Required:

• 3+ in Windows desktop application development using Windows App SDK, WinUI (or similar), C#, XAML — and ideally additional experience with native Windows code (C++, Win32/WinRT/COM).
• Deep understanding of Windows application architecture, including interop between managed code (.NET) and native code.
• Proven track record of designing, building, and shipping production-quality desktop applications, with an emphasis on reliability, performance, scalability, and maintainability.
• Strong experience with accessibility APIs on Windows (e.g. Microsoft UI Automation or similar), and a dedication to building accessible and inclusive software.
• Excellent software engineering fundamentals: OOP, design patterns, data structures, algorithms, memory management, multi-threading or asynchronous programming (where relevant).
• Experience leading technical design, mentoring other engineers, conducting code reviews, and making architecture-level decisions.
• Strong communication skills; ability to articulate tradeoffs, collaborate with cross-functional teams, and drive consensus.
• A user-centric mindset: focus on building polished, intuitive, and accessible experiences for end users.

Preferred / Bonus:

• Experience with writing automated tests for UI — unit tests, integration tests, UI automation tests; familiarity with relevant testing frameworks.
• Experience with performance optimization for desktop apps (memory usage, startup time, rendering performance, high-DPI support, responsiveness under load).
• Experience with localization/globalization, right-to-left UI support, internationalization, accessibility for multiple regions.
• Familiarity with telemetry, analytics, crash reporting, logging, and error monitoring in desktop applications.
• Previous experience in shaping CI/CD workflows, release pipelines, and deployment strategies for desktop applications.
• Demonstrated ability to take ownership of feature areas or modules and drive them long-term, including maintenance, refactoring, and technical debt management.

What we offer

• A high-impact role: you will define architecture, shape the future of our Windows product, and directly influence what millions of users see and experience.
• A collaborative, flat-structure engineering culture — you are not just a coder, but a builder and a decision-maker.
• Opportunities to lead — mentor others, steer technical direction, and grow into broader technical leadership (e.g. Tech Lead, Architect).
• Flexibility, autonomy, and responsibility: you define how to solve problems, own features end-to-end, and contribute to long-term product vision.
• A purpose-driven mission: building software that’s reliable, accessible, and user-centered — making a real difference for people.                  

Think you’re a good fit for this job? 

Tell us more about yourself and why you're interested in the role when you apply.
And don’t forget to include links to your portfolio and LinkedIn.

Not looking but know someone who would make a great fit? 
Refer them! 

Speechify is committed to a diverse and inclusive workplace. 
Speechify does not discriminate on the basis of race, national origin, gender, gender identity, sexual orientation, protected veteran status, disability, age, or other legally protected status.

ABOUT THE TEAM:

The Information Technology (IT) team is the backbone of our organization, ensuring the seamless and secure operation of our technology. Our mission is to empower employees by providing reliable and innovative IT solutions that enable them to achieve their goals efficiently. We are dedicated to maintaining a robust and secure infrastructure, proactively addressing technical challenges, and offering exceptional support to foster a digitally driven and collaborative work environment.

The IT team plays a crucial role in managing our technology infrastructure, from resolving hardware and software issues to overseeing application updates and integrations, and monitoring SaaS applications, web traffic, and access to ensure a secure environment. We are committed to minimizing disruptions and ensuring uninterrupted access to essential resources through proactive support and timely resolutions

ABOUT THE ROLE:

As a IT Workplace Technology Engineer, you will own and evolve our global endpoint and workplace technology ecosystem.This role focuses on delivering a secure, scalable and seamless employee experience by leading the design,deployment and optimization of device management solutions,collaboration platforms and security-integrated tooling.You’ll work at the intersection of IT,Security and Employee experience - ensuring that our digital workplace is secure,efficient, and aligned with Zero Trust principles.

As Workplace Technology Engineer you will:

• Lead administration and lifecycle management of MDM platforms including Microsoft Intune and Jamf Pro, supporting macOS, Windows, and mobile environments.
• Manage and enhance enterprise collaboration and productivity tools including Google Workspace,Slack & Atlassian suite.
• Implement and maintain endpoint security controls such as Device Trust, Network Trust, DLP, CASB, and Secure Web Gateways (SWGs) in close partnership with the InfoSec team.
• Own and evolve the corporate wireless network stack, including design, configuration, and optimization of office Wi-Fi environments
• Architect and implement automation and configuration management using scripting and Infrastructure as Code (IaC) tools.
• Integrate and manage identity and access workflows with platforms such as Okta, enabling secure authentication and context-aware access controls.
• Define standards and drive consistency in device provisioning, compliance, patching, and user onboarding/offboarding.
• Act as technical lead for workplace IT projects, mentoring team members and serving as the final escalation point for complex endpoint issues.

