About the Role

Veeam is looking for a Senior Data Security & Privacy Engineer to own privacy-by-design and data protection engineering for the Veeam Data Cloud (VDC) data plane on Microsoft Azure and AWS. You will be the dedicated security and privacy engineering partner for VDC, responsible for how customer data is classified, ingested, encrypted, stored, processed, accessed, monitored, retained, and deleted across VDC workloads. 
 
This is a product security and enablement role: you will build shared security/privacy services, guardrails, and paved roads that make secure, compliant defaults easy for product teams to adopt. You will ship code via pull requests, provide reference implementations and self-service tooling, and measure adoption to drive consistent protections across the data plane. 
 

What You’ll Do

• Build and maintain shared platform capabilities that enable product teams to securely access Veeam Data Cloud and services (humans, services, agents) with secure-by-default patterns.
• Set standard patterns for authentication, authorization, and least-privilege access in a multi-tenant SaaS environment, with explicit focus on customer data access (humans, services, automation, break-glass). 
• Engineer and operationalize privacy-by-design controls: data minimization, purpose limitation, and safe-by-default handling of personal/sensitive data (incl. data discovery and classification).
• Build and maintain data lifecycle mechanisms (retention policies, legal hold support where applicable, secure deletion, export/erasure workflows) that scale across tenants and regions.
• Own the encryption and key management strategy for customer data (in transit and at rest), including key rotation, access policies, and integrations with platform KMS (e.g., Azure Key Vault / managed HSM where used).
• Define and build a shared security + privacy control plane with internal APIs/SDKs and self-service workflows (tenant isolation, policy-as-code, consistent enforcement, abuse/rate limiting, and guardrails that reduce the chance of data exposure).
• Define secure logging, audit trails, and telemetry libraries (what we log, how we avoid/ redact sensitive data, how logs support detection, incident response, and privacy investigations). 
• Ship production-quality code (services, SDKs, templates, lint rules, CI/CD checks, infrastructure-as-code guardrails) that creates paved roads and makes the secure path the default path for product teams.
• Create reference architectures, reusable patterns, and developer documentation; run enablement (onboarding, office hours) and define adoption metrics to drive consistent rollout across teams. 
• Build scalable data-flow mapping and threat modeling mechanisms (templates, tooling, review checklists) for features that touch customer data; translate findings into platform backlog items and reusable controls. 
• Partner with Engineering, SRE, AI Security, Platform Security, Product Security, and Compliance/Privacy stakeholders to improve security and privacy baselines for our services. 
• Turn repeat security issues (dependencies/SBOM, container/VM findings, secrets exposure, pentest items) into automated fixes and guardrails (policies, pipelines, templates) that prevent regressions.
• Help meet external security and privacy requirements (e.g., SOC 2 / ISO / FedRAMP-style / IRAP) by delivering architecture and implementation changes that are measurable, auditable, and durable.

What You’ll Bring

• Experience as a Security Architect / Data Security Engineer / Privacy Engineer in a cloud-native, multi-tenant SaaS, with clear ownership of data protection and privacy engineering outcomes.
• Strong knowledge of Azure security and data services (identity/managed identities, Key Vault, storage, databases, networking), and the ability to apply the right controls to protect customer data at scale (AWS familiarity is a plus).
• Strong software engineering background and proven ability to ship and maintain production systems: proficiency in one or more of C#/.NET, Go, Java, Python, or TypeScript; comfortable with pull requests, code reviews, testing, and CI/CD.
• Hands-on experience engineering encryption, key management, tenant isolation, and access control for large-scale data systems (including designing for incident response and forensics). 
• Understanding of compliance and privacy expectations (SOC 2 / ISO 27001 / FedRAMP-style) and how they translate into practical data handling controls (auditability, least privilege, retention/deletion, data residency as applicable).
• Track record applying secure SDLC practices (threat modeling, secure design reviews, dependency/vulnerability management) and turning requirements into code and automation.
• Clear communication and ability to work with engineering/SRE/AppSec teams.

Bonus Skills

• Shared platform services for data protection (central KMS strategy, entitlement services, tokenization/masking). 
• Experience building secure observability for data planes and forensics for anomalous access.
• Multicloud/hybrid data protection experience. 
• Security-focused development experience and relevant certifications (Azure security/architecture, cloud security, privacy/data protection).

