport card fully covered by Veeam, giving access to sports facilities nationwide
• Up to 12 free therapy sessions annually, plus legal and financial advice
• Opportunities to learn and grow through on-demand libraries (LinkedIn Learning, O’Reilly), mentoring, workshops and learning events like our annual Global Day of Learning

Please note: If the applicant is permanently present outside of Poland, Veeam reserves the right to refuse to consider the application for a job. Remote job is only possible in case the employee is located in Poland.

#LI-GD1
#Hybrid

The Role

Join Addepar’s Cloud Security team as a Sr. Cloud Security Engineer focused on building, automating, and maintaining security infrastructure and controls at scale. This role emphasizes AWS, Terraform, Python, and sophisticated networking. As part of the Cloud Security team, you will lead complex initiatives, collaborate closely with platform, operations, and data teams, and help establish paved roads and guardrails across a multi-account environment.

Applicants must have legal authorization to work in the country where this role is based on the first day of employment. Visa sponsorship is not available for this position.

What You’ll Do

• The primary responsibility of this role will be to maintain and iterate on Addepar’s Swiss AWS environment to enforce data locality restrictions, ensure core infrastructure is secure and operational, and integrate security best practices, policies and solutions
• Partner closely with Addepar’s Swiss Infrastructure Operations team to ensure that the highest security standards are observed across the estate
• Contribute to the Cloud Security team’s design and hardening of a multi-account AWS environment using Organizations, Control Tower, SCPs, and custom tools and guardrails
• Design and build secure networking and private resource access patterns for both human and programmatic use
• Author and maintain Terraform code to deploy security infrastructure and contribute to a secure Terraform module registry
• Write and support CI checks using policy-as-code (OPA) and IaC scanning to enforce best practices at scale
• Automate vulnerability detection and remediation using native AWS technologies, including event-driven architecture and serverless workflows
• Strengthen identity and secrets management with federation and role design, ABAC, IAM policy reviews, KMS strategy, and effective use of Secrets Manager and Parameter Store
• Utilize discovery tools and cloud native logging to perform investigations, resource discovery, and troubleshooting
• Participate in infrastructure design reviews and cloud security assessments, producing clear and actionable assessment reports
• Partner with engineering teams to deliver secure business outcomes and measure impact through coverage, prevention, and response metrics
• Act as an escalation point for Addepar’s Security Operations Center

Who You Are

• Extensive experience in security with several years experience with hands-on building and securing AWS in production, multi-account environments
• Ideally you'll have a Bachelor’s degree in CS/Engineering or equivalent practical experience
• Clear written and verbal communication skills with the ability to influence across teams and mentor others
• Expertise across AWS security best practices with deep knowledge of native AWS services
• Advanced Terraform experience including module creation, remote execution environments, and integrating security checks into CI
• Extensive experience with Python and the boto3 library
• Deep networking knowledge
• Strong Linux, container, K8s, secrets management, and CI/CD fundamentals
• Experience with policy-as-code (OPA, Rego), GitOps (GitHub Actions, Argo CD), and Zero Trust solutions

What Is The Role : 

Developers and community matter. Our users and contributors have helped ensure that the Elastic Stack (including Elasticsearch, Kibana, Beats, and Logstash) is more than just code — they are open source projects that people love to use.

We’re looking for someone who can connect with our global audience through creative, educational, and visually engaging content. You don’t need to be a Senior Engineer — but you should have a strong technical foundation, curiosity to learn, and the skills to tell compelling stories about technology.

Your work will combine writing, visuals, and video — with no waiting on others to get it done. From drafting a Twitter thread in the morning to publishing an infographic and editing a short video in the afternoon, you’ll take ideas from concept to launch, end to end.

What You Will Be Doing:

• Create engaging technical content for social media, blogs, and YouTube, covering Search, AI, and Elasticsearch in ways that are approachable and inspiring. Topics range from foundational and evergreen topics to today's LLM release.
• Write short-form content (Twitter threads, LinkedIn posts) that distills complex concepts into clear, shareable insights.
• Produce simple, high-quality videos and infographics yourself — from scripting and recording to editing and publishing.
• Explore new trends in Search, AI, and developer tools, and translate them into content our audience cares about.
• Build demos and examples to support your content or share the highlights of the latest research papers.
• Add a creative spark to Elastic’s content to keep our community engaged and draw in new audiences.

What You Bring : 

• Solid technical background and experience in an engineering role.
• Demonstrated ability to create a variety of content formats: blog posts, social media threads, videos, infographics.
• Comfortable working independently and seeing projects through from idea to publication without waiting on others.
• Curiosity and adaptability to quickly pick up new tools and topics.
• A collaborative mindset and willingness to share ideas, in a fully distributed team.
• Strong written and spoken communication skills in English.

What Is The Role:

As part of the Platform Engineering department, the Traffic team is crafting, building, and improving the multi-cloud platform at scale for Elastic Cloud Hosted and Serverless. We grow and mature our distributed network services and solutions for multiple cloud service provider platforms. We are built on Kubernetes, Go/Scala, and custom orchestration architectures. In your daily life with us, you will participate in coding, innovating technical designs, crafting solutions, improving resilience, and prioritizing security, bug fixes, and features. For example, Debugging Azure Networking for Elastic Cloud Serverless is part of our efforts, and we want your experience to contribute to a truly exceptional customer experience!

What You Will Be Doing:

• Taking an engineering approach in leading technical initiatives for automating network engineering efforts to guarantee the reliability of the global Elastic infrastructure. .
• Growing our global Platform infrastructure to meet the increasing scaling demands by developing and maintaining software, codebases, tooling and automations.
• Collaborating in an environment with an inclusive approach, and focusing on operational perfection which uplifts others.
• Preventing repeated customer impact in response to major incidents and prioritised problem management. Our on call rotation is spread well, and we address complex customer concerns too.

What You Bring:

• 10+ years in Software Engineering with product success in delivering Cloud network solutions. You collaborate with engineers as an authority in identifying, implementing and delivering solutions. Experience in public cloud, Go and managed Kubernetes services is advantageous.
• Success and lessons of experiences from striving for 'progress not perfection' in the name of Platform reliability. We want to hear about your customer first approach in solving operational problems for both today and the future.
• Passion for developing solutions that involve inclusive communication methods to grow and strengthen partner and team relationships. Examples of working in distributed teams or working remotely is desirable.

Bonus Points:

You don't need to have all of these items, but these represent the types of work you will do as a Software Engineer at Elastic.

• You have designed and built a SaaS product in a public cloud ideally built using Infrastructure-as-Code tooling such as Crossplane or Terraform
• You have built Kubernetes-at-scale infrastructure, ideally across multiple cloud providers, and the vital automation to support it.
• You have written product features or functions in Golang or other programming languages.
• You have worked with containerized services (such as Docker.)
• You have proven results in leading and improving cross-team engineering initiatives.
• You have experience in system administration with professional skills in Linux on distributed systems at scale.
• You have diagnosed or designed, implemented and created solutions with the Elastic Stack.
• You are experienced in a self-organizing and sharing in a globally distributed team environment.
• You strengthen team members in bringing out the best of each other by uplifting others with coaching and mentoring.

About Shelf

Shelf builds software that helps enterprises make AI work in the real world. That only works when our systems are secure, observable, and maintainable under real production pressure.

About the Role

This role is for a senior backend engineer who will focus full-time on security work.

We are looking for a hands-on engineer who can improve our security posture by changing real systems, fixing real problems, and following through until the work is fully implemented and maintained.

This role is embedded close to support and operational engineering, so it stays connected to real incidents, real customer impact, and real follow-through. The scope is broader than one team. You will work across the company’s engineering surface wherever security work needs to land.

Our backend stack includes TypeScript/Node.js, AWS and Azure, PostgreSQL/Aurora, DynamoDB, Elasticsearch, S3, queues, observability tooling, CI/CD, and infrastructure-as-code. Exact stack match matters less than backend depth, security judgment, and learning speed.

Poland remote, with travel for onboarding and a few planned in-person collaboration sessions per year.

What You Will Own

• Find and fix concrete security issues in production systems.
• Improve token lifecycle, revocation, auth flows, auditability, and access controls across backend systems.
• Reduce or eliminate security-sensitive data exposure in logs, events, traces, and internal tooling.
• Improve security detection, logging, and audit trails so incidents are easier to detect, investigate, and contain.
• Rotate secrets, reduce long-lived credentials, tighten access, and relentlessly follow through on overdue security hygiene work.
• Review security findings from scanners and assessments, separate signal from noise, fix valid issues quickly, and improve the underlying architecture where needed.
• Sweep broadly when necessary, including across many repositories and services, rather than stopping at local ownership boundaries.
• Contribute to AI-security and modern application-security work where relevant, including risks introduced by new AI initiatives.
• Write useful technical documentation, post-incident follow-ups, and implementation notes that help security work stay real after the first fix lands.

What Strong Performance Looks Like

• Security improvements actually land in production and stay maintained over time.
• Important follow-through work does not get dropped because it is tedious, cross-cutting, or spread across many repos.
• You can tell the difference between a theoretical issue and a real one, and you act with urgency when the risk is real.
• Incidents lead to better systems, tighter controls, and faster detection instead of only better wording in a document.
• Teams trust you because you improve security through pragmatic implementation and follow-through.