What Makes You a Great Fit ?

• Bring 5+ years of experience in workplace IT, MDM and Application administration, and SaaS tooling, with 2+ years in a technical leadership or lead engineer role.
• Have deep, hands-on expertise in Google Workspace, Intune, Jamf, and device management for both macOS and Windows.
• Understand and have experience implementing Zero Trust principles, including Device Trust, Network Trust, and conditional access.
• Are comfortable writing and maintaining PowerShell, Bash, or Python scripts, and using IaC frameworks to scale device and policy management.
• Have experience managing on corporate Wi-Fi/networking initiatives in modern office environments
• Work well cross-functionally, especially with Security, HR, and IT Operations, and have a strong service mindset.
• Thrive in fast-moving environments and enjoy creating reliable, scalable systems that improve user experience and IT efficiency.

• Competitive Compensation -  competitive salary and share options
• Time Off – Generous annual leave on top of bank holidays.
• Parental Leave – Paid maternity, paternity, and adoption leave to support your family journey.
• Sabbatical – Extended unpaid and paid leave options after completing milestone years with Tide.
• Health Insurance – Private family insurance with additional OPD coverage and top-up options.
• Life & Accident Cover – Comprehensive accidental and life insurance protection.
• Mental Wellbeing – Access to therapy sessions, courses, meditations, and workshops.
• Volunteering & Development Days – Paid days annually for volunteering or personal growth.
• Learning & Development – Annual budget for books, courses, coaching, and more.
• WOO (Work Outside the Office) – Work from abroad for up to 90 days annually.
• Home Office Setup – Contribution towards setting up your home office
• Laptop Ownership – Keep your old laptop and get a new one when it’s time for a replacement.
• Snacks & Meals – Office perks with snacks, coffee, tea, and lunch (location dependent).

Responsibilities

We're looking for a hands-on Platform/Observability Engineer to join our infrastructure team. You'll own and evolve our observability stack - from logging pipelines and tracing to metrics and alerting - across a multi-datacenter, Kubernetes-based environment. This is a production-first role: you'll be expected to ship, iterate, and improve systems under real delivery pressure, not just design them on paper.
You'll work closely with other infra and product engineering teams to improve observability coverage, reduce operational toil, and help the broader organization adopt better practices.
Tech Stack Highlights: OpenTelemetry · Kafka · Vector · VictoriaMetrics · EKS · Kubernetes · Logging pipelines · Distributed tracing · SPM· AWS

• Designing, deploying, and maintaining production observability stacks (logs, metrics, traces)

• Scaling observability infrastructure across multiple data centers and Kubernetes clusters

• Owning logging pipeline architecture and refactoring efforts

• Improving distributed tracing coverage and driving adoption across engineering teams

• Managing EKS upgrades, node exporters, agents, and collectors

• Automating operational tasks to reduce toil and improve system stability

• Contributing to compliance and audit readiness (access controls, data handling, pipeline integrity)

• Evaluating and adopting new observability tooling - knowing what's worth pursuing and what isn't

Requirements

Core technical experience:

• 8+ years of industry experience

• Solid hands-on production experience with observability systems

• Strong plus - familiarity with OpenTelemetry, Kafka, Vector, and VictoriaMetrics (vmagent, alerting rules)

• Experience with logging pipelines: design, deployment, and refactoring

• Understanding of distributed tracing and SPM (Service Performance Monitoring) built on top of tracing

• Experience with Kubernetes cluster lifecycle management (EKS preferred)

• Practical knowledge of storage trade-offs for observability data at scale

Nice to have  

• Experience using AI to automate infrastructure or observability tasks (e.g., automated RCA, PR generation, deployment workflows)

• Familiarity with AI-assisted tooling selection and workflow integration

• Experience with MCP (custom or open-source implementations)

• Background in cloud account or environment migrations

• Experience preparing infrastructure for compliance/audit processes

• Understanding network architecture, troubleshooting and incident resolution skills in Production environment, writing Post-mortems.

• Experience with containers and Kubernetes (installation and configuration of operators). 

• Basic knowledge of one or more high-level programming languages, such as Python, Golang, Java

Soft Skills / Personal Characteristics

• Good communication and collaboration skills in international technological companies.

• Interest in modern big distributed storage technologies, architectures.

• Good Spoken English to participate in product-related, architectural and technical discussions.

