Senior SecOps Engineer

Location: Bucharest

Location Qualifications: hybrid, 2 days in the office

Position Overview:

The Senior SecOps Engineer will play a critical role within Showpad's Security Operations team, enabling and collaborating with various departments such as the Engineering teams, Product and other business units. This role is responsible for identifying, managing, and mitigating cybersecurity risks that Showpad may face.

Reporting to the Engineering Manager, the Senior SecOps Engineer will be instrumental in enhancing the team’s security capabilities, particularly in cloud-native environments. The ideal candidate should have solid experience in SecOps practices, a deep understanding of modern security methodologies, and a focus on driving security within our cloud infrastructure and application development processes.

Key Responsibilities: 

• Manage cybersecurity operations, including tasks related to application, hardware and cloud infrastructure security.
• Act as the key cybersecurity contact for internal teams (Product, Engineering, Cloud Operations, Business Operations) regarding daily practices, company-wide initiatives, and the Showpad product.
• Ensure that development teams adopt and implement best practices in software security development.
• Enable development teams by providing CI/CD processes that integrate security and quality tooling.
• Manage and improve our CNAPP solution
• Oversee and manage cybersecurity operations, ensuring continuous monitoring and protection of cloud infrastructure and applications Cloud and Application Security Posture Management
• Manage and respond to events related to vulnerability programs, endpoint protection, user behavior analytics, firewalls, IDS/IPS, external threat intelligence.
• Collaborate with internal teams to ensure security best practices and policies are adhered to across the organization.
• Develop and maintain security controls and automation strategies within CI/CD pipelines.
• Monitor and assess risks, manage vulnerabilities, and implement appropriate security measures.

Requirements:

• Proven experience in information security, with a background in security operations, application security, or related roles.
• Skilled in identifying, analyzing, and handling phishing attempts and other social engineering threats.
• Strong knowledge of modern web application security practices and frameworks.
• In-depth understanding of the Secure Software Development Life Cycle (SSDLC).
• Experience implementing security automation for testing, monitoring, or orchestration workflows in Typescript or similar.
• Proficiency in container technologies, such as Docker and Kubernetes, and serverless environments like AWS Lambda, with hands-on experience securing cloud-based applications, preferably in AWS.
• Knowledge of securing microservices-based architectures.
• Practical experience conducting security assessments, including Static Application Security Testing (SAST), Dynamic Application Security Testing (DAST), and Software Composition Analysis (SCA).
• Experience managing vulnerabilities through bug bounty programs, penetration testing, and automated security scanning.
• Understanding of security and privacy frameworks, such as GDPR, ISO 27001, and SOC 2, is an asset.
• Strong English communication and presentation abilities, with the capacity to explain complex security concepts to both technical and non-technical audiences.

Nice to have:

• Experience in a DevSecOps role
• Experience with Incident Response
• Experience with Forensics
• Achieved certifications like f.e OSCP, CISSP, CEH or AWS Security Specialty.

Company Highlights: 

Founded in 2011, Showpad is the world’s leading Enablement Operating System (eOS™). We align Sales and Marketing teams around impactful content and measurable engagement, enabling sellers to build unique buying experiences and continuously improve conversion rates. Sellers close more deals – faster – with Showpad.

With dual-headquarters in Ghent and Chicago, regional offices in London, Munich, Bucharest and Wroclaw, and remote hubs across the US and EMEA, Showpad is powered by a diverse global workforce of more than 400 people. Our employee value proposition centers around impact, purpose and belonging. Our culture is based on flexibility, trust and setting people up for success. At Showpad, we foster inclusion, innovate for impact and never stop to raise the bar. We take serious care of our people but never take ourselves too seriously.

What you can expect from Showpad

We welcome every voice and are committed to building a truly inclusive environment where your differences are not just welcomed, they are celebrated. We’re building a best-in-class experience for our employees and are always identifying opportunities to encourage our team to be their authentic selves. Whether that’s paid parental leave, paid holidays (including Juneteenth and paid time off to vote), paid time off to volunteer at non-profit organizations, personal development opportunities or professional stretch assignments, you can expect Showpad to support you. 

We are committed to creating a diverse and inclusive organization and are proud to be an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, gender identity or expression, sexual orientation, national origin, genetics, pregnancy, disability, age, veteran status, or other dimensions of identity.

#LI-CP9 #Li-hybrid