Product Security Engineer [Poland]

Security Poznań, Poland or Remote, Poland

Apply

Description

Product Security Engineer

[Poland]

 

EGNYTE YOUR CAREER. SPARK YOUR PASSION.

Egnyte is a place where we spark opportunities for amazing people. We believe that every role has meaning, and every Egnyter should be respected. With 17,000 customers worldwide and growing, you can make an impact by protecting their valuable data. When joining Egnyte, you’re not just landing a new career, you become part of a team of Egnyters that are doers, thinkers, and collaborators who embrace and live by our values:

IconDescription automatically generatedInvested Relationships

IconDescription automatically generatedFiscal Prudence

IconDescription automatically generatedCandid Conversations

 

ABOUT EGNYTE

Egnyte is the secure multi-cloud platform for content security and governance that enables organizations to better protect and collaborate on their most valuable content. Established in 2008, Egnyte has democratized cloud content security for more than 17,000 organizations, helping customers improve data security, maintain compliance, prevent and detect ransomware threats, and boost employee productivity on any app, any cloud, anywhere. For more information, visit www.egnyte.com.

Security engineers at Egnyte are involved in every stage of the SDLC pipeline to highlight security vulnerabilities and provide expert advice on reducing them. By promoting security principles, ongoing penetration testing, and developing “paved roads,” we’re able to provide our customers with a secure and reliable product.

Currently, we’re seeking an engineer who’s well-rounded in terms of application security and has in-depth expertise in one or more particular areas. You’ll be able to apply your skills to interesting challenges—joining Egnyte is an opportunity to work with diverse technologies and large-scale software (1 million users, 20k transactions per second, 28 Petabytes of data).  Working closely with more senior security engineers will enable you to develop your expertise in a wide range of areas of your choosing.

To excel at this role, you need to be passionate about DevSecOps, as it’s something we’re genuinely committed to at Egnyte. Knowledge about cloud platform security practices and interest in developing security tooling are important as well. You will have a chance to develop security-oriented tools and processes from conception to completion.

 

WHAT YOU’LL DO:

  • Work with engineering teams providing expertise and advice regarding secure architecture, design, and implementation
  • Develop reliable and scalable security-oriented tools
  • Develop / Integrate security into the Software Development Life Cycle
  • Perform black box and white box applications security assessments
  • Reproduce, score, and further analyze issues reported through our bug bounty programs
  • Identify opportunities for vulnerability remediation and mitigation
  • Develop tools, documentation, processes, and techniques to ensure the security of our software
  • Partner with engineering teams in the design phase of new products and features to conduct threat modeling, plus security architecture, design, and code reviews
  • Share your experience with junior engineers to foster a culture of excellence

 

YOUR QUALIFICATIONS:

  • 3+ years of application security experience, DevSecOPS/Automation background preferred
  • Experience with securing software development lifecycle (SDLC) including manual and automated application security testing
  • Hands-on experience performing secure code review and architecture design reviews
  • Understanding of OAuth/OIDC implementation
  • In-depth knowledge of OWASP guidelines: Application Security Verification Standard (ASVS), Mobile Application Security Verification Standard (MASVS), Web Security Testing Guide (WSTG), Mobile Application Security Testing Guide (MASTG), TOP 10
  • Solid knowledge of security testing tools and techniques
  • Being able to learn and find bugs in any language, specifically Java, JavaScript, Go, and Python
  • Familiarity with concepts like Identity, Data protection, Monitoring, and IR in the cloud services space
  • Ability to create and deploy your own tools and automation (preferably in Python)
  • Being a strong communicator who is comfortable working cross-functionally, with a track record of delivering results and demonstrating strong ownership.
  • English level: C1

 

BONUS POINTS:

  • Experience as a hands-on developer in Java, Python, or JavaScript.
  • Experience configuring CI/CD pipelines (e.g., GitLab CI, Jenkins)
  • Experience with security assurance for desktop and mobile applications.
  • Experience running penetration testing against cloud-native applications

 

BENEFITS:

  • Salary up to 20.000 PLN net + VAT depending on skills and experience
  • Flexible forms of employment and working hours
  • Great office space overlooking Lake Malta. We enjoy working there, but if you live too far away to visit Poznań regularly, that’s totally fine. We know how to effectively work in a hybrid/remote model and will figure out a way for you to comfortably do your best work
  • Stock options
  • Your own Egnyte account with lifetime access (2 TB of storage)
  • 4000 PLN Gross conference budget per person and additional 4 training days each year
  • MyBenefit: you can choose a MultiSport card or gift card every month
  • Private medical healthcare
  • In-house English classes

 

COMMITMENT TO DIVERSITY, EQUITY, AND INCLUSION:

At Egnyte, we celebrate our differences and thrive on our diversity for our employees, our products, our customers, our investors, and our communities. Egnyters are encouraged to bring their whole selves to work and to appreciate the many differences that collectively make Egnyte a higher-performing company and a great place to be.

Apply Apply Later
← Back to Current Openings

Share

Similar Jobs

{{ job.title }}