• Proper balance between being hands-on and deeper analytical approaches

(REQ ID: 2640)

At Yotpo, we are committed to creating secure, reliable, and innovative solutions for our customers. The Security Team is a core part of every aspect of Yotpo’s business - from customers to backend systems and everything in between. As a Senior Cloud Security Engineer, you will play an integral role in designing, maturing, and automating our cloud security controls. You will also contribute to other security domains and initiatives such as Incident Response, Security Monitoring and Risk Management. You will work in close partnership with our DevOps, R&D and Product teams to help strengthen our security posture and our platform.

Why Join Us:

• Engineers will immerse themselves in a complex, large-scale environment that offers the chance to work with diverse technologies. This unique setting is an exceptional opportunity for growth that not every company can provide.
• Be at the forefront of cybersecurity, tackling complex and emerging challenges.
• Freedom to innovate and implement impactful solutions that directly enhance Yotpo’s overall security posture.
• Engage with a wide range of projects to develop deep knowledge across multiple security domains.

Key Responsibilities:

• Serve as Cloud Security Subject Matter Expert (SME), actively supporting R&D and product teams in developing secure solutions.
• Design secure cloud architectures and implement practical, automated, and scalable controls across services in partnership with DevOps, R&D, and Product teams.
• Continuously assess cloud security posture, identifying gaps and opportunities to reduce risk and adopt best practices.
• Implement, mature, and automate end-to-end cloud security controls across AWS, Kubernetes, CI/CD pipelines, and self-managed systems.
• Lead and improve vulnerability management workflows; communicate vulnerabilities and mitigation strategies to stakeholders, balancing business agility and security.
• Own the full lifecycle of security initiatives from proof of concept (POC) and design to deployment and operation while promoting a security-first mindset.
• Maintain and develop the team knowledge base.
• Stay curious and enjoy working with modern security tools and technologies.

Requirements

• 5+ years of hands-on experience as Cloud Security Engineer, DevSecOps, or similar roles within an AWS environment.
• Expertise in managing cloud security controls (IAM, Security Groups/ACLs, WAF, IDS/IPS, load balancing, proxies, VMs, serverless).
• Experience securing Kubernetes and containerized workloads.
• Proficiency with Python/Bash scripting and automation.
• Experience with Infrastructure-as-Code (IaC), preferably Terraform, and CI/CD tooling (e.g., GitHub Actions).
• Strong communication skills to influence and guide teams as a cloud security SME.
• Excellent problem-solving skills for high-complexity environments.
• Excellent written and verbal English.

Preferred Qualifications (Nice to Have):

• AWS certifications (AWS Certified Solutions Architect, AWS Certified DevOps Engineer, AWS Certified Security - Specialty).
• Experience with CSPM, CNAPP, CWPP, and EDR solutions.
• Familiarity with security standards and frameworks (ISO, TSC, NIST) and their application to cloud environments.

Team Culture:

The Security Team at Yotpo thrives on risk-based thinking, vigilance, proactiveness, collaboration, and continuous learning. Every member plays a critical role in protecting our company and our customers. By fostering an atmosphere of trust and mutual respect, we empower each other to embrace challenges, share expertise, and innovate solutions.

What we offer:

• Track to success – work in a dynamic organization with ambient and laid-back office atmosphere
• Individualized career development, rewards, and recognition.
• Work-life balance – 25 days paid vacation with add-ons for loyalty, regular team buildings and celebrations in and outside the country
• Additional health insurance package
• Internal mobility program and refer-a-friend program
• Managing a fixed monthly budget for social benefits thru Re:Benefit – a flexible online benefits solution
• Food vouchers
• E-learning portals and knowledge sharing sessions.
• Company backed Hackathons, Tech conferences, workshops events, etc
• Stocked kitchen and bar.
• Equity in options.
• Flexible hybrid capacity

If you don’t meet 100% of the qualifications outlined above, that’s okay! We believe in hiring people, not just skills. If you have a passion to learn and are excited about eCommerce and technology, then we want to hear from you.

Help us be the best version of Yotpo by building something great together!

About the Role

We are looking for an experienced Security Engineer to assist in maintaining and improving the organization’s security posture through proactive monitoring, vulnerability management, and incident response. As a key member in our IT & Security Team. this role is ideal for individuals passionate about cybersecurity who are eager to grow their technical skills and contribute to safeguarding enterprise systems and data.

