Staff Security Engineer
Tasks
- Create reusable security guardrails and shared services
- Define API authorization standards
- Define end to end identity and authorization security architecture
- Define tenant isolation standards
- Design identity and authorization for agents and connectors
- Design role permission models
- Design secure logging and telemetry for authentication and authorization
- Design service to service authorization
- Enforce least privilege
- Evaluate authorization standards for multitenant SaaS
- Implement attribute based access control
- Implement policy enforcement
- Implement role-based access control
- Perform code reviews
- Submit pull requests to repositories
- Support FedRAMP style compliance improvements
- Support IRAP compliance improvements
- Support SOC 2 compliance improvements
- Write secure code for authorization changes
Perks/Benefits
- Cafeteria benefits
- Corporate mobile plan
- Flexible time off
- Gym wellness membership
- Learning opportunities
- Meal vouchers
- Medical insurance
- Paid volunteer hours
- Public transport reimbursement
Skills/Tech-stack
.NET | ABAC | AKS | API Design | API Security | Auth0 | Authentication | Authorization | Automation | Azure Entra | Azure Entra ID | C Sharp | Code review | Entra ID | Go | JWT | Java | Keycloak | Least Privilege | MTLS | Networking Security | OAuth | OAuth2 | OIDC | Okta | OpenID Connect | Policy enforcement | Python | RBAC | Rate Limiting | Secure API | Secure API Design | Secure Logging | Security Hardening | Telemetry | Tenant Isolation | Tokenization | TypeScript
Education
N/A
Roles
Architect | Engineer | Security | Security Architect | Security Engineer | Staff Security Engineer
Related jobs
-
AI Automation | Canton | Cardano | Chainlink CCIP | ChoicesFlexible time off | Fully remote | Global team gatherings | Home office & equipment stipend | Learning and development supportSenior-level Full TimeCzechia R23h ago
-
API Integration | Automation | Code Scanning | Compliance Monitoring | Continuous integrationAccident insurance | E-learning access | Flexible benefit account | Flexible working hours | Free parkingMid-level Full TimePrague, CZ2d ago
-
IT Security Engineer (f/m/d) CZK 452K-660KAccess Management | Asset protection | Azure | Cause analysis | Cloud SecurityAccident insurance | Flexible benefits account | Flexible working hours | Free parking | Group share planMid-level Full TimePrague, CZ2d ago
-
Authentication | Bug Bounty | CI/CD | Code review | DASTBenefit budget with flexible options | Hybrid working model | Meal vouchers | Medical membership | Multisport cardSenior-level Full TimePrague4d ago
-
Senior Machine Learning Engineer - Cybersecurity CZK 1096K-1560KAWS | CI/CD | Data Pipelines | Databricks | DockerEmployee stock purchase plan | Global home office allowance | Leave benefits | Medical and insurance benefits | MultiSport benefit programSenior-level Full TimeCzech Republic7d ago
-
Information Security Architect CZK 665K-1104KAWS | Access Management | Access Security | Azure | Cloud SecuritySenior-level Full TimeCZE Praha, Czechia8d ago
-
Senior IAM Architect CZK 1135K-1680K800-63 | AWS IAM | AWS Secrets | AWS Secrets Manager | Access CertificationsCafeteria program | Company product discounts | Discounted phone plans | Flexible working hours | Home office meal vouchersSenior-level Full TimeBRNO MĚSTO, JIHOMORAVSKÝ KRAJ, Czech Republic9d ago
-
Senior-level Full TimeCZ Prague, Czechia9d ago
-
Network Operations Engineer CZK 704K-1135KAkamai Guardicore | CMDB | Change Management | Cisco | Cloud SecuritySenior-level Full TimeCZE Praha, Czechia9d ago
-
AI Agents | AWS | ArgoCD | Backstage | Blue-Green DeploymentCompetitive leave benefits | Employee stock purchase plan | Gender neutral parental leave | Global home office allowance | Medical and insurance benefitsSenior-level Full TimeCzech Republic11d ago
-
