Staff Security Engineer
Tasks
- Create reusable security guardrails and shared services
- Define API authorization standards
- Define end to end identity and authorization security architecture
- Define tenant isolation standards
- Design identity and authorization for agents and connectors
- Design role permission models
- Design secure logging and telemetry for authentication and authorization
- Design service to service authorization
- Enforce least privilege
- Evaluate authorization standards for multitenant SaaS
- Implement attribute based access control
- Implement policy enforcement
- Implement role-based access control
- Perform code reviews
- Submit pull requests to repositories
- Support FedRAMP style compliance improvements
- Support IRAP compliance improvements
- Support SOC 2 compliance improvements
- Write secure code for authorization changes
Perks/Benefits
- Cafeteria benefits
- Corporate mobile plan
- Flexible time off
- Gym wellness membership
- Learning opportunities
- Meal vouchers
- Medical insurance
- Paid volunteer hours
- Public transport reimbursement
Skills/Tech-stack
.NET | ABAC | AKS | API Design | API Security | Auth0 | Authentication | Authorization | Automation | Azure Entra | Azure Entra ID | C Sharp | Code review | Entra ID | Go | JWT | Java | Keycloak | Least Privilege | MTLS | Networking Security | OAuth | OAuth2 | OIDC | Okta | OpenID Connect | Policy enforcement | Python | RBAC | Rate Limiting | Secure API | Secure API Design | Secure Logging | Security Hardening | Telemetry | Tenant Isolation | Tokenization | TypeScript
Education
N/A
Roles
Architect | Engineer | Security | Security Architect | Security Engineer | Staff Security Engineer
Related jobs
-
Senior Data Engineer CZK 1308K-1308KAWS | Apache Spark | Azure | Data Warehousing | GCPEducational support | Employee assistance program | Flexible time off | Hybrid work | Internal mentoringSenior-level Full TimePrague, Czech Republic1d ago
-
Software Development Engineer in Test (SDET) CZK 600K-900KAPI Testing | Agile | Automated testing | BDD | CI/CDMinimal business travelMid-level Full TimeCZE-Praha 11 V Parku 2343/24, Czechia2d ago
-
Windows Detection Engineer/Malware Researcher - Senior/Staff CZK 1308K-1308KARM | Behavioral detection | C++ | Dynamic analysis | Exploit DevelopmentEducational support | Equipment provided | Flexible time off | Hybrid work | Internal mentoringSenior-level Full TimeBrno, South Moravian, Czech Republic; Czech …2d ago
-
Staff Infrastructure Engineer - Kubernetes platform CZK 1020K-1200KAWS | AWS EKS | Argo | Argo CD | ArgoCDCompany laptop provided | Educational support | Employee assistance program | Extra paid sick days | Flexible time offSenior-level Full TimeBrno, South Moravian, Czech Republic2d ago
-
Staff Infrastructure Engineer - Kubernetes platform CZK 1020K-1200KAWS EKS | ArgoCD | Cert-Manager | Cilium | CoreDNSAdditional paid sick leave | Employee assistance program | Flexible time off | Flexible-hybrid work | Laptop providedSenior-level Full TimePrague, Czech Republic2d ago
-
C# Cyber Security Engineer CZK 542K-816K.NET | AWS | Application development | C# | CI/CDCompany events | Contribution to life insurance pension insurance DIP | Discounted mobile phone tariff for family members | Language courses | Meal allowanceMid-level Full TimeBRNO MĚSTO, JIHOMORAVSKÝ KRAJ, Czech Republic2d ago
-
Advanced Web Application Firewall | Application Firewall | Change Management | English language | F5Company profit sharing | Cultural events | Employee benefits platform | Flexible working hours | Health benefitsEntry-level Full TimeOstrava, CZ, 702 003d ago
-
Senior ML Engineer - Static AI Detection team CZK 1193K-1308KAWS | CI/CD | Databricks | Docker | HadoopEducational support | Employee assistance program | Flexible time off | Flexible-hybrid work | Life insuranceSenior-level Full TimePrague, Czech Republic8d ago