Responsibilities

• Lead the evaluation, implementation, and continuous improvement of cybersecurity controls across the organization to ensure alignment with internal security standards and regulatory requirements.
• Conduct vulnerability assessments and coordinate remediation activities with engineering and infrastructure teams, including risk prioritization, tracking, and reporting.
• Manage and maintain endpoint security controls, including system monitoring, patch management, and security configuration to ensure optimal performance and protection across enterprise environments.
• Configure, manage, and optimize the organization’s mobile device management (MDM) and endpoint protection platforms, ensuring effective coverage and policy enforcement.
• Oversee software deployment, operating system imaging, and patch compliance across enterprise endpoints, ensuring timely updates and adherence to security baselines.
• Monitor, investigate, and respond to security alerts and incidents using SIEM, EDR, and related security tools, ensuring effective containment, remediation, and post-incident analysis.
• Document security monitoring activities, incident investigations, and response actions in ticketing and case management systems to ensure traceability and continuous improvement.
• Collaborate with engineering, IT, and product teams to define, implement, and maintain security baselines and secure configurations across systems and endpoints.
• Participate in the security assessment and due diligence of third-party vendors and service providers, including reviewing security documentation and identifying potential risks.
• Assist in responding to customer security inquiries and completing security questionnaires, supporting sales and customer assurance processes with accurate and timely information.
• Contribute to security awareness initiatives and promote security best practices across the organization.
• Provide guidance and mentorship to junior team members on security operations, endpoint security, and incident response practices.

Requirements

Education & Certifications

• Degree in Computer Science, Information Security, Information Technology, or a related field.
• 4+ years of experience in cybersecurity, information security, or a related technical role.
• Professional security certifications are considered a strong advantage, such as CompTIA Security+, Cisco CyberOps Associate/Professional, Azure Security Engineer, Google Professional Cloud Security Engineer, CEH, or similar security certifications.

Technical Skills

• Understanding of networking concepts and protocols, including TCP/IP, DNS, firewalls, VPNs, and network segmentation.
• Hands-on experience in security operations, including endpoint security, vulnerability management, threat detection, and incident response within enterprise environments.
• Practical experience with SIEM, EDR, and centralized logging platforms (e.g., Splunk, Microsoft Sentinel, CrowdStrike, or similar), including alert investigation, detection tuning, and incident analysis.
• Experience with vulnerability management tools (e.g., Nessus, Qualys, OpenVAS) and the ability to interpret scan results, prioritize remediation, and coordinate fixes with engineering or infrastructure teams.
• Ability to develop or maintain automation scripts using PowerShell, Python, or Bash to improve security monitoring, reporting, or operational workflows.
• Familiarity with endpoint management and security technologies, including MDM platforms and endpoint protection solutions.
• Understanding of security best practices, system hardening, and security baselines across operating systems and enterprise environments.
• Continuous professional development through security certifications, training, industry events, or participation in the cybersecurity community.

Soft Skills

Strong analytical and problem-solving skills

• High attention to detail and ability to prioritize tasks in a fast-paced environment

Excellent communication and teamwork

• Eagerness to learn, adapt, and grow in a dynamic cybersecurity team.

Company Benefits

• Competitive compensation package
• 30 days holiday paid leave
• One week exchange policy to another Payhawk office (London, Berlin, Barcelona, Paris, Amsterdam and Vilnius)
• Flexible working hours and opportunity to work from home
• Regular team-wide events
• Additional medical care
• MultiSport card fully funded by us
• Company office massages
• Personal assistant service
• Opportunity to use the Payhawk product (that is, essentially, built by you).

We invite a Security Engineer. This is a full-time, office-based role (no remote/hybrid) in one of our hubs:

• Belgrade, Serbia
• Lisbon, Portugal
• Sofia, Bulgaria
• Warsaw, Poland

The final location will depend on business needs and the feasibility of relocation from your current spot.

✅ Requirements: 
Must-Have:
✔️ 5 years of experience in IT infrastructure administration or information security roles. 
✔️ Advanced administration of macOS, Windows, and Linux operating systems, including secure configuration, system hardening, access control management, and troubleshooting at the OS level. 
✔️ Understanding of networking fundamentals, including IP networking, routing, switching, and network protocol behaviour relevant to security analysis. 
✔️ Basic knowledge of regulatory requirements and standards such as ISO27001, ISO27701, PCI DSS, GDPR, and others. 
✔️ Administration and configuration of EDR/XDR platforms, including policy management, detection rule tuning, incident investigation, and endpoint threat response. 
✔️ Configuration and administration of enterprise VPN solutions, including secure remote access management, authentication policies, and network access control. 
✔️ Administration and tuning of DLP systems, including policy development, data classification integration, and monitoring of data exfiltration risks. 