What You’ll Get 

• 25 vacation days, 4 sick days, 21 paid medical leave days, plus 4 extra global VeeaMe Days for self-care and 24 paid volunteer hours annually through Veeam Cares
• Premium private medical insurance for employees and dependents
• Daily meal vouchers for restaurants and groceries (180 CZK per working day)
• Flexible cafeteria platform with thousands of lifestyle benefit options
• Multisport Card for gym and wellness, with family add-on options
• Annual public transport reimbursement up to a set limit
• Corporate mobile plan with optional family tariff
• Opportunities to learn and grow through on-demand libraries (LinkedIn Learning, O’Reilly), mentoring, workshops and learning events like our annual Global Day of Learning

#LI-DS1
#Hybrid

THE ROLE

…. Do you lie awake at night, thinking of NIST SP800-63-3? Do you get shivers when you hear the words “service account”? Does “zero trust” actually mean something to you? As they say, Identity is the new perimeter, and it could be your new frontier here at Pure Storage.

The Global Information Security Office (GISO) at Pure Storage is seeking an experienced IAM Operations Engineer to operate and continuously improve our enterprise Identity and Access Management services. This role is responsible for ensuring the stability, scalability, and operational effectiveness of IAM platforms while delivering secure, compliant access across on-premises and multi-cloud environments.

In this role, you will own the day-to-day operation of authentication and identity lifecycle services, supporting incident, problem, and change management processes. You will ensure IAM services meet defined SLAs, adhere to security policies, and maintain compliance with regulatory and audit requirements while enabling a seamless end-user experience.

WHAT YOU'LL DO

• Manage IAM service performance by defining, tracking, and analyzing operational KPIs, SLAs, and SLOs to ensure high availability, reliability, and continuous improvement.
• Administer and support enterprise IAM platforms, including:
• Identity Providers (IdP)
• Privileged Access Management (PAM)
• Identity Governance & Administration (IGA)
• Secrets Management and PKI
  (e.g., Okta, Lumos, Okta Privileged Access, 1Password, HashiCorp Vault, Keyfactor, etc.)
• Perform day-to-day IAM operational activities while contributing to the strategic IAM roadmap.
• Provide advanced technical support and serve as an escalation point for IAM-related issues.
• Own the lifecycle management of IAM services, including maintenance, upgrades, backups, monitoring, imaging, and patching.
• Partner with business stakeholders to adapt IAM controls and policies in alignment with evolving business processes while ensuring a seamless end-user experience.
• Develop and maintain documentation, operational procedures, and runbooks to ensure service sustainability and operational readiness.
• Deliver new IAM services and features in support of evolving business and security requirements.
• Oversee access reviews, RBAC implementations, and identity lifecycle management processes to maintain compliance and governance standards.
• Identify and implement automation opportunities to improve efficiency, reduce manual processes, and strengthen security posture.
• Lead problem management efforts by conducting root cause analysis, resolving recurring issues, and improving overall platform reliability and user experience.
• Participate in a scheduled on-call rotation to provide 24/7 support for production systems.
• We are primarily an in-office environment and therefore, you will be expected to work from the Prague office in compliance with Everpure's policies, unless you are on PTO, or work travel, or other approved leave.

WHAT YOU BRING

• 3-5+ years of experience supporting enterprise IAM platforms (Okta, PAM solutions, IGA tools, Vault, PKI systems, etc.).
• Proven ability to define, govern, and report on SLAs, SLOs, OLAs, and KPIs to ensure service performance, reliability, and customer satisfaction.
• Familiarity with leading incident and problem management efforts, conducting root cause analysis (RCA), and implementing corrective and preventive actions to strengthen service resilience.
• Experience participating in structured change governance processes, risk assessment, and release oversight.
• Hands-on experience with observability, logging, and monitoring tools (e.g., Splunk, Prometheus, Datadog, etc.).
• Strong understanding of identity lifecycle management, RBAC, and access governance principles.
• Nice to have experience in Infrastructure as Code and automated configuration management using tools like Terraform and/or Ansible.
• Technical experience with scripting and automation (e.g., Python, PowerShell, Bash, Tines) to improve operational efficiency and streamline IAM services.
• Experience driving service reviews, performance reporting, and stakeholder communications across technical and business audiences.
• Strong documentation and governance experience, including maintaining service catalogs, service charters, SOPs, and operational runbooks.

