Offensive Security Engineer

The Information Security Department at Bank of Georgia is seeking a talented Offensive Security Engineer to join our team. As an Offensive Security Engineer, you will play a critical role in safeguarding our systems and applications through rigorous testing and security analysis.

Join our dynamic Information Security Team as an Application Security Engineer. In this role, you will collaborate with software development teams, product owners, and key stakeholders to establish, implement, and uphold robust security measures throughout the software development lifecycle (SDLC).Your primary responsibility will be to identify and mitigate security vulnerabilities within applications, systems, and APIs, ensuring adherence to secure coding practices and compliance with industry security standards such as OWASP Top 10, NIST, and ISO/IEC 27001.This position is vital in enhancing the organization’s security framework, advocating for security best practices, and safeguarding the integrity of our software applications.Key Responsibilities:Conduct thorough security assessments of applications, including code reviews, static/dynamic analysis, and penetration testing.Work alongside development teams to design and implement security controls, integrating security into the SDLC.Lead efforts to identify and remediate security vulnerabilities in applications, APIs, and third-party services.Provide expert security guidance on secure coding practices, threat modeling, and vulnerability management to development teams.Implement and enforce best practices for secure coding, API security, and encryption across application architectures.Stay informed about the latest security threats, vulnerabilities, and trends, applying this knowledge to minimize risks.Develop and maintain automated security testing tools, frameworks, and processes for continuous integration within CI/CD pipelines.Assist in risk assessments and threat modeling for new and existing applications, prioritizing security remediation efforts.Participate in incident response activities related to application security, offering expertise to investigate and address security breaches.Create and deliver security training and awareness programs for developers to foster a security-first culture.Support vulnerability management and remediation efforts, ensuring resolution of identified issues.Ensure compliance with internal security standards and external regulatory requirements (e.g., GDPR, PCI-DSS, HIPAA).Collaborate with cross-functional teams, including DevOps, infrastructure, and security operations, to ensure a unified approach to application security.

Join our team as a Senior Information Security and Systems Management Engineer. In this pivotal role, you will be instrumental in shaping our security and systems strategy, ensuring our infrastructure evolves as we grow, and that our global team's work environments adhere to the highest security standards.Your responsibilities will include addressing challenges related to expanding systems and processes, implementing best practices, and unifying all information security domains. With strong organizational backing, resources, and an experienced team, you will serve as the primary decision-maker for security matters. Collaboration with leaders across the organization—including HR, the CEO, and the Managing Director—will be essential in building integrated processes and promoting the adoption of security initiatives company-wide.Key Responsibilities:Identity & Access Management (IAM): Oversee centralized access management, develop and maintain a robust RBAC model, manage access granting and revocation, and conduct periodic reviews. Ensure proper configuration of SSO, MFA, and least-privilege policies while auditing accounts for privilege misuse or anomalies.Application Security: Integrate security into the software development lifecycle, collaborating with the Head of Development to secure application architecture. Implement DevSecOps practices, safeguard secrets and intellectual property, utilize SAST/DAST, perform threat modeling, and regularly review third-party libraries and services to mitigate vulnerabilities and ensure secure deployments.Infrastructure Security: Safeguard the company's IT infrastructure through secure network architecture, segregation, server and endpoint hardening, and patching policies. Collaborate closely with the Head of Infrastructure and Networks, focusing on cloud security to prevent vulnerabilities and secure operations across all infrastructure components.Incidents Monitoring & Response: Establish a Security Information and Event Management (SIEM) system for real-time monitoring, build a Security Operations Center (SOC), and create response processes for proactive detection and efficient resolution of security incidents, continuously enhancing incident management capabilities.

Join Cellfie Mobile as the Information Security and Technical Security Lead, where you will spearhead our efforts to protect sensitive data and systems. This pivotal role involves developing and implementing security protocols, conducting risk assessments, and ensuring compliance with relevant regulations. You will collaborate with cross-functional teams to enhance our security posture and foster a culture of security awareness across the organization.