Nice-to-Have:
✔️ Proficiency in working with any kind of simple scripts: bash, PowerShell or Python, etc.. 
✔️ Understanding of the basic principles of virtualisation platform functionality. 
✔️ Experience in complex implementation or support projects of enterprise information security solutions (any solution classes from the list): MDM, SIEM, DLP, PAM, NGFW, Endpoint Security. Etc..
✔️ Experience with deployment and administration of IDS/IPS solutions, including rule tuning and network threat detection. 
✔️ Experience with PaloAlto, Digital Guardian, OpenVPN security solutions. 

✅ Responsibilities:
System Administration:
✔️ Manage security systems: DLP, XDR, Network VPN gateway.
✔️ Implement and maintain security control policies to enhance security.
✔️ Keep security system infrastructure updated and patched. 
✔️ Integrate security systems with new IT solutions and assets.
✔️ Debug issues related to the security systems software - cooperate closely with vendor support. 

Monitoring and Analysis:
✔️ Continuously monitor network activity, systems load. 
✔️ Monitor and review vendor notifications about Saas security system maintenance, critical vulnerabilities, new releases and features. 
✔️ Identify and analyze potential threats and vulnerabilities in the security systems.

Incident Response: 
✔️ Respond to security incidents and provide 2-3 levels of support for the SOC team, coordinating incident response efforts. 
✔️ Escalate incidents to other teams as necessary. 

Reporting, Documentation, and Continuous Improvement: 
✔️ Prepare tech documentation after implementation of new security controls, system configurations. 
✔️ Create basic instructions for security software for end users. 
✔️ Suggest improvements to security system configuration and incident mitigation. 
✔️ Participate in post-incident reviews and propose enhancements. 

We invite a Security Engineer. This is a full-time, office-based role (no remote/hybrid) in one of our hubs:

• Belgrade, Serbia
• Lisbon, Portugal
• Sofia, Bulgaria
• Warsaw, Poland

The final location will depend on business needs and the feasibility of relocation from your current spot.

✅ Requirements: 
Must-Have:
✔️ 5 years of experience in IT infrastructure administration or information security roles. 
✔️ Advanced administration of macOS, Windows, and Linux operating systems, including secure configuration, system hardening, access control management, and troubleshooting at the OS level. 
✔️ Understanding of networking fundamentals, including IP networking, routing, switching, and network protocol behaviour relevant to security analysis. 
✔️ Basic knowledge of regulatory requirements and standards such as ISO27001, ISO27701, PCI DSS, GDPR, and others. 
✔️ Administration and configuration of EDR/XDR platforms, including policy management, detection rule tuning, incident investigation, and endpoint threat response. 
✔️ Configuration and administration of enterprise VPN solutions, including secure remote access management, authentication policies, and network access control. 
✔️ Administration and tuning of DLP systems, including policy development, data classification integration, and monitoring of data exfiltration risks. 

Nice-to-Have:
✔️ Proficiency in working with any kind of simple scripts: bash, PowerShell or Python, etc.. 
✔️ Understanding of the basic principles of virtualisation platform functionality. 
✔️ Experience in complex implementation or support projects of enterprise information security solutions (any solution classes from the list): MDM, SIEM, DLP, PAM, NGFW, Endpoint Security. Etc..
✔️ Experience with deployment and administration of IDS/IPS solutions, including rule tuning and network threat detection. 
✔️ Experience with PaloAlto, Digital Guardian, OpenVPN security solutions. 

✅ Responsibilities:
System Administration:
✔️ Manage security systems: DLP, XDR, Network VPN gateway.
✔️ Implement and maintain security control policies to enhance security.
✔️ Keep security system infrastructure updated and patched. 
✔️ Integrate security systems with new IT solutions and assets.
✔️ Debug issues related to the security systems software - cooperate closely with vendor support. 

Monitoring and Analysis:
✔️ Continuously monitor network activity, systems load. 
✔️ Monitor and review vendor notifications about Saas security system maintenance, critical vulnerabilities, new releases and features. 
✔️ Identify and analyze potential threats and vulnerabilities in the security systems.

Incident Response: 
✔️ Respond to security incidents and provide 2-3 levels of support for the SOC team, coordinating incident response efforts. 
✔️ Escalate incidents to other teams as necessary. 

Reporting, Documentation, and Continuous Improvement: 
✔️ Prepare tech documentation after implementation of new security controls, system configurations. 
✔️ Create basic instructions for security software for end users. 
✔️ Suggest improvements to security system configuration and incident mitigation. 
✔️ Participate in post-incident reviews and propose enhancements. 

We invite a Security Engineer. This is a full-time, office-based role (no remote/hybrid) in one of our hubs:

• Belgrade, Serbia
• Lisbon, Portugal
• Sofia, Bulgaria
• Warsaw, Poland

The final location will depend on business needs and the feasibility of relocation from your current spot.