What We Are Looking For

• Strong senior-level backend engineering experience in production systems.
• Real hands-on experience implementing security improvements in code, infrastructure, or operational workflows.
• Experience with application-security topics such as auth, token handling, access control, audit trails, logging, secrets, vulnerability remediation, or incident follow-through.
• Strong debugging and investigative instincts. You can trace ugly real-world issues through code, logs, and system behavior.
• Comfort working across many services and repositories when the problem requires a broad sweep.
• Ability to go from problem statement to implementation to enforcement with real ownership.
• Clear written and verbal communication. You can explain risk, trade-offs, and follow-up work without hiding behind vague security language.
• AI-native working style. You already use AI tools in your daily engineering workflow and know how to verify their output.

Strong Plus

• Experience improving security posture after real incidents or near-miss events.
• Experience with AI-security, OWASP LLM frameworks, or securing LLM-enabled systems.
• Experience improving queryability, logging, and forensic visibility for incident response.
• Experience moving systems from weak defaults to safer patterns such as stronger token handling or better credential models.

How We Evaluate Fit

We care most about implementation, enforcement, and follow-through. If you are the kind of engineer who sees a real security gap and closes it across the codebase, we want to talk.

What Shelf Offers:

• B2B contract.
• Company Stock Options.
• Hardware: MacBook Pro.
• Modern technical stack. Develop open-source software.
• GitHub Copilot subscription.
• Access to Claude Code, OpenAI Codex, TypingMind, and MCP Servers.

Why Shelf:

• Our Leadership Team has deep knowledge management and AI domain expertise and enterprise SaaS background to execute this plan
• We love our customers and our customers love us. Ask a Shelf customer why, and they’ll tell you it’s because of our innovative capabilities, rock-solid reliability, they truly enjoy working with our people, but most of all – it’s the improvements they see in their business KPIs.
• We have raised over $60 million in funding and our investors include Tiger Global, Insight Partners, Connecticut Innovations, and others
• We have high velocity growth powered by the most innovative product in our category, 3X growth for 3 years in a row
• We now have over 100 employees in multiple U.S. states and European countries, and we have ambitious hiring goals over the next few months

Our Values:

Quality - We’re united by our focus on world‑class Quality. Quality in all things – starting with everything that leaves your desk. Everything you touch – every email, report, campaign, and piece of code – should be outstanding. Your work product should blow people away. Having people look at what you’ve done and say, “Wow.” That’s the standard here. Remember that how you do anything is how you do everything. Focus on craftsmanship—your ability to make things better.

Momentum - for us means that you should know that the things you’re responsible for are moving forward. When you look around and see something that’s stalled, get it moving again. We pride ourselves on “ball movement.” When your boss or team leaves you with something, they should return to see measurable progress. Small, continuous movement is our recipe for success. Constantly look for how to make the work around you move forward. We want you to initiate solutions, ideas, and progress. Don’t wait for it to come to you—reach out and create movement. All the time.

Accountability - We expect every team member to feel that they are accountable for more than anyone might normally expect. Each of us should feel real responsibility for things even at the edge of our control. We consistently share and align on expectations, give each other open and respectful feedback, and use those two drivers to ensure that every agreement we make with one another is clear and complete.

Hard Work - We’re here to do something difficult together. We care intensely about the mission and we expect that from our teammates. That care means that we work hard here. Hard work comes with long hours, extra effort…and real opportunity at Shelf. Your passion for creating and sustaining output is a part of our DNA. Support each other, cheer each other on, drive the mission forward. Great teams sustain intense effort together to win.

Learning Agility - We’re innovating in one of the fastest‑moving spaces in history at a time of accelerating global change. That’s incredibly exciting and requires each of us to commit fully to learning each and every day so that we can be the best at what we do. None of us know everything. All of us can learn anything. Staying open and constantly curious is a key success driver at Shelf. It also requires humility. We prize people who are consistently humble and open to making mistakes and growing from them. Recognize also that learning itself is a skill…we need you to be really good at it. Keep dialing in your own understanding about how you learn best and push yourself to keep growing.

Adapt and Thrive - Overcoming challenges lives deep in our DNA. We have a proud history of understanding and living the reality that obstacles are our opportunities…they’re the key to our success. Change is a constant in our business and fighting change is counterproductive. We need you to be good at being uncomfortable and understand that discomfort is the key to growth. Cultivate your own ability to adapt and know that struggling well is something you’ll share with every team you’re on at Shelf. Our company stories are about thriving through real difficulty…together.

Win Together - We win or lose as a team. Always. Everything you do here is connected to the rest of the organization. Part of our shared team environment demands full honesty…real candor and directness with one another. We expect you to constantly be thinking about how to support your teammates and the company, always acting in service to our shared mission and what’s best for the organization as a whole.

Role Summary and Impact 

As part of the Global Operations Centre (GOC), you will work closely with teams across the United States, Europe, and Asia to deliver high-impact solutions in a collaborative, multicultural environment. We are seeking an enthusiastic and motivated Junior Cloud Engineer to join our growing team. This is an exciting opportunity for individuals passionate about cloud technologies to learn, contribute, and grow within a leading global marketing and technology company. You will work alongside experienced engineers, supporting the development and maintenance of scalable, secure, and performant cloud infrastructure that powers our innovative data products and AI platforms. 

You are: 

• A keen learner with a strong interest in cloud computing, DevOps practices, and modern infrastructure. 
• Proactive and detail-oriented, eager to assist in implementing and optimizing cloud solutions. 
• Collaborative, ready to work with a diverse team of engineers, developers, and data scientists. 
• A problem-solver at heart, even with foundational knowledge, excited to tackle technical challenges and contribute to robust solutions. 
• Committed to best practices, understanding the importance of security, reliability, and efficiency in cloud environments. 

What you will do:

Support Cloud Infrastructure Deployment and Management 

• Assist in the deployment, configuration, and maintenance of cloud infrastructure components on platforms such as AWS and/or GCP, following established designs and best practices. 
• Learn to utilize Infrastructure as Code (IaC) tools like Terraform to manage cloud resources and contribute to IaC module development under guidance. 
• Collaborate with senior engineers to understand project requirements and contribute to the implementation of cloud solutions for our data products and AI platforms. 

Contribute to Automation and Operational Support 

• Support the development and maintenance of CI/CD pipelines, assisting with automation of deployment and testing processes. 
• Monitor cloud services and applications, contributing to the identification and resolution of operational issues and performance bottlenecks. 
• Assist in collecting and analyzing metrics, logs, and alerts to ensure the health and efficiency of our cloud environments. 

Uphold Security and Best Practices 

• Learn and apply cloud security best practices, assisting in the configuration of IAM policies, network security groups, and other security controls. 
• Contribute to documentation of cloud infrastructure, configurations, and operational procedures. 
• Work with the team to ensure our cloud environments adhere to internal standards and contribute to compliance efforts. 

Learn, Collaborate, and Innovate 

• Actively participate in team discussions, knowledge sharing sessions, and code reviews to deepen your understanding of cloud technologies and WPP's ecosystem. 
• Provide technical support to development teams for cloud-related issues and questions. 
• Research new cloud services and features, bringing fresh perspectives and ideas to the team. 

Skills and Experience 

If this opportunity looks right for you, we are looking for candidates who have:  

• 0-2 years of experience in a technical role, with a demonstrated interest or some exposure to cloud computing (e.g., through internships, personal projects, or academic coursework). 
• Foundational knowledge of at least one major cloud provider (GCP). 
• Basic understanding of Infrastructure as Code (IaC) principles and tools (e.g., Terraform). 
• Familiarity with Linux/Unix environments and command-line tools. 
• Some exposure to scripting languages (e.g., Python, Bash) is a plus. 
• English fluency B2/C1 
• Understanding of basic networking concepts (TCP/IP, HTTP/S, DNS). 
• Eagerness to learn about containerization (Docker) and orchestration (Kubernetes). 
• Strong analytical and problem-solving aptitude, with a willingness to learn and ask questions. 
• Excellent communication and interpersonal skills to work effectively within a team environment. 
• Bachelor's degree in Computer Science, Engineering, Information Technology, or a related technical field, or equivalent practical experience. 
• Entry-level cloud certifications (e.g., Google Cloud Digital Leader) are a plus.

Life at WPP Media & Benefits 

Our passion for shaping the next era of media includes investing in our employees to help them do their best work, and we’re just as committed to employee growth as we are to responsible media investment. WPP Media employees can tap into the global WPP Media & WPP networks to pursue their passions, grow their networks, and learn at the cutting edge of marketing and advertising. We have a variety of employee resource groups and host frequent in-office events showcasing team wins, sharing thought leadership, and celebrating holidays and milestone events. Our benefits include access to internal learning platforms, certifications, and training sessions, life insurance, medical care & sports card in Medicover, funding for English language learning, employee mental health awareness day, and more.  

WPP Media is an equal opportunity employer and considers applicants for all positions without discrimination or regard to particular characteristics. We are committed to fostering a culture of respect in which everyone feels they belong and has the same opportunities to progress in their careers. We are committed to offering equal opportunities to all employees, which is why we only establish collaborations based on employment contracts. 

We believe the best work happens when we're together, fostering creativity, collaboration, and connection. That's why we’ve adopted a hybrid approach, with teams in the office two days a week. If you require accommodations or flexibility, please discuss this with the hiring team during the interview process. 

Following a detailed review of all applications, we will contact those candidates whose qualifications and stated terms of cooperation most closely align the objectives of our recruitment process.

