Staff Security Engineer
Tasks
- Define authentication and authorization architecture
- Define policy enforcement
- Define secure logging and telemetry for authentication and authorization
- Define service to service authorization
- Define tenant isolation controls
- Design ABAC authorization model
- Design RBAC permission models
- Design identity and authorization for agents and connectors
- Enforce least privilege
- Evaluate authorization standards for multi tenant SaaS
- Implement API access control
- Implement rate limiting
- Perform code reviews
- Set standards for token scopes and rotation
- Support compliance improvements
- Write security code and submit pull requests
Perks/Benefits
- Critical illness insurance
- Dental plan
- Disability insurance
- Employer pension contribution
- Financial advice
- Fully covered Multisport card
- Fully covered medical plan
- Legal advice
- Life insurance
- Meal allowance
- Paid parental leave
- Paid time off
- Paid volunteer hours
- Remote work limited to Poland
- Therapy sessions
Skills/Tech-stack
ABAC | AKS | API authorization | Auth0 | Authentication | Authorization | Authorization Model | Azure Entra | Azure Entra ID | Entra ID | JWT | JWT handling | Keycloak | Least Privilege | MTLS | Microsoft Entra | Microsoft Entra ID | Multicloud | Networking | OAuth flows | OAuth2 | OIDC | Okta | OpenID Connect | Permission modeling | Policy enforcement | RBAC | RBAC permission modeling | Rate Limiting | Secure Logging | Security Architecture | Security Hardening | Service authentication | Service to Service | Service-to-Service Authentication | Telemetry | Tenant Isolation | Token handling | Workload Identities
Education
N/A
Roles
Architect | Engineer | Security | Security Architect | Security Engineer | Staff Security Engineer
Related jobs
-
Workplace Platform Engineer PL PLN 264K-360KActive Directory | Azure Active Directory | BitLocker | Conditional Access | Detection and ResponseContinuous learning | Cross technology collaboration | Opportunity to contribute to global IT leader | Professional growthMid-level Full TimeWarsaw, Poland2h ago
-
Senior Software Engineer, Cloud Certificate Manager PLN 258K-360KAPI Design | C++ | Distributed Systems | Go | Integration TestingSenior-level Full TimeWarsaw, Poland5h ago
-
Senior Data Security & Privacy Engineer PLN 237K-400KAccess Control | Audit trails | Azure Key Vault | CI/CD | Data ClassificationLearning and development opportunities | Life critical illness and disability insurance | Meal allowance | Medical dental rehab coverage | Multisport cardSenior-level Full TimeWarsaw, Poland1d ago
-
Application Security Engineer PLN 252K-297KAI Security | AWS | Access Control | Access Management | Application SecurityFitness wellness program | Healthcare coverage | Learning and development budget | Life insurance | Onboarding allowanceMid-level Full TimeRemote (Poland) R1d ago
-
Security Engineer (CloudSec) PLN 237K-396KAccess provisioning | CI/CD | Cloud Security | Container Security | DevSecOpsGlobal collaboration at scale | Knowledge sharing culture | Modern workspace facilitiesSenior-level Full TimeWarszawa, Masovian Voivodeship, Poland1d ago
-
AWS | Bash | Cloud Workspaces | GCP | LinuxAutonomy | Collaborative culture | Recognition | Remote-friendly environment | Social benefits packageMid-level Full TimeWarsaw, Poland1d ago
-
Algorithms | Automation | Capacity Planning | Code optimization | Complexity analysisMentorship | Supportive teamSenior-level Full TimeWarsaw, Poland2d ago
-
IT Security Analyst PLN 120K-174KAWS Secrets | AWS Secrets Manager | Auditability | Azure Key Vault | Control AssessmentCharity actions | Comprehensive coaching | Group insurance | Home-office package | Hybrid workMid-level Full TimePoznan, PL, 60-198 R2d ago
-
Senior-level Full TimeKrakow3d ago
-
.NET | Access Control | Active Directory | Authentication | AuthorizationCareer growth | Continuous learning | Health benefitsMid-level Full TimeKraków, Poland5d ago
-
