Senior Security Architect

Beekeeper is an innovative, award winning SaaS technology company in a growing market with global operations and high ambitions.Beekeeper is disrupting the way 2 billion people working “out in the field” communicate within their companies. Are you eager to use the latest mobile technology to help shape the future of frontline industries like hospitality, retail, manufacturing or transportation? 

Shape the future of security at Beekeeper! We're looking for a Senior/Principal Security Architect to safeguard our cloud solutions and web applications. Dive into a dynamic role where your expertise in pentest, SAST, DAST, IDS, SDLC, and DevOps will make a real impact. Collaborate with talented teams and drive security best practices. Ready to be our Subject Matter Expert? Apply now! #SecurityArchitect #AppSec #CloudSecurity #DevOps #Beekeeper

Your Responsibilities 

• Execute and enhance the Beekeeper Security posture and keep security roadmap up to date with quarterly reviews and implementation coordination.
• Develop security strategy towards AI usage.
• Manage recurring security review processes including penetration testing, perform internal pentests.
• Own automated DAST, SAST, SCA setups, coordinate follow-up actions resolution across the organization, tune for maximal efficiency
• Contribute to Software Development Lifecycle by promoting secure coding, API, and AI security; manage SAST via GitHub, review third party components and vulnerabilities with SCA tool.
• Coordinate and track security incidents and tickets to ensure timely resolution within SLAs.
• Conduct risk assessments, perform Threat Intelligence reviews and manual security analysis (SIEM alerts).
• Supervise recurring security OWASP sessions facilitated by engineers, support the security awareness trainings

What we look for in you

• 6+ years of professional experience in application and cloud security.
• Experience applying security best practices in cloud environments such as AWS and GCP.
• Understanding of emerging security concerns related to LLMs and AI systems.
• Strong understanding of application and API security principles (e.g., OWASP Top 10, OWASP API Top 10).
• Knowledge of Cloud Security Posture Management (CSPM) tools and methodologies.
• Solid understanding of data security, encryption techniques and secure data handling.
• Practical experience with source code analysis and the ability to read and understand Python and Java. 
• Working knowledge of network protocols and security concepts, including TCP/IP, DNS, WAFs, and IDS.
• Experience securing Infrastructure as Code (IaC) using tools like Terraform or CloudFormation.
• Familiarity with secure development practices and the software development lifecycle (SDLC). SAST and DAST tools.
• Proficiency with GitHub and CI/CD workflows. Strong grasp of CI/CD pipeline security practices and automation tooling.
• Hands-on experience with Kubernetes and containerized infrastructure.
• Hands-on experience with SCA tools and vulnerability management.

Bonus Points

• Advanced interest or expertise in LLM/AI security.
• Production experience writing Python and Java code.
• Familiarity with Azure cloud security practices.
• Experience with Jenkins CI/CD pipelines.
• Knowledge of Spacelift or similar IaC orchestration platforms.
• Practical exposure to pentesting, SAST, DAST, or IDS tools.
• Contributions to security communities or open-source projects.
• Proven ability to collaborate across DevOps and InfoSec teams.

Our technology stack

• We run on top of AWS and GCP across 4 regions.
• We believe in Infrastructure as Code and manage our cloud infrastructure using Spacelift.
• We run our microservices in containers using managed Kubernetes (EKS and GKE). We manage deployments using Kustomize, Fluxcd and Helm
• Our microservices are written in Java and Python with the majority being written in Java.
• We monitor our services using Prometheus, Grafana, Alertmanager and Jaeger running on top of Grafana Cloud. We use logz.io for our Logging.
• We run multiple data stores including MySQL, PostgreSQL, ClickHouse & Elasticsearch
• We leverage AI both as an engineering productivity tool and a way to bring value to our customers
• And when things go wrong we use PagerDuty and StatusPage to let our teams and customers know.

What we offer

• Competitive salary
• Phone & Home Internet costs reimbursement up to 80 PLN/month
• Private health care package with Luxmed 
• Multisport Benefit card 
• Creative Allowance – paid as 1000 PLN gross/month
• Home office set-up reimbursement up to 1000 PLN
• Personal Learning & Development Budget of 1500 USD/year 
• Sabbatical Program – 1 month paid leave at 3, 6, 10 year tenure
• 26 days of annual leave/year
• 2 Mental Health days off per year
• Laptop for work purposes
• Hybrid working model

Who we are

Beekeeper believes in the potential of every single employee. That’s why we’ve built the essential platform for frontline workers. We help organisations digitally enable their frontline, to boost productivity, quality and safety, and be more agile.

At Beekeeper, we celebrate diversity! All qualified applications will receive consideration for employment regardless of race, colour, ancestry, religion, nationality, sexual orientation, age, citizenship, marital status, disability or gender identity. We are committed to ensuring a smooth application process for all candidates. If you require accommodations due to a disability, please reach out to jobs@beekeeper.io, and our team will be more than happy to assist you.

Please know that you are not required to share your nationality, age or a picture of you on the CV! We are looking forward to your application! 🙂