The controller of your personal data is the WPP Media Poland sp. z o.o.The personal data you provide will be processed for the purpose of the recruitment process.  By providing us with personal data beyond the scope required by the Labour Code, you consent to the processing of such data for the purposes of the recruitment process.  Consent may be withdrawn at any time. Withdrawal of consent does not affect the lawfulness of the processing carried out prior to its withdrawal. For evidence purposes, please withdraw your consent in writing or by email to RODO@wppmedia.com. 

A Career with Point72's Technology Team

As Point72 reimagines the future of investing, our Technology team is constantly improving our company’s IT infrastructure, positioning us at the forefront of a rapidly evolving technology landscape. We’re a team of experts experimenting, discovering new ways to harness the power of open-source solutions, and embracing enterprise agile methodology. We encourage professional development to ensure you bring innovative ideas to our products while satisfying your own intellectual curiosity.

What you will do

• Lead development of end-to-end test automation and validation frameworks for fixed income trading and position management systems, building impact and reliability into the core workflow
• Build robust data validation, pricing, and risk-integrity tests that trace profit and loss impacts across the full trade lifecycle
• Design and grow scalable test infrastructure and tooling, including messaging and API simulators, synthetic market data feeds, and continuous integration and delivery integrations
• Partner with portfolio managers, traders, quantitative researchers, and software engineers to translate business workflows and risk scenarios into automated test suites
• Own release-quality sign-off for changes that affect pricing, risk, or position accounting and drive regression and acceptance strategies
• Develop and maintain production monitoring and post-deploy checks to detect data drift, pricing regressions, and risk anomalies
• Investigate production incidents, lead root-cause analysis, and implement preventive automated tests and controls
• Mentor and collaborate with engineers and QA peers to raise automation standards, improve test coverage, and reduce manual effort through reusable tooling
• Explore and apply modern automation technologies, including large language models and observability tooling, to accelerate testing and reduce time to detection

What's required

• 5+ years of experience in quality assurance with a strong background in test automation and software engineering
• Strong programming skills for building automation, data validation, and test infrastructure (proficiency in one or more languages such as Python, Java, or C#)
• Comprehensive expertise in fixed income products, trade lifecycle, and position management concepts
• Familiarity with profit and loss fundamentals and how pricing and risk changes cascade across related products
• Experience with trading and position management systems such as Orchestrade, Murex, or Geneva
• Proficiency with SQL, messaging technologies such as Kafka and Solace, RESTful APIs, and continuous integration and delivery pipelines
• Clear understanding of the software development lifecycle, test lifecycle, and established testing methodologies
• Experience building and maintaining automated test frameworks and integrating tests into build and release pipelines
• Comfort using modern automation tooling, including large language models and scripting tools, and demonstrated ability to learn new technologies quickly
• Excellent written and verbal communication skills with the ability to translate technical findings to business stakeholders, strong attention to detail, and ability to work collaboratively in a fast-paced environment
• Commitment to the highest ethical standards

We take care of our People

We invest in our people, their careers, their health, and their well-being. When you work here, we provide:

• Sports card
• Private life insurance
• Private medical and dental care, with vision allowance
• Private pension scheme
• Volunteer opportunities
• Support for employee-led affinity groups representing women, people of color and the LGBT+ community
• Business travel accident insurance
• Employee assistance program
• Educational assistance reimbursement

About Point72

Point72 is a leading global alternative investment firm led by Steven A. Cohen. Building on more than 30 years of investing experience, Point72 seeks to deliver superior returns for its investors through fundamental and systematic investing strategies across asset classes and geographies. We aim to attract and retain the industry's brightest talent by cultivating an investor-led culture and committing to our people's long-term growth. For more information, visit Home - Point72

Our Warsaw office gives us access to world-class talent with a reputation for excellence and innovation. We're looking to build an office of subject-matter experts whose fresh perspectives will help evolve our infrastructure and advance the capabilities of our teams. Learn more at Warsaw Office - Point72

A CAreer with point72’s Technology  TEAM

As Point72 reimagines the future of investing, our Technology team is constantly evolving our firm’s IT infrastructure and engineering capabilities, positioning us at the forefront of a rapidly evolving technology landscape. We’re a team of experts who experiment and work to discover new ways to harness open-source solutions, modern cloud architectures, and sophisticated Artificial Intelligence (AI) solutions, while embracing enterprise agile methodologies. Our commitment to building and innovating in the AI space provides the framework intended to drive smarter decision making and enhance how we build and operate our platforms and applications.

As a member of Point72’s Technology team, we encourage and support your professional development from day one—helping you advance your technical skills, contribute innovative ideas, and satisfy your own intellectual curiosity—all while delivering real business impact for our multi-billion-dollar global business.

What you’ll do

This role puts you at the center of modern SaaS security, where you’ll own and evolve our third-party Saas security platform to protect critical business platforms at scale. You’ll combine hands-on technical ownership with cross-team influence to meaningfully improve the organization’s SaaS security posture. Specifically, you will:

• Support the deployment, configuration, and activation of a cloud-based SaaS security platform across key SaaS applications.
• Maintain and operate the SaaS security platform on a daily basis, including tuning detections, managing alerts, and optimizing security controls.
• Integrate the SaaS security platform into existing security tooling and workflows, including SIEM/SOAR, ticketing, SaaS applications, and incident response processes.
• Collaborate with SaaS applications, Infrastructure, and Security teams to embed security into platform delivery and operational practices.
• Monitor and investigate security events, prioritize incident response actions, and support remediation efforts.
• Evaluate, review, and implement secure SaaS configurations and API integrations, ensuring strong posture and adherence to best practices.
• Develop, maintain, and document operational runbooks, playbooks, and standard operating procedures for security tasks and incidents for SaaS security.
• Automate repetitive tasks and workflows through scripting and platform APIs to improve efficiency and consistency.
• Stay current with emerging SaaS security trends, threats, and platform capabilities to enhance detection, coverage, and defenses.
• Provide hands-on support and expert guidance to internal teams on secure SaaS usage, policy interpretation, and platform best practices.

What’s REQUIRED

• 4–5 years of cybersecurity experience with a strong focus on SaaS security, including hands-on expertise with SaaS security platforms and tools such as CrowdStrike Falcon Shield, Appomni, Valance, Obsidian, or related SSPM technologies.
• Hands-on experience delivering and securing SaaS platforms—such as Workday, Salesforce, Box, Databricks, Slack, and Zoom—while assisting with security configuration reviews and implementing secure settings and policies for mission-critical applications.
• Experience with scripting and automation tools for security operations and incident response
• Excellent communication and collaboration skills, paired with a proactive and passionate approach to security
• Ability to drive innovative solutions, staying ahead of the evolving threat landscape while working effectively across technical and non-technical teams.
• Strong analytical and problem-solving skills with the ability to identify and mitigate security risks in complex SaaS environments.
• Commitment to the highest ethical standards

A Career with Point72’s AI/ML – Investment Services Team

The AI/ML – Investment Services team at Point72 spearheads the development of cutting-edge AI solutions that seek to transform our business processes and enhance enterprise intelligence. The team aims to bridge the gap between business challenges and technological innovation, collaborating with stakeholders across the firm and leveraging expertise in generative AI, data engineering, and machine learning.

What You’ll Do

• Architect, develop, and maintain high-throughput data pipelines in Databricks and AWS (Glue, EMR, Fargate, Step Functions)
  • Ingest, normalize, and enrich large volumes of structured and unstructured data including internal data, market data, third-party/vendor feeds, document repositories, and alternative data sources
  • Collaborate with AI Engineers, ML scientists, and software engineers to translate model and product requirements into scalable data architecture, schemas, and APIs
  • Optimize pipeline performance (compute, storage, network) and cost by leveraging distributed processing techniques (Spark, Delta, Arrow) and AWS best practices (spot fleets, autoscaling)
  • Enforce data governance, privacy, and lineage standards, cataloging assets in Unity Catalog, managing PII/PCI classification, and implementing fine-grained access controls with Immuta/Ranger/IAM
  • Build automated validation, testing, and monitoring frameworks to guarantee data quality, freshness, and drift detection for both offline and online workloads
  • Support the onboarding and integration of new external data vendors, ensuring contractual compliance, metadata management, and rapid time-to-value for relevant teams
  • Continuously evaluate emerging GenAI tooling (vector stores, LLMOps platforms, synthetic-data generators) and drive proof-of-concepts that enhance our data engineering capabilities

What’s Required

• Bachelor’s or master’s degree in computer science or engineering
• 3+ years of experience in data engineering or related field 
• Strong experience in Python development
• Experience with Spark or Scala
• Proficiency in building scalable, distributed data pipelines in a cloud environment
• Solid understanding of data architecture principles, data modeling, and data warehousing
• Ability to devise novel and innovative solutions to challenges
• Knowledge of/experience with graph databases is a plus
• Commitment to the highest ethical standards

We take care of our people

We invest in our people, their careers, their health, and their well-being. We want you to concentrate on success and leave the rest to us. When you work here, we provide:

• Sports card
• Private life insurance
• Private medical and dental care, with vision allowance
• Private pension scheme
• Volunteer opportunities
• Support for employee-led affinity groups representing women, people of color and the LGBTQ+ community
• Business travel accident insurance
• Employee assistance program
• Educational assistance reimbursement

About Point72

Point72 is a leading global alternative investment firm led by Steven A. Cohen. Building on more than 30 years of investing experience, Point72 seeks to deliver superior returns for its investors through fundamental and systematic investing strategies across asset classes and geographies. We aim to attract and retain the industry’s brightest talent by cultivating an investor-led culture and committing to our people’s long-term growth. For more information, visit https://point72.com/.