#LI-ONSITE

THE ROLE

Join the Infrastructure and Shared Services (ISS) team as a Security Engineer to build and defend the next generation of the Everpure Platform. Whether your expertise lies in network architecture, detection engineering, or securing AI pipelines, you will play a critical role in protecting our engineering infrastructure from lateral movement and advanced threats. You’ll collaborate directly with Platform Reliability and Infrastructure teams to bake security into the automation that powers our global developer services. This is a high-impact, hands-on engineering role focused on creating a resilient, zero-trust environment for our most critical services.

WHAT YOU'LL DO

• Engineer Advanced Defense Patterns: Design and implement zero-trust network access models, secure service-to-service communication, or AI-specific guardrails to eliminate unauthorized data access and lateral movement.
• Operationalize Detection & Response: Build high-fidelity behavioral detections for infrastructure and identity systems, ensuring all security telemetry is integrated into our SIEM for real-time visibility and rapid incident containment.
• Validate & Harden Infrastructure: Conduct threat modeling and security validation exercises (including ransomware simulations) to verify the effectiveness of controls across Kubernetes, cloud-native workloads, and AI model pipelines.
• Automate Security at Scale: Partner with engineering teams to integrate security controls directly into infrastructure-as-code and CI/CD pipelines, automating log analysis and network policy enforcement to reduce manual overhead.

WHAT YOU BRING

• Advanced knowledge of securing distributed systems, with deep technical proficiency in either network protocols (TCP/IP, TLS/SSL), detection engineering methodologies, or AI/ML pipeline security (protecting against prompt injection and data leakage).
• Hands-on experience securing cloud-native environments (AWS/Azure/GCP), containerized workloads (Kubernetes), and modern infrastructure-as-code automation.
• Ability to distinguish legitimate operational activities from indicators of compromise through deep log analysis, packet inspection (Wireshark), or behavioral modeling in SIEM/XDR platforms.
• Proven track record of working alongside DevOps, SOC, and Data teams to drive security outcomes without compromising engineering velocity.
• We are primarily an in-office environment and therefore, you will be expected to work from the Prague office in compliance with Everpure’s policies, unless you are on PTO, or work travel, or other approved leave.

  #LI-ONSITE

Required:

• 3+ in Windows desktop application development using Windows App SDK, WinUI (or similar), C#, XAML — and ideally additional experience with native Windows code (C++, Win32/WinRT/COM).
• Deep understanding of Windows application architecture, including interop between managed code (.NET) and native code.
• Proven track record of designing, building, and shipping production-quality desktop applications, with an emphasis on reliability, performance, scalability, and maintainability.
• Strong experience with accessibility APIs on Windows (e.g. Microsoft UI Automation or similar), and a dedication to building accessible and inclusive software.
• Excellent software engineering fundamentals: OOP, design patterns, data structures, algorithms, memory management, multi-threading or asynchronous programming (where relevant).
• Experience leading technical design, mentoring other engineers, conducting code reviews, and making architecture-level decisions.
• Strong communication skills; ability to articulate tradeoffs, collaborate with cross-functional teams, and drive consensus.
• A user-centric mindset: focus on building polished, intuitive, and accessible experiences for end users.

Preferred / Bonus:

• Experience with writing automated tests for UI — unit tests, integration tests, UI automation tests; familiarity with relevant testing frameworks.
• Experience with performance optimization for desktop apps (memory usage, startup time, rendering performance, high-DPI support, responsiveness under load).
• Experience with localization/globalization, right-to-left UI support, internationalization, accessibility for multiple regions.
• Familiarity with telemetry, analytics, crash reporting, logging, and error monitoring in desktop applications.
• Previous experience in shaping CI/CD workflows, release pipelines, and deployment strategies for desktop applications.
• Demonstrated ability to take ownership of feature areas or modules and drive them long-term, including maintenance, refactoring, and technical debt management.

What we offer

• A high-impact role: you will define architecture, shape the future of our Windows product, and directly influence what millions of users see and experience.
• A collaborative, flat-structure engineering culture — you are not just a coder, but a builder and a decision-maker.
• Opportunities to lead — mentor others, steer technical direction, and grow into broader technical leadership (e.g. Tech Lead, Architect).
• Flexibility, autonomy, and responsibility: you define how to solve problems, own features end-to-end, and contribute to long-term product vision.
• A purpose-driven mission: building software that’s reliable, accessible, and user-centered — making a real difference for people.                  

