SecOps Engineer

Location: Bucharest

Location Qualifications: hybrid, 2 days in the office

Position Overview:

Reporting to the Engineering Manager, the L2 SecOps Engineer will assist in advancing security measures in cloud-native environments and driving automation within security processes. This role offers an opportunity to deepen your expertise in modern SecOps practices while contributing to the security of Showpad's infrastructure, products, and operations.

Key Responsibilities: 

• Collaborate with teams to ensure security best practices are integrated into application, hardware, and cloud infrastructure.
• Support the implementation and enhancement of CI/CD pipelines with security and quality tooling.
• Assist in managing the CNAPP (Cloud-Native Application Protection Platform) solution.
• Monitor and respond to security events involving vulnerabilities, endpoints, user behavior analytics, firewalls, IDS/IPS, and external threat intelligence.
• Conduct vulnerability management activities, including coordination with bug bounty programs and external penetration tests.
• Contribute to security automation within development workflows and infrastructure monitoring.
• Assist in security posture management of cloud environments (e.g., AWS), including securing containerized and serverless workloads.
• Help teams adopt best practices in the Secure Software Development Life Cycle (SSDLC).
• Participate in risk assessments, implement mitigation strategies, and ensure adherence to security policies.
• Performs other duties as assigned by immediate supervisor or management team.

Requirements:

• Relevant experience in information security, with exposure to security operations or application security.
• Hands-on experience with cloud platforms (preferably AWS), container technologies (e.g., Docker, Kubernetes), and securing microservices architectures.
• Familiarity with security tools and techniques for vulnerability management (e.g., SAST, DAST, SCA).
• Good scripting or development skills for automating tasks (e.g., in Python, TypeScript, or similar languages).
• Understanding of incident response principles and ability to handle security incidents efficiently.
• Solid understanding of web application security principles and frameworks.
• Working knowledge of compliance frameworks (e.g., GDPR, ISO 27001, SOC 2) and their relevance to security.
• Awareness of phishing and social engineering mitigation strategies.
• Strong English communication skills to effectively explain security concepts to diverse audiences.

Nice to have:

• Experience in a DevSecOps role.
• Experience with infrastructure-as-code, preferably AWS CDK (Typescript)
• Familiarity with forensic analysis and incident response workflows.
• Certifications such as OSCP, CISSP, CEH, or AWS Security Specialty.

Company Highlights: 

Founded in 2011, Showpad is the world’s leading Enablement Operating System (eOS™). We align Sales and Marketing teams around impactful content and measurable engagement, enabling sellers to build unique buying experiences and continuously improve conversion rates. Sellers close more deals – faster – with Showpad.

With dual-headquarters in Ghent and Chicago, regional offices in London, Munich, Bucharest and Wroclaw, and remote hubs across the US and EMEA, Showpad is powered by a diverse global workforce of more than 400 people. Our employee value proposition centers around impact, purpose and belonging. Our culture is based on flexibility, trust and setting people up for success. At Showpad, we foster inclusion, innovate for impact and never stop to raise the bar. We take serious care of our people but never take ourselves too seriously.

What you can expect from Showpad

We welcome every voice and are committed to building a truly inclusive environment where your differences are not just welcomed, they are celebrated. We’re building a best-in-class experience for our employees and are always identifying opportunities to encourage our team to be their authentic selves. Whether that’s paid parental leave, paid holidays (including Juneteenth and paid time off to vote), paid time off to volunteer at non-profit organizations, personal development opportunities or professional stretch assignments, you can expect Showpad to support you. 

We are committed to creating a diverse and inclusive organization and are proud to be an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, gender identity or expression, sexual orientation, national origin, genetics, pregnancy, disability, age, veteran status, or other dimensions of identity.

#LI-CP5 #Li-hybrid