✅ Requirements: 
Must-Have:
✔️ 5 years of experience in IT infrastructure administration or information security roles. 
✔️ Advanced administration of macOS, Windows, and Linux operating systems, including secure configuration, system hardening, access control management, and troubleshooting at the OS level. 
✔️ Understanding of networking fundamentals, including IP networking, routing, switching, and network protocol behaviour relevant to security analysis. 
✔️ Basic knowledge of regulatory requirements and standards such as ISO27001, ISO27701, PCI DSS, GDPR, and others. 
✔️ Administration and configuration of EDR/XDR platforms, including policy management, detection rule tuning, incident investigation, and endpoint threat response. 
✔️ Configuration and administration of enterprise VPN solutions, including secure remote access management, authentication policies, and network access control. 
✔️ Administration and tuning of DLP systems, including policy development, data classification integration, and monitoring of data exfiltration risks. 

Nice-to-Have:
✔️ Proficiency in working with any kind of simple scripts: bash, PowerShell or Python, etc.. 
✔️ Understanding of the basic principles of virtualisation platform functionality. 
✔️ Experience in complex implementation or support projects of enterprise information security solutions (any solution classes from the list): MDM, SIEM, DLP, PAM, NGFW, Endpoint Security. Etc..
✔️ Experience with deployment and administration of IDS/IPS solutions, including rule tuning and network threat detection. 
✔️ Experience with PaloAlto, Digital Guardian, OpenVPN security solutions. 

✅ Responsibilities:
System Administration:
✔️ Manage security systems: DLP, XDR, Network VPN gateway.
✔️ Implement and maintain security control policies to enhance security.
✔️ Keep security system infrastructure updated and patched. 
✔️ Integrate security systems with new IT solutions and assets.
✔️ Debug issues related to the security systems software - cooperate closely with vendor support. 

Monitoring and Analysis:
✔️ Continuously monitor network activity, systems load. 
✔️ Monitor and review vendor notifications about Saas security system maintenance, critical vulnerabilities, new releases and features. 
✔️ Identify and analyze potential threats and vulnerabilities in the security systems.

Incident Response: 
✔️ Respond to security incidents and provide 2-3 levels of support for the SOC team, coordinating incident response efforts. 
✔️ Escalate incidents to other teams as necessary. 

Reporting, Documentation, and Continuous Improvement: 
✔️ Prepare tech documentation after implementation of new security controls, system configurations. 
✔️ Create basic instructions for security software for end users. 
✔️ Suggest improvements to security system configuration and incident mitigation. 
✔️ Participate in post-incident reviews and propose enhancements. 

We invite a Senior Application Security Engineer to join our team.

🌎 Global Remote Mobility: Available for Senior roles in selected jurisdictions.

✅ Responsibilities:
✔️ Demonstrated ability to collaborate with other teams to achieve complex objectives.
✔️ Responsible for security architecture design from cloud infrastructure to application through the implementation of "secure by design" principles.
✔️ Collaborate with product managers, architects, and developers on the implementation of the security controls platform ecosystem and products.
✔️ Proof security implementations within infrastructure and application deployment manifests and the CI/CD pipelines.
✔️ Define required policies, controls, and capabilities for the protection of products and environments.
✔️ Build and validate declarative threat models automation.
✔️ Participate in engineering teams’ product planning cycles and committees.
✔️ Oversee the product security aspects for migration of products and services from Data Center to public cloud, e.g., AWS.
✔️ Serve as a trusted cyber security advisor to product and application teams.

✅ Minimum Requirements:
✔️ Experience integrating security scanning/tooling into the development pipeline.
✔️ Experience in analysing and securing microservices and applications developed using JavaScript and Typescript.
✔️ Experience with CI/CD pipelines (such as Gitlab, Jenkins) and infrastructure-as-a-code models (such as Terraform, Helm, or CloudFormation).
✔️ Hands-on development experience in Python/shell scripting.
✔️ Strong understanding of supply chain security, software integrity, and secure software delivery.
✔️ Experience with Docker and mesh technologies (such as ISTIO).
✔️ Experience with architecture and security reviews, threat modelling, and application risk is highly desired.
✔️ Experience working with Agile methodologies.
✔️ Knowledge of privacy laws and regulations, such as GDPR desired.
✔️ Familiarity with industry regulations, frameworks, and practices. For example, PCI, ISO 27001, NIST, etc.