Think you’re a good fit for this job? 

Tell us more about yourself and why you're interested in the role when you apply.
And don’t forget to include links to your portfolio and LinkedIn.

Not looking but know someone who would make a great fit? 
Refer them! 

Speechify is committed to a diverse and inclusive workplace. 
Speechify does not discriminate on the basis of race, national origin, gender, gender identity, sexual orientation, protected veteran status, disability, age, or other legally protected status.

About the Role

As an Application Security Engineer (Offensive Testing), you will lead and perform penetration testing and DAST for Veeam Data Cloud products. You’ll use Burp Suite and modern web/API testing techniques to find real, exploitable issues, help prioritize risk, and work with engineering teams to drive fixes to completion.

You will also improve testing tools and processes, make testing more repeatable, and help teams prevent recurring vulnerabilities—especially around authentication, authorization, session management, and tenant isolation.

What You’ll Do

• Own offensive testing: plan what to test, how deep to go, and how often; create clear, consistent reports and reusable playbooks
• Perform manual pentesting (main focus): test web apps and APIs, especially authentication/authorization, multi-tenant boundaries, and critical workflows; chain issues into realistic attack paths
• Use Burp Suite daily: validate and reproduce findings with advanced Burp features; build and maintain repeatable scopes, macros, and authenticated flows
• Run and improve DAST: execute and tune authenticated scans, reduce false positives, and work with CI/platform teams to scale scanning and manage credentials
• Drive remediation: deliver high-quality write-ups, partner with engineers to fix and retest, and help prevent regressions; ensure findings are tracked with the right severity and SLAs
• Improve security long-term: spot recurring patterns and help teams prevent them through standards, libraries, platform controls, and input to threat modeling/design reviews

What You’ll Bring

• Strong web and API pentesting experience, especially in authorization (IDOR/BOLA, privilege escalation, role/tenant boundaries), authentication/session flows (tokens, identity integrations), and common vulnerabilities (injection, SSRF, deserialization, misconfigurations) with practical exploitation skills
• Advanced Burp Suite skills: manual validation, targeted fuzzing, authenticated testing, and workflow automation (extensions/macros)
• Experience writing Semgrep rules to detect insecure patterns and improve secure-by-default development
• DAST experience at scale: running or supporting authenticated scans, tuning coverage, and reducing false positives
• Clear written communication: concise PoCs and actionable remediation guidance for engineers

Bonus Skills

• SaaS multi-tenant security testing experience; OAuth2/OIDC/SAML depth; bug bounty triage; writing custom tooling or Burp extensions

What You’ll Get 

• 25 vacation days, 4 sick days, 21 paid medical leave days, plus 4 extra global VeeaMe Days for self-care and 24 paid volunteer hours annually through Veeam Cares
• Premium private medical insurance for employees and dependents
• Daily meal vouchers for restaurants and groceries (180 CZK per working day)
• Flexible cafeteria platform with thousands of lifestyle benefit options
• Multisport Card for gym and wellness, with family add-on options
• Annual public transport reimbursement up to a set limit
• Corporate mobile plan with optional family tariff
• Opportunities to learn and grow through on-demand libraries (LinkedIn Learning, O’Reilly), mentoring, workshops and learning events like our annual Global Day of Learning

Please note: If the applicant is permanently present outside of the Czech Republic, Veeam reserves the right to refuse to consider the application for a job. Remote job is only possible in case the employee is located in the Czech Republic.

#LI-GD1
#Hybrid

About the Role:

Wrike’s Security team is the frontline defense ensuring the integrity and credibility of the data stored within our platform. In this senior position, you will own and evolve the security posture for Wrike’s production, Kubernetes, and GCP environments. You aren't just maintaining systems; you are architecting a "secure by default" infrastructure that allows our engineering and other teams to move fast without compromising safety.

Your Impact:

• Own Infrastructure Security: Design, implement, and improve security controls- including hardening, network segmentation, IAM, and endpoint security - across our entire fleet.

• Strategic Defense: Lead the technical direction for cyber security defense, covering enterprise posture management, threat detection, and vulnerability management.

• Collaborative Architecture: Partner with ITOps, SysOps, DevOps and XOps to embed security into the core of our architecture and change management processes.