Role Summary and Impact 

As part of the Global Operations Centre (GOC), you will work closely with teams across the United States, Europe, and Asia to deliver high-impact solutions in a collaborative, multicultural environment. We are looking for a Cloud Engineer with a passion for building robust, scalable, and secure cloud infrastructure. You'll play a crucial role in designing, implementing, and optimizing the cloud environments that power our innovative data products and AI platforms, including WPP Open. If you thrive in a fast-paced AdTech environment, enjoy solving complex technical challenges, and are eager to contribute to the future of marketing technology, we want to hear from you. 

You are: 

• A hands-on problem solver who enjoys architecting and implementing cloud solutions from concept to production. 
• Customer-focused and collaborative, keen to understand the needs of developers, data scientists, and product teams. 
• Committed to automation and operational excellence, always looking for ways to improve efficiency and reliability. 
• Curious and adaptable, eager to learn new technologies and best practices in the rapidly evolving cloud and AdTech landscapes. 
• Security-aware, with a strong understanding of best practices for securing cloud environments and data. 

What You will do:

Design and Implement Scalable Cloud Infrastructure 

• Design, deploy, and manage highly available, scalable, and secure cloud infrastructure on GCP platform to support our data products, AI platforms, and AdTech solutions. 
• Utilize Infrastructure as Code (IaC) tools like Terraform or CloudFormation to provision and manage cloud resources consistently and efficiently. 
• Work closely with data scientists, software engineers, and product teams to understand requirements and translate them into robust cloud architectures. 

Drive Automation and Operational Excellence 

• Develop and maintain CI/CD pipelines to automate the deployment, testing, and release processes for cloud-native applications and infrastructure changes. 
• Implement and manage monitoring, logging, and alerting solutions to ensure the health, performance, and security of our cloud environments. 
• Identify and implement optimizations for cloud resource utilization, cost management, and operational efficiency. 

Ensure Security and Compliance 

• Implement and enforce cloud security best practices, including identity and access management (IAM), network security, data encryption, and compliance controls. 
• Participate in security audits and vulnerability assessments, ensuring our infrastructure adheres to internal policies and industry regulations (e.g., GDPR, CCPA). 
• Develop and maintain disaster recovery and business continuity plans for critical cloud services. 

Collaborate and Innovate 

• Act as a subject matter expert on cloud technologies, providing guidance and support to development teams. 
• Participate in architectural reviews and contribute to strategic planning for the evolution of our cloud ecosystem. 
• Research and evaluate new cloud services and technologies to recommend innovative solutions that enhance our capabilities and competitive edge. 

Skills and Experience 

If this opportunity looks right for you, we are looking for candidates who have:  

• 3+ years of experience as a Cloud Engineer, DevOps Engineer, or similar role focusing on cloud infrastructure.
• Strong expertise with at least one major cloud provider (GCP, or Azure). Experience with GCP is highly preferred given our existing ecosystem.
• English fluency B2/C1.
• Proficiency with Infrastructure as Code (IaC) tools, particularly Terraform.
• Solid understanding of containerization technologies such as Docker and orchestration platforms like Kubernetes.
• Experience with CI/CD tools and methodologies (e.g., GitLab CI, Jenkins, ArgoCD).
• Strong scripting skills in languages like Python, Bash.
• Familiarity with database technologies, both relational (e.g., PostgreSQL) and NoSQL (e.g., Neo4j, DynamoDB, BigQuery), and experience managing them in cloud environments.
• Understanding of cloud networking concepts (VPC, VPN, DNS, Load Balancers) and security best practices.
• Experience with monitoring and logging tools (e.g., Prometheus, Grafana, ELK Stack, Datadog, CloudWatch, Stackdriver).
• Excellent problem-solving skills and the ability to troubleshoot complex distributed systems.
• Strong communication and collaboration skills to work effectively with cross-functional teams.
• Bachelor's degree in Computer Science, Engineering, or a related technical field, or equivalent practical experience.
• Cloud certifications (e.g., Google Professional Cloud Architect) are a significant plus. 

Life at WPP Media & Benefits 

Our passion for shaping the next era of media includes investing in our employees to help them do their best work, and we’re just as committed to employee growth as we are to responsible media investment. WPP Media employees can tap into the global WPP Media & WPP networks to pursue their passions, grow their networks, and learn at the cutting edge of marketing and advertising. We have a variety of employee resource groups and host frequent in-office events showcasing team wins, sharing thought leadership, and celebrating holidays and milestone events. Our benefits include access to internal learning platforms, certifications, and training sessions, life insurance, medical care & sports card in Medicover, funding for English language learning, employee mental health awareness day, and more.  

WPP Media is an equal opportunity employer and considers applicants for all positions without discrimination or regard to particular characteristics. We are committed to fostering a culture of respect in which everyone feels they belong and has the same opportunities to progress in their careers. We are committed to offering equal opportunities to all employees, which is why we only establish collaborations based on employment contracts. 

We believe the best work happens when we're together, fostering creativity, collaboration, and connection. That's why we’ve adopted a hybrid approach, with teams in the office two days a week. If you require accommodations or flexibility, please discuss this with the hiring team during the interview process. 

Following a detailed review of all applications, we will contact those candidates whose qualifications and stated terms of cooperation most closely align the objectives of our recruitment process.

The controller of your personal data is the WPP Media Poland sp. z o.o.The personal data you provide will be processed for the purpose of the recruitment process.  By providing us with personal data beyond the scope required by the Labour Code, you consent to the processing of such data for the purposes of the recruitment process.  Consent may be withdrawn at any time. Withdrawal of consent does not affect the lawfulness of the processing carried out prior to its withdrawal. For evidence purposes, please withdraw your consent in writing or by email to RODO@wppmedia.com. 

As PandaDoc continues to scale, we’re expanding our security team and looking for an Application Security Engineer to help shape and strengthen our security foundations. In this role, you’ll take ownership of key security initiatives across our application, working closely with engineering to embed security into every stage of development. You’ll contribute to building a proactive, automation-driven security culture while addressing both current risks and emerging challenges, including AI security.

In this role, you will:

• Monitor and test information systems to identify vulnerabilities
• Execute or manage the remediation of identified vulnerabilities
• Respond to security incidents and perform root cause analysis
• Assess and understand PandaDoc’s current security framework and future architecture, providing recommendations for risk reduction
• Design, implement, maintain, and evangelize automated security solutions
• Work closely with engineering teams to implement new security controls
• Analyze and monitor relevant security threats and prevention measures based on industry trends and standards
• Perform cloud services hardening, including reviewing roles and permissions for services and APIs
• Help address emergent threats in AI security as PandaDoc deploys AI in its product and for internal use

Our stack:

• Service-oriented architecture
• Two main stacks: Java and Python
• Amazon Web Services: EKS, RDS, ElastiCache, etc.
• A combination of AWS native and 3rd party security tools for infrastructure and application security  (WAF, CNAPP, SCA/SAST, DAST, AWS GuardDuty, etc.)

About you:

• 2+ years of cloud security experience implementing security controls and best practices in AWS, GCP, or Microsoft Azure
• 2+ years of experience with security management tools, including IPS/IDS, WAF, vulnerability scanning, and penetration testing
• Good understanding of Access Control and Identity Access Management principles (SAML 2.0, OAuth, JWT, etc) 
• Experience with implementing DevSecOps practices in SSDLC
• Solid interpersonal, written, and verbal communication skills
• Upper-Intermediate English level (B2+)

Company Overview: 

PandaDoc empowers more than 60,000 growing organizations to thrive by taking the work out of document workflow. PandaDoc provides an all-in-one document workflow automation platform that helps fast scaling teams accelerate the ability to create, manage, and sign digital documents including proposals, quotes, contracts, and more.  For more information, please visit https://www.pandadoc.com.

Company Culture: 

We're known for our work-life balance, kind co-workers, & creative virtual team-bonding events. And although our Pandas are located across the globe, we stay connected with the help of technology and ensure that everyone on our team feels, well, like a team.

Pandas work best when they're happy. We retain our talent by upholding our values of integrity & transparency, and selling a product that changes the lives of our customers. 

Check out our LinkedIn to learn more.

Salary:

The monthly base salary for this role is up to 21000 PLN to 24,750 PLN.

Benefits:

Our team members and their families have access to comprehensive benefits including:

• Multisport Card for fitness and wellness activities (individual or family plan)
• LuxMed healthcare coverage (individual or family plan)
• UNUM life insurance protection (individual or family plan)
• Onboarding benefit allowance that can be used for necessary work equipment and setup
• 6 self-care days beyond standard Polish vacation entitlements 
• Wellness, learning and development budgets
• Employees may be able to purchase company stock or receive annual bonuses.

PandaDoc is an Equal Opportunity Employer. We are committed to equal treatment of all employees without regard to race, national origin, religion, gender, age, sexual orientation, veteran status, physical or mental disability or other basis protected by law.

EXTERNAL RECRUITERS

Approval Requirement

The use of external recruiters/staffing agencies requires prior approval from our HR Team. The HR Team at PandaDoc requests that external recruiters/staffing agencies not to contact PandaDoc employees directly in an attempt to present candidates. Complying with this request will be a factor in determining future professional relationships with PandaDoc.

We’re hiring an L7 Engineering Manager to lead Furnishing Engineering, responsible for building and operating the pipelines and services that furnish accurate, timely credit reporting data to external bureaus and partners at scale. You will set technical direction and execution strategy across data pipelines, platform services, and reliability controls, balancing compliance, auditability, and customer impact. 

