Senior Security Systems Operations Engineer

The Senior Software Security Engineer will be responsible for analysing software designs and implementations from a security perspective, identifying and proposing remediations to security issues throughout the software development lifecycle (SDLC). Experience and Education • 5+ years of experience in Security Engineering with a focus on product security and/or application security. • Bachelor’s degree in Computer Science, Information Security, or a related technical field. • Good verbal and written English communication. Technical Skills • In-depth knowledge of Linux and Docker container-based infrastructures, including their orchestration (e.g. Kubernetes). • Working knowledge of techniques, standards, and state-of-the-art authentication and authorization technologies, applied cryptography, security vulnerabilities and remediations. • Significant software development experience. Experience in Go (our main backend language), Typescript/Javascript, C/C++, Python and Bash is desirable. • Working knowledge of web-related protocols and technologies (HTTP, REST APIs, DOM, CSP), networking protocols (IP, TCP, UDP), and security protocols (TLS). • Experience in performing threat modeling, with a good grasp of common threat vectors and frameworks. • Strong knowledge of security principles, best practices, and industry standards, such as NIST, ISO 27001, and CIS Critical Security Controls, OWASP ASVS and Testing Guides. • Familiarity with industry-standard security frameworks such as OWASP and NIST. • Experience with security tools such as SAST, DAST, IAST, and SCA. • Exceptional analytical and investigative skills, with hands-on experience in root cause analysis. • Knowledge of current and emerging threats and techniques for exploiting security vulnerabilities. • Experience with CI/CD pipeline, security tools integration, and secure SDLC. • Experience with cloud-based infrastructure (AWS, Azure, or Google Cloud), and on best practices on how to secure cloud environments. Desirable Qualifications Advanced Expertise • Familiarity with security considerations for AI/ML systems is desirable. • Understanding of distributed systems design, implementation and operation. • Understanding of privacy threats and controls, including on how to adapt generic best practices to specific scenarios in the product by providing detailed specifications to stakeholders. • Exploit development experience, and good understanding of the necessary conditions to trigger different vulnerability types, and the maximum impact achievable. • Experience with enterprise log collection and analysis platforms (e.g., Splunk, OSQuery). Education and Certifications • Master's degree or equivalent experience preferred. • Security certifications are a plus, including OSCP, OSEE, SANS/GIAC, CCSP, and CISSP. Soft Skills and Leadership • Excellent verbal and written communication, with the ability to translate complex security concepts to technical and non-technical stakeholders. • Demonstrated ability to design, document, and implement new security processes. • Experience in a high-growth technology environment or SaaS business. • Ability to remain calm under pressure, especially during incidents or audits. In return for your expertise, we’ll support you in this new challenge with coaching & development every step of the way. Also, to reward the hard work, you’ll get: • Contract of Employment (UoP) • Private medical coverage, Multisport • Life insurance (two annual incomes),  • Employee Stock Purchase Plan – 15% discount for buying Motorola’s Stock units,  • Employee Pension Plan – 3,5 % of the month’s salary gross, which goes to the retirement account • IP Tax Relief (up to 50%) • Yearly salary increase (depends on individual performance) • Yearly bonus (depends on company performance) • UK working hours (working day between 10-18),  • 8 hours working day (30 minutes lunch break included). • Hybrid/ remote work: This role is primarily hybrid, with occasional travel to our Krakow office.