• SIEM Evolution: Develop and maintain our SIEM strategy and the surrounding infrastructure to ensure proactive visibility.

• Mentorship: Educate and coach engineering teams on secure system design, providing guidance that elevates the security IQ of the entire organization.

Your Qualifications:

• Cloud & Container Mastery: Extensive experience with GCP permissions and security configurations within Kubernetes, Azure, and on-prem environments.

• Technical Depth: High proficiency in Intrusion Detection, Exploit Dev, Linux Operations and Security Understanding

• Security Architecture: Proven ability to identify gaps in cloud designs and recommend enhancements for authentication, authorization, and bastion host setups.

• Communication: Ability to distill complex security risks into actionable insights for both technical peers and non-technical stakeholders.

• Autonomy: Proven track record of managing large projects with complex deliverables and foreseeing potential roadblocks before they manifest.

Standout Qualities:

• Certifications: Possession of industry-recognized credentials such as CISSP, Google Security Engineer or GIAC.

• Operational Excellence: Deep hands-on experience with (Open Source) SIEM solutions and Google Security Operations or Google Security Command Center

• Philosophy: You view security not just as a job, but as a craft; you balance strict security principles with the pragmatic needs of the business.

Team Dynamics:

• Leadership: You will report to Swen Groeneveld, Head of Security Operations

• The Squad: You will join a high-performing 14-member team consisting of AppSec and Compliance specialists.

• Role Level: This is a Senior level role, requiring you to lead people you do not directly manage.

Our Work Style:

• Tech Stack: GCP, Kubernetes (k8s), Terraform, Linux, Rapid7, Tenable, and SIEM platforms.

• Methodology: Performance-driven environment utilizing Scrum-based processes, including biweekly and quarterly planning.

• Environment: Hybrid work mode.

Why Join Wrike?

• 5 Weeks of paid vacation
• Sick Leave Compensation 
  • 5 Paid Uncertified Sick Days
  • 2 weeks fully paid w/ medical certificate, additional 
  • 4 weeks paid at 80% salary rate
• Parental Leave (fully paid): 18 Weeks Maternity / 4 Week Paternity 
• 2 Volunteer Days
• Meal Vouchers (CZK 220 per working day)
• Annual Prague Travel Card (Lítačka)
• Hybrid Working Model
• Benefit budget with flexible options, including a MultiSport card, Canadian Medical membership, contributions to a pension savings plan and additional choices available through Benefit Plus

At JetBrains, we’re building an AI-native platform for software development that connects developer workflows, team-level collaboration, and organizational control into a single coherent system. This platform will serve as the execution and governance layer for AI-driven development, deeply integrated with developer tools but designed to work across teams, products, and environments. This is a long-term strategic investment for JetBrains and a key pillar of our vision for the future of software development.

The role

We are looking for a Software Architect (Platform Architecture) to shape the core technical foundations of JetBrains Cloud Platform from the ground up.

This role focuses on the architecture of shared platform capabilities: cross-product services, infrastructure abstractions, integration standards, scalability and reliability principles, and operational foundations (such as security, governance, observability, and cost controls). As this is a new platform, many standards and processes are still works in progress – you will actively influence what good quality looks like and help teams build toward it.

As part of the team, you will:

• Design and evolve the architecture of a cross-product platform that serves as the foundation for AI-driven software development.
• Define architectural principles, standards, and guidelines for platform services and shared foundations.
• Design integration patterns and interfaces between platform services, developer tools, and external systems.
• Ensure architectural decisions support scalability, reliability, security, and observability from the outset.
• Own and drive key platform-level architectural decisions and trade-offs (e.g., service boundaries, data flows, identity, policy, and tenancy).
• Review and validate architectural designs across teams to ensure consistency and long-term sustainability.
• Collaborate with other architects and platform specialists to align on shared decisions and evolve the platform architecture over time.
• Work closely with senior and staff engineers to translate platform requirements into coherent technical designs and implementation plans.
  
  

We are looking for someone who:

• Has strong experience in software engineering and system design, especially in complex, distributed systems.
• Has experience defining or significantly shaping the architecture of new platforms or large-scale systems.
• Is able to facilitate and align architectural decisions across multiple teams, balancing different perspectives and constraints.
• Is comfortable working in an environment where many processes and standards are still not fully established.
• Is motivated by long-term goals and prefers building foundations over delivering short-term features.
  