Staff Platform Engineer - Developer Platform, AI-first DevEx CZK 1135K-1308KAI Agents | AWS | Argo Workflows | ArgoCD | BackstageCompetitive leave benefits | EAP | Employee stock purchase plan | Gender neutral parental leave | Global home office allowanceSenior-level Full TimeBrno, South Moravian, Czech Republic11d ago
-
Staff Platform Engineer - Developer Platform, AI-first DevEx CZK 1135K-1308KAWS | ArgoCD | Backstage | CI/CD | ClickHouseCompetitive leave benefits | Gender neutral parental leave | Global home office allowance | Medical and insurance benefits | MultiSport benefit programSenior-level Full TimePrague, Czech Republic11d ago
-
Senior Software Security Engineer CZK 1135K-1074K.NET | AWS | Agile | Application Security | Automated scanningOffice environmentSenior-level Full TimeCzech Republic - Brno - Vlastimila …12d ago
-
Software Developer/Engineer for Customer IAM CZK 85K-1074KArgo CD | Auth0 | Azure | Bash | C#5 weeks vacation | Conference support | Flexible working hours | Life insurance | Meal vouchersSenior-level Full TimePraha, CZ12d ago
-
Senior Full-stack Engineer - Threat Intelligence CZK 1096K-1096KAPI Design | AWS | Artificial Intelligence | CI/CD | Cloud ComputingSenior-level Full TimeCZ Prague, Czechia13d ago
-
Staff Software Engineer (Java) - Endpoint Security CZK 1128K-1308KAWS | ClickHouse | Distributed Systems | Docker | GCPEducational support | Employee assistance program | Flexible time off | Hybrid work flexibility | Laptop providedSenior-level Full TimeBrno, South Moravian, Czech Republic13d ago
-
Staff Software Engineer (Java) - Endpoint Security CZK 1128K-1308KAWS | ClickHouse | Docker | GCP | GRPCEducational support | Flexible time off | Hybrid work | Laptop provided | LinkedIn LearningSenior-level Full TimeCzech Republic13d ago
-
Senior Data Engineer CZK 1135K-1308KAWS | Apache Spark | Azure | Data Warehousing | GCPEducational support | Employee assistance program | Flexible time off | Hybrid work | Laptop supportSenior-level Full TimeBrno, South Moravian, Czech Republic13d ago
-
Staff Software Engineer (Java)- Endpoint Protection CZK 1135K-1308KAWS | ClickHouse | Docker | GCP | GRPCFlexible time off | Hybrid work | Learning Support | Life insurance | Paid sick daysSenior-level Full TimeBrno, South Moravian, Czech Republic; Czech …14d ago
-
Staff Infrastructure Engineer - Kubernetes platform CZK 1100K-1308KAWS | Argo Workflows | ArgoCD | CI/CD | Cert-ManagerEducational support | Employee assistance program | Flexible time off | Flexible-hybrid work | Life insuranceSenior-level Full TimeCzech Republic14d ago
-
Staff Infrastructure Engineer - Kubernetes platform CZK 1100K-1308KAWS EKS | Amazon Web Services | Argo Rollouts | ArgoCD | CI/CDEmployee assistance program | Flexible time off | Flexible-hybrid work | Learning budget | Life insuranceSenior-level Full TimeBrno, South Moravian, Czech Republic14d ago
-
Senior Threat Intelligence Researcher CZK 1308K-1560KCISA KEV | Debugging | Domain registrations | Dynamic analysis | EPSSAdditional company holidays | Company events | Educational support | Flexible time off | Flexible-hybrid workSenior-level Full TimeBrno, South Moravian, Czech Republic; Czech …15d ago
-
Senior Data Engineer CZK 1308K-1308KAWS | Apache Spark | Azure | Data Warehousing | GCPEducational support | Employee assistance program | Flexible time off | Hybrid work | Internal mentoringSenior-level Full TimePrague, Czech Republic21d ago
-
Software Development Engineer in Test (SDET) CZK 600K-900KAPI Testing | Agile | Automated testing | BDD | CI/CDMinimal business travelMid-level Full TimeCZE-Praha 11 V Parku 2343/24, Czechia22d ago
-
Staff Infrastructure Engineer - Kubernetes platform CZK 1020K-1200KAWS EKS | ArgoCD | Cert-Manager | Cilium | CoreDNSAdditional paid sick leave | Employee assistance program | Flexible time off | Flexible-hybrid work | Laptop providedSenior-level Full TimePrague, Czech Republic22d ago