Software Engineer - Netwrix Privilege Secure Discovery PLN 211K-273KAWS | Active Directory | Authentication | Authorization | AzureCareer growth | Collaborative work environment | Continuous learning | Health benefitsMid-level Full TimeKraków, Poland5d ago
-
AWS | Access Management | Active Directory | Azure | Azure PipelinesCareer growth | Collaborative work environment | Continuous learning | Health benefitsSenior-level Full TimeKraków, Poland5d ago
-
IT Security Analyst (She/ He/ They) PLN 104K-156KAccess Governance | CIS Controls | Credential Management | CyberArk | HashiCorp VaultB2B contract | Flexible collaboration modelMid-level Full TimePoland6d ago
-
Staff Application Security Engineer GBP 70K-85KApplication Security | CI/CD | CVSS | Code review | Container ScanningEquity and belonging | Family financial plans | Flexible schedules | Health and wellness benefits | Learning and developmentSenior-level Full TimeEMEA; Italy, Remote; Netherlands, Remote; Poland, … R6d ago
-
Infrastructure Security – Tech Lead PLN 237K-360KAWS | Admission controllers | CIS Benchmarks | DISA STIG | Detection and preventionAdditional day off | Conference participation | Flexible working hours | Free English lessons | Mental health programmeSenior-level Full TimePoznań, Poland7d ago
-
Client Technology - DevX Principal Engineer - Tech Lead PLN 264K-360KAKS | Ansible | Ansible Tower | App Insights | AquasecSenior-level Full TimeWrocław, DS, PL, 50-0869d ago
-
Algorithms | C++ | Containerization | Data Structures | Distributed SystemsSenior-level Full TimeWarsaw, Poland12d ago
-
Application Security Engineer - Pentester PLN 237K-354KAPI Security | API security testing | Application Testing | Authenticated Scanning | Authentication testingDental coverage | Disability insurance | Fully covered medical plan | Gym membership | Legal and financial adviceMid-level Full TimeWarsaw, Poland14d ago
-
Information Security Architect PLN 264K-360KAccess Management | Application Delivery Controller | Application Firewall | Application delivery | Artifact scanningEmployee resource groups | Flexible Leave Paid Time Off | Global Wellbeing Days | Growth opportunities | Mentors and Role ModelsSenior-level Full TimeWarsaw, Masovian Voivodeship, Poland15d ago
-
Information Security Architect PLN 264K-360KAccess Management | Artifact scanning | Azure | Azure Firewall | Azure NetworkFlexible Leave Paid Time Off | Global Wellbeing Days | Growth opportunities | Mentoring | Remote working opportunitiesSenior-level Full TimeKraków, Lesser Poland Voivodeship, Poland15d ago
-
Security Operations Engineer PLN 180K-279KAWS | Firewall | Forensic analysis | Incident Response | Intrusion DetectionCulture of trust and accountability | Employee resource groups | Flexible Leave Paid Time Off | Global Wellbeing Days | Global wellbeing programMid-level Full TimeWrocław, Lower Silesian Voivodeship, Poland15d ago
-
Information Security Architect PLN 264K-360KAKS | Access Management | Artifact scanning | Azure | Azure FirewallFlexible Leave Paid Time Off | Global Wellbeing Days | Growth opportunities | Mentorship | Remote working opportunitiesSenior-level Full TimeWrocław, Lower Silesian Voivodeship, Poland16d ago
-
Security Architect PLN 264K-360KAccess Control | CDC | Cloud Security | Data Lake | Data WarehouseAgile/Scrum environment | Flexible schedule | Flexible working hours | Hybrid or remote work | Technical equipmentSenior-level Full TimeKraków, Lesser Poland Voivodeship, Poland - … R16d ago
-
Information Security Architect PLN 264K-360KAKS | AWS | Access Management | Artifact scanning | AzureEmployee Mentors | Flexible Leave Paid Time Off | Global Wellbeing Days | Growth opportunities | Remote working opportunitiesSenior-level Full TimeKraków, Lesser Poland Voivodeship, Poland17d ago
-
Security Engineer PLN 211K-279KAWS | Ansible | Bash | CIA triad | Cloud ComputingFlexible working hours | Inclusive community | Professional development planMid-level Full TimeWarsaw, Poland20d ago