  

We’d be particularly thrilled if you:

• Have hands-on experience designing or evolving platforms based on Kubernetes and cloud environments such as AWS.
• Have experience with networking, compute, and storage infrastructure and can reason across application and infrastructure layers.
• Enjoy helping teams converge on good solutions rather than enforcing a single “correct” approach.

Why join JetBrains?

• Strong base salary. We offer competitive pay that reflects your skills and experience.
• Flexible work location. Enjoy the freedom to work from home or from the office.
• Remote work. Spend up to 30 days per year working remotely from abroad.
• Extra time off. More days to relax, recharge, and do the things you love.
• Medical insurance allowance. Enjoy peace of mind for you and your family.
• Learning and development opportunities. Access to conferences, courses, and language classes.
• Relocation support. We help make your move as smooth and stress-free as possible.
• Language classes. Pick up the local language or sharpen your English skills.
• Fuel your day. Enjoy a hot meal or receive a lunch allowance on workdays.
• Mental health support. To help you feel your best, we provide easy access to professional mental health services.
• Sports benefit. Enjoy an on-site gym or sports club stipend.
• Internal events. Join company-wide celebrations and team gatherings.

*Some benefits may vary depending on location.

#LI-DNI

#LI-DNI

At JetBrains, we’re building an AI-native platform for software development that connects developer workflows, team-level collaboration, and organizational control into a single coherent system. This platform will serve as the execution and governance layer for AI-driven development, deeply integrated with developer tools but designed to work across teams, products, and environments. This is a long-term strategic investment for JetBrains and a key pillar of our vision for the future of software development.

The role

We are looking for a Software Architect (Platform Architecture) to shape the core technical foundations of JetBrains Cloud Platform from the ground up.

This role focuses on the architecture of shared platform capabilities: cross-product services, infrastructure abstractions, integration standards, scalability and reliability principles, and operational foundations (such as security, governance, observability, and cost controls). As this is a new platform, many standards and processes are still works in progress – you will actively influence what good quality looks like and help teams build toward it.

As part of the team, you will:

• Design and evolve the architecture of a cross-product platform that serves as the foundation for AI-driven software development.
• Define architectural principles, standards, and guidelines for platform services and shared foundations.
• Design integration patterns and interfaces between platform services, developer tools, and external systems.
• Ensure architectural decisions support scalability, reliability, security, and observability from the outset.
• Own and drive key platform-level architectural decisions and trade-offs (e.g., service boundaries, data flows, identity, policy, and tenancy).
• Review and validate architectural designs across teams to ensure consistency and long-term sustainability.
• Collaborate with other architects and platform specialists to align on shared decisions and evolve the platform architecture over time.
• Work closely with senior and staff engineers to translate platform requirements into coherent technical designs and implementation plans.
  
  

We are looking for someone who:

• Has strong experience in software engineering and system design, especially in complex, distributed systems.
• Has experience defining or significantly shaping the architecture of new platforms or large-scale systems.
• Is able to facilitate and align architectural decisions across multiple teams, balancing different perspectives and constraints.
• Is comfortable working in an environment where many processes and standards are still not fully established.
• Is motivated by long-term goals and prefers building foundations over delivering short-term features.
  
  

We’d be particularly thrilled if you:

• Have hands-on experience designing or evolving platforms based on Kubernetes and cloud environments such as AWS.
• Have experience with networking, compute, and storage infrastructure and can reason across application and infrastructure layers.
• Enjoy helping teams converge on good solutions rather than enforcing a single “correct” approach.

Why join JetBrains?

• Strong base salary. We offer competitive pay that reflects your skills and experience.
• Flexible work location. Enjoy the freedom to work from home or from the office.
• Remote work. Spend up to 30 days per year working remotely from abroad.
• Extra time off. More days to relax, recharge, and do the things you love.
• Medical insurance allowance. Enjoy peace of mind for you and your family.
• Learning and development opportunities. Access to conferences, courses, and language classes.
• Relocation support. We help make your move as smooth and stress-free as possible.
• Language classes. Pick up the local language or sharpen your English skills.
• Fuel your day. Enjoy a hot meal or receive a lunch allowance on workdays.
• Mental health support. To help you feel your best, we provide easy access to professional mental health services.
• Sports benefit. Enjoy an on-site gym or sports club stipend.
• Internal events. Join company-wide celebrations and team gatherings.