This role requires exceptional technical rigor: you’ll be able to dive deep into pipeline architecture, data quality and its sources, failure modes, and performance bottlenecks, and use that depth to uplevel engineering excellence through strong design reviews, pragmatic standards, and mentorship. 

What you’ll do

• You’ll manage and grow a team of engineers, partner closely with Product, Compliance/Legal, and Analytics, and drive delivery through clear technical decision-making and operational discipline.
• You’ll develop a deep understanding of the system design of the ETL pipelines and the dependencies on upstream data sources. 
• You’ll own key outcomes and metrics (accuracy, timeliness, completeness, and incident rates) and lead multi-quarter cross-org initiatives that measurably improve the pipeline’s quality and reliability.
• You’ll manage and grow a team of engineers, partner closely with Product, Compliance/Legal, 
• Own availability, reliability, and performance of your team’s systems.
• Partner with product managers to design and build best-in-class systems and processes for collections.
• Partner with a diverse set of engineering teams who build solutions throughout the entire lifecycle of a loans repayment at Affirm
• Build relationships and engage with senior management in the organization

What we look for

• 7+ years of proven experience as a software engineer role with leadership responsibilities and 2+ years as an engineering manager.
• Drive to change consumer financial services for the better.
• Prior experience growing and managing high performing engineering teams.
• Fluency in back end system design.
• Prior experience architecting, building, launching and maintaining consumer scale products.
• Strong cross-team communication and collaboration skills.
• Knowledge of basic loans lifecycle and credit reporting is a plus.

Compensation and Benefits

Base Pay Grade - P

Equity Grade - Poland 5

Employees new to Affirm typically come in at the start of the pay range. Affirm focuses on providing a simple and transparent pay structure which is based on a variety of factors, including location, experience and job-related skills. 

Base pay is part of a total compensation package that may include monthly stipends for health, wellness and tech spending, and benefits (including 100% subsidized medical coverage, dental and vision for you and your dependents). In addition, the employees may be eligible for equity rewards offered by Affirm Holdings, Inc. (parent company).

POL base pay range per year: 358,000 zł  -  458,000 zł              

Additional benefits include:

• Type of employment: Contract of Employment
• Flexible Spending Wallets for tech, food and lifestyle
• Away Days - wellness days to take off work and recharge
• Learning & Development programs
• Parental benefits
• Employee Resource & Community Groups
• This role is eligible for creative tax benefits, subject to applicable law and company policy

We’re hiring an L7 Engineering Manager to lead Furnishing Engineering, responsible for building and operating the pipelines and services that furnish accurate, timely credit reporting data to external bureaus and partners at scale. You will set technical direction and execution strategy across data pipelines, platform services, and reliability controls, balancing compliance, auditability, and customer impact. 

This role requires exceptional technical rigor: you’ll be able to dive deep into pipeline architecture, data quality and its sources, failure modes, and performance bottlenecks, and use that depth to uplevel engineering excellence through strong design reviews, pragmatic standards, and mentorship. 

What you’ll do

• You’ll manage and grow a team of engineers, partner closely with Product, Compliance/Legal, and Analytics, and drive delivery through clear technical decision-making and operational discipline.
• You’ll develop a deep understanding of the system design of the ETL pipelines and the dependencies on upstream data sources. 
• You’ll own key outcomes and metrics (accuracy, timeliness, completeness, and incident rates) and lead multi-quarter cross-org initiatives that measurably improve the pipeline’s quality and reliability.
• You’ll manage and grow a team of engineers, partner closely with Product, Compliance/Legal, 
• Own availability, reliability, and performance of your team’s systems.
• Partner with product managers to design and build best-in-class systems and processes for collections.
• Partner with a diverse set of engineering teams who build solutions throughout the entire lifecycle of a loans repayment at Affirm
• Build relationships and engage with senior management in the organization
• On-Call Rotation - There would be an on-call rotation for this role as a requirement.

What we look for

• 7+ years of proven experience as a software engineer role with leadership responsibilities and 2+ years as an engineering manager.
• Drive to change consumer financial services for the better.
• Prior experience growing and managing high performing engineering teams.
• Fluency in back end system design.
• Prior experience architecting, building, launching and maintaining consumer scale products.
• Strong cross-team communication and collaboration skills.
• Knowledge of basic loans lifecycle and credit reporting is a plus.

Compensation and Benefits

Base Pay Grade - P

Equity Grade - Spain 6

Employees new to Affirm typically come in at the start of the pay range. Affirm focuses on providing a simple and transparent pay structure which is based on a variety of factors, including location, experience and job-related skills. 

Base pay is part of a total compensation package that may include monthly stipends for health, wellness and tech spending, and benefits (including 100% subsidized medical coverage, dental and vision for you and your dependents). In addition, the employees may be eligible for equity rewards offered by Affirm Holdings, Inc. (parent company).

ESP base pay range per year: € 101,000  -  131,000            

Additional benefits include:

• Flexible Spending Wallets for tech, food and lifestyle
• Away Days - wellness days to take off work and recharge
• Learning & Development programs
• Parental leave
• Employee Resource & Community Groups

We are able to offer visa sponsorship for this role, but do require that someone is based in Spain for the role. 

Location - Remote Spain

#LI-Remote

At JetBrains, we’re building an AI-native platform for software development that connects developer workflows, team-level collaboration, and organizational control into a single coherent system. This platform will serve as the execution and governance layer for AI-driven development, deeply integrated with developer tools but designed to work across teams, products, and environments. This is a long-term strategic investment for JetBrains and a key pillar of our vision for the future of software development.

The role

We are looking for a Software Architect (Platform Architecture) to shape the core technical foundations of JetBrains Cloud Platform from the ground up.

This role focuses on the architecture of shared platform capabilities: cross-product services, infrastructure abstractions, integration standards, scalability and reliability principles, and operational foundations (such as security, governance, observability, and cost controls). As this is a new platform, many standards and processes are still works in progress – you will actively influence what good quality looks like and help teams build toward it.

As part of the team, you will:

• Design and evolve the architecture of a cross-product platform that serves as the foundation for AI-driven software development.
• Define architectural principles, standards, and guidelines for platform services and shared foundations.
• Design integration patterns and interfaces between platform services, developer tools, and external systems.
• Ensure architectural decisions support scalability, reliability, security, and observability from the outset.
• Own and drive key platform-level architectural decisions and trade-offs (e.g., service boundaries, data flows, identity, policy, and tenancy).
• Review and validate architectural designs across teams to ensure consistency and long-term sustainability.
• Collaborate with other architects and platform specialists to align on shared decisions and evolve the platform architecture over time.
• Work closely with senior and staff engineers to translate platform requirements into coherent technical designs and implementation plans.
  
  

We are looking for someone who:

• Has strong experience in software engineering and system design, especially in complex, distributed systems.
• Has experience defining or significantly shaping the architecture of new platforms or large-scale systems.
• Is able to facilitate and align architectural decisions across multiple teams, balancing different perspectives and constraints.
• Is comfortable working in an environment where many processes and standards are still not fully established.
• Is motivated by long-term goals and prefers building foundations over delivering short-term features.
  
  

We’d be particularly thrilled if you:

• Have hands-on experience designing or evolving platforms based on Kubernetes and cloud environments such as AWS.
• Have experience with networking, compute, and storage infrastructure and can reason across application and infrastructure layers.
• Enjoy helping teams converge on good solutions rather than enforcing a single “correct” approach.

Why join JetBrains?

• Strong base salary. We offer competitive pay that reflects your skills and experience.
• Flexible work location. Enjoy the freedom to work from home or from the office.
• Remote work. Spend up to 30 days per year working remotely from abroad.
• Extra time off. More days to relax, recharge, and do the things you love.
• Medical insurance allowance. Enjoy peace of mind for you and your family.
• Learning and development opportunities. Access to conferences, courses, and language classes.
• Relocation support. We help make your move as smooth and stress-free as possible.
• Language classes. Pick up the local language or sharpen your English skills.
• Fuel your day. Enjoy a hot meal or receive a lunch allowance on workdays.
• Mental health support. To help you feel your best, we provide easy access to professional mental health services.
• Sports benefit. Enjoy an on-site gym or sports club stipend.
• Internal events. Join company-wide celebrations and team gatherings.

*Some benefits may vary depending on location.

#LI-DNI

#LI-DNI

At JetBrains, we’re building an AI-native platform for software development that connects developer workflows, team-level collaboration, and organizational control into a single coherent system. This platform will serve as the execution and governance layer for AI-driven development, deeply integrated with developer tools but designed to work across teams, products, and environments. This is a long-term strategic investment for JetBrains and a key pillar of our vision for the future of software development.

The role

We are looking for a Software Architect (Platform Architecture) to shape the core technical foundations of JetBrains Cloud Platform from the ground up.

This role focuses on the architecture of shared platform capabilities: cross-product services, infrastructure abstractions, integration standards, scalability and reliability principles, and operational foundations (such as security, governance, observability, and cost controls). As this is a new platform, many standards and processes are still works in progress – you will actively influence what good quality looks like and help teams build toward it.