✅ PREFERRED QUALIFICATIONS:
✔️ In-depth experience with architecting secure services on Kubernetes.
✔️ Extensive experience with architecting secure services on AWS or on-prem data centers.
✔️ Security-related professional certifications e.g., CISSP, CISM, CCSK, CCSP, CEH, are highly desirable.

✅ We offer excellent benefits, including but not limited to:
🚀 Career growth opportunities in an international and dynamic environment; 
📚 Opportunity to develop language skills with partial compensation for language courses; 
🎁 Special gifts for birthdays, weddings, and newborns; 
🏝️ 20 working days of paid annual vacation, plus 6 paid sick leaves; 
🍲 Office snacks and refreshments;
🏋️‍♂️ Sports package to support a healthy lifestyle;
🩺 Comprehensive medical insurance; 
📍 Comfortable office with great facilities in a prime location; 
 🎉 Exciting corporate events, team-building activities, and international company parties.

We invite a Senior Application Security Engineer to join our team.

🌎 Global Remote Mobility: Available for Senior roles in selected jurisdictions.

✅ Responsibilities:
✔️ Demonstrated ability to collaborate with other teams to achieve complex objectives.
✔️ Responsible for security architecture design from cloud infrastructure to application through the implementation of "secure by design" principles.
✔️ Collaborate with product managers, architects, and developers on the implementation of the security controls platform ecosystem and products.
✔️ Proof security implementations within infrastructure and application deployment manifests and the CI/CD pipelines.
✔️ Define required policies, controls, and capabilities for the protection of products and environments.
✔️ Build and validate declarative threat models automation.
✔️ Participate in engineering teams’ product planning cycles and committees.
✔️ Oversee the product security aspects for migration of products and services from Data Center to public cloud, e.g., AWS.
✔️ Serve as a trusted cyber security advisor to product and application teams.

✅ Minimum Requirements:
✔️ Experience integrating security scanning/tooling into the development pipeline.
✔️ Experience in analysing and securing microservices and applications developed using JavaScript and Typescript.
✔️ Experience with CI/CD pipelines (such as Gitlab, Jenkins) and infrastructure-as-a-code models (such as Terraform, Helm, or CloudFormation).
✔️ Hands-on development experience in Python/shell scripting.
✔️ Strong understanding of supply chain security, software integrity, and secure software delivery.
✔️ Experience with Docker and mesh technologies (such as ISTIO).
✔️ Experience with architecture and security reviews, threat modelling, and application risk is highly desired.
✔️ Experience working with Agile methodologies.
✔️ Knowledge of privacy laws and regulations, such as GDPR desired.
✔️ Familiarity with industry regulations, frameworks, and practices. For example, PCI, ISO 27001, NIST, etc.

✅ PREFERRED QUALIFICATIONS:
✔️ In-depth experience with architecting secure services on Kubernetes.
✔️ Extensive experience with architecting secure services on AWS or on-prem data centers.
✔️ Security-related professional certifications e.g., CISSP, CISM, CCSK, CCSP, CEH, are highly desirable.

✅ We offer excellent benefits, including but not limited to:
💻 Learning and development opportunities and interesting, challenging tasks.
✈️ Relocation package (tickets, staying in a hotel for up to 2 weeks, and visa relocation support for our employees and their family members).
📚 Opportunity to develop language skills, with partial compensation for the cost of English and Portuguese language classes (for localization purposes). 
🎾 Partial compensation for tennis and padel lessons. 
🏀 Urban Sport membership benefit (the most diverse sports and wellness offering in Europe, with more than 50+ activities). 
🏥 Private medical coverage, including inpatient, outpatient, dental care, annual check-ups, and maternity support. 
🏝 Time for proper rest, with 24 non-business days per year and an additional 6 paid sick days. 
🚌 Transport compensation - 200 euros net per month. 
📈 Competitive remuneration level with annual review. 
🤝 Teambuilding activities. 

We invite a Senior Application Security Engineer to join our team.

🌎 Global Remote Mobility: Available for Senior roles in selected jurisdictions.

✅ Responsibilities:
✔️ Demonstrated ability to collaborate with other teams to achieve complex objectives.
✔️ Responsible for security architecture design from cloud infrastructure to application through the implementation of "secure by design" principles.
✔️ Collaborate with product managers, architects, and developers on the implementation of the security controls platform ecosystem and products.
✔️ Proof security implementations within infrastructure and application deployment manifests and the CI/CD pipelines.
✔️ Define required policies, controls, and capabilities for the protection of products and environments.
✔️ Build and validate declarative threat models automation.
✔️ Participate in engineering teams’ product planning cycles and committees.
✔️ Oversee the product security aspects for migration of products and services from Data Center to public cloud, e.g., AWS.
✔️ Serve as a trusted cyber security advisor to product and application teams.