-
Application Programming | Application Programming Interfaces | Audit Support | Automation | Code ScanningE-learning access | Flexible working hours | Group share plan | Health and wellbeing benefits | Hybrid workMid-level Full TimePrague, CZ8d ago
-
Access Management | BeyondTrust Privileged Access Management | Cause analysis | Cortex XDR | Data Loss Prevention5-week holiday | Cafeteria benefits program | Car allowance | Meal vouchers | Multisport cardMid-level Full TimePrague, Czech Republic10d ago
-
Mid-level Full TimeBrno, Czech Republic, Czechia14d ago
-
AWS | Argo Rollouts | ArgoCD | Backstage | ClickHouseEducational support | Employee assistance program | Flexible time off | Flexible-hybrid work | LinkedIn LearningSenior-level Full TimeCzech Republic14d ago
-
AI Agents | AWS | Argo CD | ArgoCD | BackstageEducational support | Employee assistance program | Flexible time off | Flexible-hybrid work | Internal mentoringSenior-level Full TimeBrno, South Moravian, Czech Republic14d ago
-
AWS | ArgoCD | Backstage | Blue/green | CI/CDCompany events | Educational support | Employee assistance program | Flexible time off | Hybrid work flexibilitySenior-level Full TimePrague, Czech Republic14d ago
-
ABAC | AWS IAM | Access Management | Access reviews | AnsibleCorporate coaching | Family days | Flexible start time | Internal knowledge base access | Psychologist supportSenior-level Full TimePrague, Prague, Czechia - Remote R17d ago
-
AWS CloudTrail | Audit Logs | Automation | Bash | Cause analysisContinuous professional development support | Corporate coaching | Family days | Flexible start time | Internal workshops and eventsSenior-level Full TimePrague, Prague, Czechia - Remote R17d ago
-
AWS | AWS CloudFormation | AWS Secrets | AWS Secrets Manager | Access ManagementFlexible working schedule | Home-office allowance | Hybrid work environment | Learning and career growth opportunities | Life and disability insuranceMid-level Full TimeCZ - Prague, Czechia20d ago
-
CyberSecurity Analyst - Wayfinder MDR CZK 464K-637KBash | Computer forensics | Endpoint Agent | Incident Response | LinuxEducational support | Employee assistance program | Flexible time off | Flexible-hybrid work | LinkedIn LearningMid-level Full TimePrague, Czech Republic20d ago
-
AWS | Access Control | Audit Logging | Authentication | AuthorizationCorporate mobile plan | Flexible cafeteria benefits | Learning and development budget | Meal vouchers | MentoringSenior-level Full TimePrague, Czechia21d ago
-
Bash | CI/CD | Git | GitHub | GitLabMid-level Full TimeBrno - Tech Park Brno - … R24d ago
-
AWS | Asset Criticality | Attack surface | Attack surface management | BashCompany-sponsored team events | Flexible time off | In Office Collaboration Prague Office | Wellness resourcesSenior-level Full TimePrague, Czech Republic27d ago
-
Application Security | C# | C++ | Cloud Computing | Container SecurityFlexible working schedule | Home-office allowance | Hybrid work environment | Learning and career growth opportunities | Life and disability insuranceEntry-level Full TimeCZ - Brno, Czechia30d ago
-
We're Hiring: Malware Researcher CZK 360K-600KDebuggers | Hiew | IDA Pro | Impa la | KibanaEAP | Extra vacation days | Language courses | Loyalty program | Meal voucherEntry-level Full TimePrague, Czechia1mo ago
-
Security Analyst - L2 CZK 540K-600KActive Directory | Bash | CrowdStrike | Darktrace | EDRBusiness laptop | Employee referral bonus | Flexi time off | HO expenses contribution | Hybrid workMid-level Full TimeDigital Hub Prague, Czechia1mo ago
-
Application Security Engineer - Pentester CZK 420K-432KAPI Security | Application Security | Authentication | Authorization | BOLAFlexible cafeteria benefits | Gym and wellness card | Learning and development programs | Meal vouchers | Medical leaveEntry-level Full TimePrague, Czechia1mo ago