As part of the team, you will:

• Design and evolve the architecture of a cross-product platform that serves as the foundation for AI-driven software development.
• Define architectural principles, standards, and guidelines for platform services and shared foundations.
• Design integration patterns and interfaces between platform services, developer tools, and external systems.
• Ensure architectural decisions support scalability, reliability, security, and observability from the outset.
• Own and drive key platform-level architectural decisions and trade-offs (e.g., service boundaries, data flows, identity, policy, and tenancy).
• Review and validate architectural designs across teams to ensure consistency and long-term sustainability.
• Collaborate with other architects and platform specialists to align on shared decisions and evolve the platform architecture over time.
• Work closely with senior and staff engineers to translate platform requirements into coherent technical designs and implementation plans.
  
  

We are looking for someone who:

• Has strong experience in software engineering and system design, especially in complex, distributed systems.
• Has experience defining or significantly shaping the architecture of new platforms or large-scale systems.
• Is able to facilitate and align architectural decisions across multiple teams, balancing different perspectives and constraints.
• Is comfortable working in an environment where many processes and standards are still not fully established.
• Is motivated by long-term goals and prefers building foundations over delivering short-term features.
  
  

We’d be particularly thrilled if you:

• Have hands-on experience designing or evolving platforms based on Kubernetes and cloud environments such as AWS.
• Have experience with networking, compute, and storage infrastructure and can reason across application and infrastructure layers.
• Enjoy helping teams converge on good solutions rather than enforcing a single “correct” approach.

Why join JetBrains?

• Strong base salary. We offer competitive pay that reflects your skills and experience.
• Flexible work location. Enjoy the freedom to work from home or from the office.
• Remote work. Spend up to 30 days per year working remotely from abroad.
• Extra time off. More days to relax, recharge, and do the things you love.
• Medical insurance allowance. Enjoy peace of mind for you and your family.
• Learning and development opportunities. Access to conferences, courses, and language classes.
• Relocation support. We help make your move as smooth and stress-free as possible.
• Language classes. Pick up the local language or sharpen your English skills.
• Fuel your day. Enjoy a hot meal or receive a lunch allowance on workdays.
• Mental health support. To help you feel your best, we provide easy access to professional mental health services.
• Sports benefit. Enjoy an on-site gym or sports club stipend.
• Internal events. Join company-wide celebrations and team gatherings.

*Some benefits may vary depending on location.

#LI-DNI

#LI-DNI

At JetBrains, code is our passion. Ever since we started, back in 2000, we have strived to make the strongest, most effective developer tools on earth. By automating routine checks and corrections, our tools speed up production, freeing developers to grow, discover, and create.

We just unveiled JetBrains Central,  a platform for agent-driven software development that connects tools, agents, and infrastructure. It enables automated AI workflows to run, be monitored, and be managed across teams – with clear visibility into results, costs, and performance.

JetBrains Central provides three core capabilities:
Governance and control: Policy enforcement, identity and access management, observability, auditability, and cost attribution for agent-driven work. Some of these functionalities are already available via the JetBrains Central Console.
Agent execution infrastructure: Cloud agent runtimes and computation provisioning that allow agents to run reliably across development environments.
Agent optimization and context: Shared semantic context across repositories and projects, enabling agents to access relevant knowledge, and task routing to the most appropriate models or tools.

Inside the Professional Services department, we are building a team of Forward Deployed Engineers to help our customers adopt AI-native development with JetBrains Central and enable JetBrains consulting partners to transform their customers’ AI-native software development lifecycle.

About the role

As a Principal Forward Deployed Engineer, you will work directly with early adopter customers to deploy JetBrains Central platform into complex enterprise environments and help them move from experimental AI usage to governed, scalable AI-native development.

You will act as a trusted advisor to customer engineering teams and consulting partners, while also mentoring other Forward Deployed Engineers and helping with complex deployments. In this role, you will help establish best practices for enterprise AI adoption and influence how organizations implement AI-driven software development.

This role is often a strong fit for engineers who have previously served as Principal or Staff Engineers, Heads of Engineering, CTOs, or Solutions Architects and who enjoy working directly with customers while staying deeply involved with complex technical systems.

This role combines consulting, architecture, and hands-on engineering. Your work in the field will directly influence how our platform evolves and how enterprises adopt AI-driven development.

You will work directly with the world’s most innovative companies — our client base includes 420 of the Fortune 500 — ensuring they maximize the value of their JetBrains investments.

What you’ll do

• Deploy JetBrains Central platform into enterprise development environments, CI/CD systems, and internal developer platforms.
• Help organizations transition from ad-hoc AI experimentation to governed AI-native development workflows.
• Implement enterprise AI governance, including security policies, access management, and data privacy controls.
• Enable observability for AI-driven development to help organizations understand their AI usage and its impact on productivity, as well as their code-generation patterns.
• Design sustainable AI adoption strategies, including usage controls and cost visibility across multiple model providers.
• Integrate our cloud-based agent execution layer, allowing AI agents to run securely and at scale.
• Collaborate closely with JetBrains product teams to shape the platform based on real-world deployments and customer feedback.
• Create delivery frameworks and train JetBrains partners to deliver the desired scope of service.
• Mentor and support other Forward Deployed Engineers, sharing architectural expertise and helping to scale the team’s deployment practices.

You will thrive in this role if you are

• A consultant at heart who can communicate effectively with both engineers and technical leadership.
• Able to see the whole picture of the software development lifecycle across developer tools, infrastructure, APIs, and cloud systems.
• Experienced at integrating complex software systems into enterprise environments.
• Curious about the future of AI agents and AI-native software development.
• Comfortable working with early adopters and overcoming ambiguous technical challenges.
• Motivated to mentor other engineers and contribute to building a new technical discipline.

What you will bring

• Experience in software-related projects, ideally in a customer-facing or consulting environment.
• Familiarity with Java or Python.
• Experience building or integrating developer platforms, infrastructure systems, or software solutions.
• Familiarity with modern development workflows (CI/CD, developer environments, internal developer platforms, etc.).
• Experience working directly with customers or technical stakeholders.
• Strong problem-solving skills and the ability to operate in fast-evolving technical environments.
• Ability and desire to travel to meet customers.

These would be a plus, but are not blockers

• Experience with industry-specific solutions (fintech, telco, retail, etc.)
• Experience with AI/LLM platforms, agent frameworks, or AI-assisted development tools.
  Experience in solutions engineering, consulting, or forward-deployed engineering roles.
• Familiarity with the JetBrains ecosystem or developer productivity tooling.

#LI-KP1

A CAREER WITH POINT72’S TECHNOLOGY TEAM
As Point72 reimagines the future of investing, our Technology group is constantly improving our company’s IT infrastructure, positioning us at the forefront of a rapidly evolving technology landscape. We’re a team of experts experimenting, discovering new ways to harness the power of open source solutions, and embracing enterprise agile methodology. We encourage professional development to ensure you bring innovative ideas to our products while satisfying your own intellectual curiosity.
The position will be part of the Tax system team, participating in development efforts in tax allocation, investor K1 schedules, legal entities’ tax returns and tax reporting.

WHAT YOU’LL DO
You will work in the Tax Technology system team developing technical solutions supporting Point72’s tax systems and tax optimization data analytics. Specifically, you will:
• Contribute to the overall architecture and technical direction of the tax technology stack.
• Utilize best practices in software development, including technical documentation, code reviews, testing, and continuous integration
• Design and build new software applications and software enhancements and projects supporting tax application technology.
• Work closely with business stake holders to develop software solutions using test-driven and agile software development methodologies.
• Design cloud-based computing solutions to create scalable cloud native applications.
• Be responsible for system upgrades and features supporting resiliency and capacity improvements, automation and controls, and integration with internal and external vendors and services.
• Work with DevOps teams to resolve operational issues and leverage CI/CD platforms while following DevOps practices within the team and projects
• Continuously improve the platforms using the latest technologies and software development ideas.
• Develop close working relationships and collaborate with other technology teams to deliver cross-departmental initiatives.

WHAT’S REQUIRED
• 5-8 years of professional software development experience with a focus on Java with Scala exposure.
• Strong understanding of object-oriented programming, design patterns and frameworks
• Experience building applications with focus on user-friendly interface design, as well as back-end and database optimization.
• Design and implementation experience in building systems with large data volumes and scalability.
• SQL development, debugging experience with relational database.
• Experience with Node.js and building RESTful APIs.
· Experience with building micro services, Kubernetes based platforms, and AWS.
· Excellent verbal communication skills
· Strong problem solving and analytical skills.
· Commitment to the highest ethical standards

WE TAKE CARE OF OUR PEOPLE
We invest in our people, their careers, their health, and their well-being. When you work here, we provide:

• Sports card
• Private life insurance
• Private medical and dental care, with vision allowance
• Private pension scheme
• Volunteer opportunities
• Support for employee-led affinity groups representing women, people of color and the LGBT+ community
• Business travel accident insurance
• Employee assistance program
• Educational assistance reimbursement

ABOUT POINT72
Point72 is a leading global alternative investment firm led by Steven A. Cohen. Building on more than 30 years of investing experience, Point72 seeks to deliver superior returns for its investors through fundamental and systematic investing strategies across asset classes and geographies. We aim to attract and retain the industry’s brightest talent by cultivating an investor-led culture and committing to our people’s long-term growth. For more information, visit www.Point72.com/about.

We invite a Security Engineer. This is a full-time, office-based role (no remote/hybrid) in one of our hubs:

• Belgrade, Serbia
• Lisbon, Portugal
• Sofia, Bulgaria
• Warsaw, Poland

The final location will depend on business needs and the feasibility of relocation from your current spot.