*Some benefits may vary depending on location.

#LI-DNI

#LI-DNI

At JetBrains, code is our passion. Ever since we started, back in 2000, we have strived to make the strongest, most effective developer tools on earth. By automating routine checks and corrections, our tools speed up production, freeing developers to grow, discover, and create.

We just unveiled JetBrains Central,  a platform for agent-driven software development that connects tools, agents, and infrastructure. It enables automated AI workflows to run, be monitored, and be managed across teams – with clear visibility into results, costs, and performance.

JetBrains Central provides three core capabilities:
Governance and control: Policy enforcement, identity and access management, observability, auditability, and cost attribution for agent-driven work. Some of these functionalities are already available via the JetBrains Central Console.
Agent execution infrastructure: Cloud agent runtimes and computation provisioning that allow agents to run reliably across development environments.
Agent optimization and context: Shared semantic context across repositories and projects, enabling agents to access relevant knowledge, and task routing to the most appropriate models or tools.

Inside the Professional Services department, we are building a team of Forward Deployed Engineers to help our customers adopt AI-native development with JetBrains Central and enable JetBrains consulting partners to transform their customers’ AI-native software development lifecycle.

About the role

As a Principal Forward Deployed Engineer, you will work directly with early adopter customers to deploy JetBrains Central platform into complex enterprise environments and help them move from experimental AI usage to governed, scalable AI-native development.

You will act as a trusted advisor to customer engineering teams and consulting partners, while also mentoring other Forward Deployed Engineers and helping with complex deployments. In this role, you will help establish best practices for enterprise AI adoption and influence how organizations implement AI-driven software development.

This role is often a strong fit for engineers who have previously served as Principal or Staff Engineers, Heads of Engineering, CTOs, or Solutions Architects and who enjoy working directly with customers while staying deeply involved with complex technical systems.

This role combines consulting, architecture, and hands-on engineering. Your work in the field will directly influence how our platform evolves and how enterprises adopt AI-driven development.

You will work directly with the world’s most innovative companies — our client base includes 420 of the Fortune 500 — ensuring they maximize the value of their JetBrains investments.

What you’ll do

• Deploy JetBrains Central platform into enterprise development environments, CI/CD systems, and internal developer platforms.
• Help organizations transition from ad-hoc AI experimentation to governed AI-native development workflows.
• Implement enterprise AI governance, including security policies, access management, and data privacy controls.
• Enable observability for AI-driven development to help organizations understand their AI usage and its impact on productivity, as well as their code-generation patterns.
• Design sustainable AI adoption strategies, including usage controls and cost visibility across multiple model providers.
• Integrate our cloud-based agent execution layer, allowing AI agents to run securely and at scale.
• Collaborate closely with JetBrains product teams to shape the platform based on real-world deployments and customer feedback.
• Create delivery frameworks and train JetBrains partners to deliver the desired scope of service.
• Mentor and support other Forward Deployed Engineers, sharing architectural expertise and helping to scale the team’s deployment practices.

You will thrive in this role if you are

• A consultant at heart who can communicate effectively with both engineers and technical leadership.
• Able to see the whole picture of the software development lifecycle across developer tools, infrastructure, APIs, and cloud systems.
• Experienced at integrating complex software systems into enterprise environments.
• Curious about the future of AI agents and AI-native software development.
• Comfortable working with early adopters and overcoming ambiguous technical challenges.
• Motivated to mentor other engineers and contribute to building a new technical discipline.

What you will bring

• Experience in software-related projects, ideally in a customer-facing or consulting environment.
• Familiarity with Java or Python.
• Experience building or integrating developer platforms, infrastructure systems, or software solutions.
• Familiarity with modern development workflows (CI/CD, developer environments, internal developer platforms, etc.).
• Experience working directly with customers or technical stakeholders.
• Strong problem-solving skills and the ability to operate in fast-evolving technical environments.
• Ability and desire to travel to meet customers.

These would be a plus, but are not blockers

• Experience with industry-specific solutions (fintech, telco, retail, etc.)
• Experience with AI/LLM platforms, agent frameworks, or AI-assisted development tools.
  Experience in solutions engineering, consulting, or forward-deployed engineering roles.
• Familiarity with the JetBrains ecosystem or developer productivity tooling.

#LI-KP1