✅ Minimum Requirements:
✔️ Experience integrating security scanning/tooling into the development pipeline.
✔️ Experience in analysing and securing microservices and applications developed using JavaScript and Typescript.
✔️ Experience with CI/CD pipelines (such as Gitlab, Jenkins) and infrastructure-as-a-code models (such as Terraform, Helm, or CloudFormation).
✔️ Hands-on development experience in Python/shell scripting.
✔️ Strong understanding of supply chain security, software integrity, and secure software delivery.
✔️ Experience with Docker and mesh technologies (such as ISTIO).
✔️ Experience with architecture and security reviews, threat modelling, and application risk is highly desired.
✔️ Experience working with Agile methodologies.
✔️ Knowledge of privacy laws and regulations, such as GDPR desired.
✔️ Familiarity with industry regulations, frameworks, and practices. For example, PCI, ISO 27001, NIST, etc.

✅ PREFERRED QUALIFICATIONS:
✔️ In-depth experience with architecting secure services on Kubernetes.
✔️ Extensive experience with architecting secure services on AWS or on-prem data centers.
✔️ Security-related professional certifications e.g., CISSP, CISM, CCSK, CCSP, CEH, are highly desirable.

✅ We offer excellent benefits, including but not limited to:
🚀 Career growth opportunities in an international and dynamic environment;
📚 Opportunity to develop language skills with partial compensation for language courses;
🎁 Special gifts for birthdays, weddings, and newborns;
🏝️ 20 working days of paid annual vacation, 6 paid sick leaves;
🍲 Office snacks and refreshments;
🏋️‍♂️ Sports package to support a healthy lifestyle;
🩺 Comprehensive medical insurance for you and your partner;
📍 Comfortable office with great facilities in a prime location;
 🎉 Exciting corporate events, team-building activities, and international company parties.

We invite a Senior Application Security Engineer to join our team.

🌎 Global Remote Mobility: Available for Senior roles in selected jurisdictions.

✅ Responsibilities:
✔️ Demonstrated ability to collaborate with other teams to achieve complex objectives.
✔️ Responsible for security architecture design from cloud infrastructure to application through the implementation of "secure by design" principles.
✔️ Collaborate with product managers, architects, and developers on the implementation of the security controls platform ecosystem and products.
✔️ Proof security implementations within infrastructure and application deployment manifests and the CI/CD pipelines.
✔️ Define required policies, controls, and capabilities for the protection of products and environments.
✔️ Build and validate declarative threat models automation.
✔️ Participate in engineering teams’ product planning cycles and committees.
✔️ Oversee the product security aspects for migration of products and services from Data Center to public cloud, e.g., AWS.
✔️ Serve as a trusted cyber security advisor to product and application teams.

✅ Minimum Requirements:
✔️ Experience integrating security scanning/tooling into the development pipeline.
✔️ Experience in analysing and securing microservices and applications developed using JavaScript and Typescript.
✔️ Experience with CI/CD pipelines (such as Gitlab, Jenkins) and infrastructure-as-a-code models (such as Terraform, Helm, or CloudFormation).
✔️ Hands-on development experience in Python/shell scripting.
✔️ Strong understanding of supply chain security, software integrity, and secure software delivery.
✔️ Experience with Docker and mesh technologies (such as ISTIO).
✔️ Experience with architecture and security reviews, threat modelling, and application risk is highly desired.
✔️ Experience working with Agile methodologies.
✔️ Knowledge of privacy laws and regulations, such as GDPR desired.
✔️ Familiarity with industry regulations, frameworks, and practices. For example, PCI, ISO 27001, NIST, etc.

✅ PREFERRED QUALIFICATIONS:
✔️ In-depth experience with architecting secure services on Kubernetes.
✔️ Extensive experience with architecting secure services on AWS or on-prem data centers.
✔️ Security-related professional certifications e.g., CISSP, CISM, CCSK, CCSP, CEH, are highly desirable.

✅ We offer excellent benefits, including but not limited to:
🏝 24 vacation days annually 
🤒 6 sick days without a medical certificate 
🏥 Premium Health Insurance (coverage up to 5,000 EUR annually) 
🎉 Special occasion gifts: birthday, wedding, newborn 
📚 Learning & Development budget (for conferences, courses and certifications) 
🌍 Corporate events: international parties, team buildings, activities 
📈 Career growth opportunities in a fast-growing company 
✈️ Relocation package for international candidates 
🏋️ Sports package (FitPass membership) 
🗣️ Language classes: Serbian & English (company-covered)