✅ Requirements: 
Must-Have:
✔️ 5 years of experience in IT infrastructure administration or information security roles. 
✔️ Advanced administration of macOS, Windows, and Linux operating systems, including secure configuration, system hardening, access control management, and troubleshooting at the OS level. 
✔️ Understanding of networking fundamentals, including IP networking, routing, switching, and network protocol behaviour relevant to security analysis. 
✔️ Basic knowledge of regulatory requirements and standards such as ISO27001, ISO27701, PCI DSS, GDPR, and others. 
✔️ Administration and configuration of EDR/XDR platforms, including policy management, detection rule tuning, incident investigation, and endpoint threat response. 
✔️ Configuration and administration of enterprise VPN solutions, including secure remote access management, authentication policies, and network access control. 
✔️ Administration and tuning of DLP systems, including policy development, data classification integration, and monitoring of data exfiltration risks. 

Nice-to-Have:
✔️ Proficiency in working with any kind of simple scripts: bash, PowerShell or Python, etc.. 
✔️ Understanding of the basic principles of virtualisation platform functionality. 
✔️ Experience in complex implementation or support projects of enterprise information security solutions (any solution classes from the list): MDM, SIEM, DLP, PAM, NGFW, Endpoint Security. Etc..
✔️ Experience with deployment and administration of IDS/IPS solutions, including rule tuning and network threat detection. 
✔️ Experience with PaloAlto, Digital Guardian, OpenVPN security solutions. 

✅ Responsibilities:
System Administration:
✔️ Manage security systems: DLP, XDR, Network VPN gateway.
✔️ Implement and maintain security control policies to enhance security.
✔️ Keep security system infrastructure updated and patched. 
✔️ Integrate security systems with new IT solutions and assets.
✔️ Debug issues related to the security systems software - cooperate closely with vendor support. 

Monitoring and Analysis:
✔️ Continuously monitor network activity, systems load. 
✔️ Monitor and review vendor notifications about Saas security system maintenance, critical vulnerabilities, new releases and features. 
✔️ Identify and analyze potential threats and vulnerabilities in the security systems.

Incident Response: 
✔️ Respond to security incidents and provide 2-3 levels of support for the SOC team, coordinating incident response efforts. 
✔️ Escalate incidents to other teams as necessary. 

Reporting, Documentation, and Continuous Improvement: 
✔️ Prepare tech documentation after implementation of new security controls, system configurations. 
✔️ Create basic instructions for security software for end users. 
✔️ Suggest improvements to security system configuration and incident mitigation. 
✔️ Participate in post-incident reviews and propose enhancements. 

We invite a Security Engineer. This is a full-time, office-based role (no remote/hybrid) in one of our hubs:

• Belgrade, Serbia
• Lisbon, Portugal
• Sofia, Bulgaria
• Warsaw, Poland

The final location will depend on business needs and the feasibility of relocation from your current spot.

✅ Requirements: 
Must-Have:
✔️ 5 years of experience in IT infrastructure administration or information security roles. 
✔️ Advanced administration of macOS, Windows, and Linux operating systems, including secure configuration, system hardening, access control management, and troubleshooting at the OS level. 
✔️ Understanding of networking fundamentals, including IP networking, routing, switching, and network protocol behaviour relevant to security analysis. 
✔️ Basic knowledge of regulatory requirements and standards such as ISO27001, ISO27701, PCI DSS, GDPR, and others. 
✔️ Administration and configuration of EDR/XDR platforms, including policy management, detection rule tuning, incident investigation, and endpoint threat response. 
✔️ Configuration and administration of enterprise VPN solutions, including secure remote access management, authentication policies, and network access control. 
✔️ Administration and tuning of DLP systems, including policy development, data classification integration, and monitoring of data exfiltration risks. 

Nice-to-Have:
✔️ Proficiency in working with any kind of simple scripts: bash, PowerShell or Python, etc.. 
✔️ Understanding of the basic principles of virtualisation platform functionality. 
✔️ Experience in complex implementation or support projects of enterprise information security solutions (any solution classes from the list): MDM, SIEM, DLP, PAM, NGFW, Endpoint Security. Etc..
✔️ Experience with deployment and administration of IDS/IPS solutions, including rule tuning and network threat detection. 
✔️ Experience with PaloAlto, Digital Guardian, OpenVPN security solutions. 

✅ Responsibilities:
System Administration:
✔️ Manage security systems: DLP, XDR, Network VPN gateway.
✔️ Implement and maintain security control policies to enhance security.
✔️ Keep security system infrastructure updated and patched. 
✔️ Integrate security systems with new IT solutions and assets.
✔️ Debug issues related to the security systems software - cooperate closely with vendor support. 

Monitoring and Analysis:
✔️ Continuously monitor network activity, systems load. 
✔️ Monitor and review vendor notifications about Saas security system maintenance, critical vulnerabilities, new releases and features. 
✔️ Identify and analyze potential threats and vulnerabilities in the security systems.

Incident Response: 
✔️ Respond to security incidents and provide 2-3 levels of support for the SOC team, coordinating incident response efforts. 
✔️ Escalate incidents to other teams as necessary. 

Reporting, Documentation, and Continuous Improvement: 
✔️ Prepare tech documentation after implementation of new security controls, system configurations. 
✔️ Create basic instructions for security software for end users. 
✔️ Suggest improvements to security system configuration and incident mitigation. 
✔️ Participate in post-incident reviews and propose enhancements. 

We invite a Security Engineer. This is a full-time, office-based role (no remote/hybrid) in one of our hubs:

• Belgrade, Serbia
• Lisbon, Portugal
• Sofia, Bulgaria
• Warsaw, Poland

The final location will depend on business needs and the feasibility of relocation from your current spot.

✅ Requirements: 
Must-Have:
✔️ 5 years of experience in IT infrastructure administration or information security roles. 
✔️ Advanced administration of macOS, Windows, and Linux operating systems, including secure configuration, system hardening, access control management, and troubleshooting at the OS level. 
✔️ Understanding of networking fundamentals, including IP networking, routing, switching, and network protocol behaviour relevant to security analysis. 
✔️ Basic knowledge of regulatory requirements and standards such as ISO27001, ISO27701, PCI DSS, GDPR, and others. 
✔️ Administration and configuration of EDR/XDR platforms, including policy management, detection rule tuning, incident investigation, and endpoint threat response. 
✔️ Configuration and administration of enterprise VPN solutions, including secure remote access management, authentication policies, and network access control. 
✔️ Administration and tuning of DLP systems, including policy development, data classification integration, and monitoring of data exfiltration risks. 

Nice-to-Have:
✔️ Proficiency in working with any kind of simple scripts: bash, PowerShell or Python, etc.. 
✔️ Understanding of the basic principles of virtualisation platform functionality. 
✔️ Experience in complex implementation or support projects of enterprise information security solutions (any solution classes from the list): MDM, SIEM, DLP, PAM, NGFW, Endpoint Security. Etc..
✔️ Experience with deployment and administration of IDS/IPS solutions, including rule tuning and network threat detection. 
✔️ Experience with PaloAlto, Digital Guardian, OpenVPN security solutions. 

✅ Responsibilities:
System Administration:
✔️ Manage security systems: DLP, XDR, Network VPN gateway.
✔️ Implement and maintain security control policies to enhance security.
✔️ Keep security system infrastructure updated and patched. 
✔️ Integrate security systems with new IT solutions and assets.
✔️ Debug issues related to the security systems software - cooperate closely with vendor support. 

Monitoring and Analysis:
✔️ Continuously monitor network activity, systems load. 
✔️ Monitor and review vendor notifications about Saas security system maintenance, critical vulnerabilities, new releases and features. 
✔️ Identify and analyze potential threats and vulnerabilities in the security systems.

Incident Response: 
✔️ Respond to security incidents and provide 2-3 levels of support for the SOC team, coordinating incident response efforts. 
✔️ Escalate incidents to other teams as necessary. 

Reporting, Documentation, and Continuous Improvement: 
✔️ Prepare tech documentation after implementation of new security controls, system configurations. 
✔️ Create basic instructions for security software for end users. 
✔️ Suggest improvements to security system configuration and incident mitigation. 
✔️ Participate in post-incident reviews and propose enhancements. 

We invite a Senior Application Security Engineer to join our team.

🌎 Global Remote Mobility: Available for Senior roles in selected jurisdictions.

✅ Responsibilities:
✔️ Demonstrated ability to collaborate with other teams to achieve complex objectives.
✔️ Responsible for security architecture design from cloud infrastructure to application through the implementation of "secure by design" principles.
✔️ Collaborate with product managers, architects, and developers on the implementation of the security controls platform ecosystem and products.
✔️ Proof security implementations within infrastructure and application deployment manifests and the CI/CD pipelines.
✔️ Define required policies, controls, and capabilities for the protection of products and environments.
✔️ Build and validate declarative threat models automation.
✔️ Participate in engineering teams’ product planning cycles and committees.
✔️ Oversee the product security aspects for migration of products and services from Data Center to public cloud, e.g., AWS.
✔️ Serve as a trusted cyber security advisor to product and application teams.

✅ Minimum Requirements:
✔️ Experience integrating security scanning/tooling into the development pipeline.
✔️ Experience in analysing and securing microservices and applications developed using JavaScript and Typescript.
✔️ Experience with CI/CD pipelines (such as Gitlab, Jenkins) and infrastructure-as-a-code models (such as Terraform, Helm, or CloudFormation).
✔️ Hands-on development experience in Python/shell scripting.
✔️ Strong understanding of supply chain security, software integrity, and secure software delivery.
✔️ Experience with Docker and mesh technologies (such as ISTIO).
✔️ Experience with architecture and security reviews, threat modelling, and application risk is highly desired.
✔️ Experience working with Agile methodologies.
✔️ Knowledge of privacy laws and regulations, such as GDPR desired.
✔️ Familiarity with industry regulations, frameworks, and practices. For example, PCI, ISO 27001, NIST, etc.

✅ PREFERRED QUALIFICATIONS:
✔️ In-depth experience with architecting secure services on Kubernetes.
✔️ Extensive experience with architecting secure services on AWS or on-prem data centers.
✔️ Security-related professional certifications e.g., CISSP, CISM, CCSK, CCSP, CEH, are highly desirable.

✅ We offer excellent benefits, including but not limited to:
🚀 Career growth opportunities in an international and dynamic environment; 
📚 Opportunity to develop language skills with partial compensation for language courses; 
🎁 Special gifts for birthdays, weddings, and newborns; 
🏝️ 20 working days of paid annual vacation, plus 6 paid sick leaves; 
🍲 Office snacks and refreshments;
🏋️‍♂️ Sports package to support a healthy lifestyle;
🩺 Comprehensive medical insurance; 
📍 Comfortable office with great facilities in a prime location; 
 🎉 Exciting corporate events, team-building activities, and international company parties.

We invite a Senior Application Security Engineer to join our team.

🌎 Global Remote Mobility: Available for Senior roles in selected jurisdictions.

✅ Responsibilities:
✔️ Demonstrated ability to collaborate with other teams to achieve complex objectives.
✔️ Responsible for security architecture design from cloud infrastructure to application through the implementation of "secure by design" principles.
✔️ Collaborate with product managers, architects, and developers on the implementation of the security controls platform ecosystem and products.
✔️ Proof security implementations within infrastructure and application deployment manifests and the CI/CD pipelines.
✔️ Define required policies, controls, and capabilities for the protection of products and environments.
✔️ Build and validate declarative threat models automation.
✔️ Participate in engineering teams’ product planning cycles and committees.
✔️ Oversee the product security aspects for migration of products and services from Data Center to public cloud, e.g., AWS.
✔️ Serve as a trusted cyber security advisor to product and application teams.

✅ Minimum Requirements:
✔️ Experience integrating security scanning/tooling into the development pipeline.
✔️ Experience in analysing and securing microservices and applications developed using JavaScript and Typescript.
✔️ Experience with CI/CD pipelines (such as Gitlab, Jenkins) and infrastructure-as-a-code models (such as Terraform, Helm, or CloudFormation).
✔️ Hands-on development experience in Python/shell scripting.
✔️ Strong understanding of supply chain security, software integrity, and secure software delivery.
✔️ Experience with Docker and mesh technologies (such as ISTIO).
✔️ Experience with architecture and security reviews, threat modelling, and application risk is highly desired.
✔️ Experience working with Agile methodologies.
✔️ Knowledge of privacy laws and regulations, such as GDPR desired.
✔️ Familiarity with industry regulations, frameworks, and practices. For example, PCI, ISO 27001, NIST, etc.

✅ PREFERRED QUALIFICATIONS:
✔️ In-depth experience with architecting secure services on Kubernetes.
✔️ Extensive experience with architecting secure services on AWS or on-prem data centers.
✔️ Security-related professional certifications e.g., CISSP, CISM, CCSK, CCSP, CEH, are highly desirable.

✅ We offer excellent benefits, including but not limited to:
💻 Learning and development opportunities and interesting, challenging tasks.
✈️ Relocation package (tickets, staying in a hotel for up to 2 weeks, and visa relocation support for our employees and their family members).
📚 Opportunity to develop language skills, with partial compensation for the cost of English and Portuguese language classes (for localization purposes). 
🎾 Partial compensation for tennis and padel lessons. 
🏀 Urban Sport membership benefit (the most diverse sports and wellness offering in Europe, with more than 50+ activities). 
🏥 Private medical coverage, including inpatient, outpatient, dental care, annual check-ups, and maternity support. 
🏝 Time for proper rest, with 24 non-business days per year and an additional 6 paid sick days. 
🚌 Transport compensation - 200 euros net per month. 
📈 Competitive remuneration level with annual review. 
🤝 Teambuilding activities. 

We invite a Senior Application Security Engineer to join our team.

🌎 Global Remote Mobility: Available for Senior roles in selected jurisdictions.

✅ Responsibilities:
✔️ Demonstrated ability to collaborate with other teams to achieve complex objectives.
✔️ Responsible for security architecture design from cloud infrastructure to application through the implementation of "secure by design" principles.
✔️ Collaborate with product managers, architects, and developers on the implementation of the security controls platform ecosystem and products.
✔️ Proof security implementations within infrastructure and application deployment manifests and the CI/CD pipelines.
✔️ Define required policies, controls, and capabilities for the protection of products and environments.
✔️ Build and validate declarative threat models automation.
✔️ Participate in engineering teams’ product planning cycles and committees.
✔️ Oversee the product security aspects for migration of products and services from Data Center to public cloud, e.g., AWS.
✔️ Serve as a trusted cyber security advisor to product and application teams.

✅ Minimum Requirements:
✔️ Experience integrating security scanning/tooling into the development pipeline.
✔️ Experience in analysing and securing microservices and applications developed using JavaScript and Typescript.
✔️ Experience with CI/CD pipelines (such as Gitlab, Jenkins) and infrastructure-as-a-code models (such as Terraform, Helm, or CloudFormation).
✔️ Hands-on development experience in Python/shell scripting.
✔️ Strong understanding of supply chain security, software integrity, and secure software delivery.
✔️ Experience with Docker and mesh technologies (such as ISTIO).
✔️ Experience with architecture and security reviews, threat modelling, and application risk is highly desired.
✔️ Experience working with Agile methodologies.
✔️ Knowledge of privacy laws and regulations, such as GDPR desired.
✔️ Familiarity with industry regulations, frameworks, and practices. For example, PCI, ISO 27001, NIST, etc.

✅ PREFERRED QUALIFICATIONS:
✔️ In-depth experience with architecting secure services on Kubernetes.
✔️ Extensive experience with architecting secure services on AWS or on-prem data centers.
✔️ Security-related professional certifications e.g., CISSP, CISM, CCSK, CCSP, CEH, are highly desirable.

✅ We offer excellent benefits, including but not limited to:
🚀 Career growth opportunities in an international and dynamic environment;
📚 Opportunity to develop language skills with partial compensation for language courses;
🎁 Special gifts for birthdays, weddings, and newborns;
🏝️ 20 working days of paid annual vacation, 6 paid sick leaves;
🍲 Office snacks and refreshments;
🏋️‍♂️ Sports package to support a healthy lifestyle;
🩺 Comprehensive medical insurance for you and your partner;
📍 Comfortable office with great facilities in a prime location;
 🎉 Exciting corporate events, team-building activities, and international company parties.

We invite a Senior Application Security Engineer to join our team.

🌎 Global Remote Mobility: Available for Senior roles in selected jurisdictions.

✅ Responsibilities:
✔️ Demonstrated ability to collaborate with other teams to achieve complex objectives.
✔️ Responsible for security architecture design from cloud infrastructure to application through the implementation of "secure by design" principles.
✔️ Collaborate with product managers, architects, and developers on the implementation of the security controls platform ecosystem and products.
✔️ Proof security implementations within infrastructure and application deployment manifests and the CI/CD pipelines.
✔️ Define required policies, controls, and capabilities for the protection of products and environments.
✔️ Build and validate declarative threat models automation.
✔️ Participate in engineering teams’ product planning cycles and committees.
✔️ Oversee the product security aspects for migration of products and services from Data Center to public cloud, e.g., AWS.
✔️ Serve as a trusted cyber security advisor to product and application teams.

✅ Minimum Requirements:
✔️ Experience integrating security scanning/tooling into the development pipeline.
✔️ Experience in analysing and securing microservices and applications developed using JavaScript and Typescript.
✔️ Experience with CI/CD pipelines (such as Gitlab, Jenkins) and infrastructure-as-a-code models (such as Terraform, Helm, or CloudFormation).
✔️ Hands-on development experience in Python/shell scripting.
✔️ Strong understanding of supply chain security, software integrity, and secure software delivery.
✔️ Experience with Docker and mesh technologies (such as ISTIO).
✔️ Experience with architecture and security reviews, threat modelling, and application risk is highly desired.
✔️ Experience working with Agile methodologies.
✔️ Knowledge of privacy laws and regulations, such as GDPR desired.
✔️ Familiarity with industry regulations, frameworks, and practices. For example, PCI, ISO 27001, NIST, etc.

✅ PREFERRED QUALIFICATIONS:
✔️ In-depth experience with architecting secure services on Kubernetes.
✔️ Extensive experience with architecting secure services on AWS or on-prem data centers.
✔️ Security-related professional certifications e.g., CISSP, CISM, CCSK, CCSP, CEH, are highly desirable.

✅ We offer excellent benefits, including but not limited to:
🏝 24 vacation days annually 
🤒 6 sick days without a medical certificate 
🏥 Premium Health Insurance (coverage up to 5,000 EUR annually) 
🎉 Special occasion gifts: birthday, wedding, newborn 
📚 Learning & Development budget (for conferences, courses and certifications) 
🌍 Corporate events: international parties, team buildings, activities 
📈 Career growth opportunities in a fast-growing company 
✈️ Relocation package for international candidates 
🏋️ Sports package (FitPass membership) 
🗣️ Language classes: Serbian & English (company-covered)