Join betlive, a leading online gaming platform in the Georgian market. Our mission is to develop the fastest, most comfortable, and user-centric gaming environment.We offer a friendly atmosphere, a team focused on growth, and real opportunities for career advancement and promotions.Key Responsibilities:Monitor, correlate, and analyze logs and alerts from security systems (SIEM, XDR/EDR, and other platforms).Identify, analyze, and respond to suspicious activities and potential cyber incidents in accordance with Incident Response procedures.Ensure compliance with information security policies and procedures.Document and record security incidents in relevant systems.Engage in Cyber Threat Intelligence (CTI) platform monitoring and participate in Threat Hunting activities.Analyze security alerts using Threat Intelligence indicators (IOC) to identify relevant cyber threats for the organization.Contribute to the enhancement of systems and infrastructure security and improve security configurations.Support the Patch Management process and participate in mitigating critical vulnerabilities.Coordinate with IT teams to implement security updates and controls.Participate in improving security monitoring systems, SIEM/XDR detection rules, and SOC processes.Essential Qualifications:Knowledge of fundamental cyber security principles.Experience in log analysis.Familiarity with SIEM, XDR/EDR, or other security monitoring systems.Basic knowledge of operating systems (Windows/Linux).Understanding of fundamental network security principles.Strong analytical thinking and problem-solving skills.Preferred Qualifications:Experience working in a Security Operations Center (SOC).Knowledge of the MITRE ATT&CK Framework.Experience with Threat Intelligence platforms.Basic scripting knowledge (PowerShell, Python, or Bash).Cyber security certifications such as:Security+CSA EC-CouncilSANS SEC450Others as applicable.

Betlivecom operates a large online gaming platform in Georgia, emphasizing speed, comfort, and a personalized user experience. The company encourages professional growth, offers a supportive workplace, and provides real opportunities for career advancement. Role overview The Information Security Officer shapes and leads Betlivecom’s efforts to protect company data, systems, and networks. This role is based in Tbilisi and plays a central part in maintaining the security of the organization’s technology environment. Main responsibilities Assess security across information, infrastructure, networks, and systems throughout the company. Develop and implement a comprehensive information security strategy. Evaluate access levels, create and manage access matrices, and oversee permissions. Identify and assess vulnerabilities within the company’s infrastructure. Design processes to spot information security risks and incidents. Detect, evaluate, and recommend actions to address information security risks. Create and enforce policies, methodologies, and internal procedures related to information security. Analyze cyber incidents, prepare reports, and establish detection and prevention measures. Lead training sessions to raise security awareness among employees.

Betlive.com is a leading online gaming platform in the Georgian market, dedicated to creating the fastest, most comfortable, and user-centric gaming environment.Join our friendly atmosphere, work with a development-focused team, and enjoy real and continuous opportunities for career advancement and promotion. Key Responsibilities:Develop and implement security policies, procedures, and technical measures for the company’s IT operations;Identify, assess, and create preventive plans for IT security-related risks;Establish and manage incident response processes for cybersecurity threats;Draft, update, and standardize security documentation;Collaborate with the IT team to effectively integrate security mechanisms;Educate employees on security regulations, policies, and practices; organize training and raise awareness;Essential Qualifications:Higher education in Information Technology, Cybersecurity, or a related field;A minimum of 2 years of experience in the field of cybersecurity;Knowledge of IT security principles and international standards (e.g., ISO/IEC 27001, NIST);Ability to work with IT security products;Experience in drafting technical and administrative documentation;Ability to identify cybersecurity risks and develop preventive measures;Strong independent working and communication skills. Working Conditions:Standard schedule, Monday - Friday, 10:00 AM - 7:00 PM;Work location: Tbilisi;On-siteAdditional Benefits:Meals;Parking;Bonuses;Corporate insurance;Funding for various courses and training for professional growth. If you are interested, please provide the requested information, and we will certainly consider your application. For more information about the company, visit our website: http://www.betlive.com

Join JSC Bank of Georgia, a prominent commercial bank dedicated to providing secure and reliable financial services to our valued customers. We are enhancing our commitment to cybersecurity by inviting a skilled Information Security Vulnerability Analyst to become part of our expanding team.In this pivotal role, you will be instrumental in safeguarding the Bank’s infrastructure. Collaborating closely with our development and IT teams, you will identify, assess, and remediate vulnerabilities in our servers and applications. This position is ideal for a dedicated individual eager to launch a career in cybersecurity and cultivate expertise in a dynamic setting.Key Responsibilities:Conduct thorough security assessments, including vulnerability scans and security architecture reviews across networks, systems, and applications.Analyze vulnerability scan results, prioritizing and tracking critical vulnerabilities until they are remediated.Stay informed on emerging vulnerabilities, attack methodologies, and application security trends to proactively manage risks.Engage in threat modeling and risk assessment throughout the Secure Software Development Life Cycle (SDLC).Work with cross-functional teams to provide security best practices and facilitate prompt resolution of vulnerabilities.Create and maintain security standards, guidelines, and training resources for the organization.Implement, maintain, and enhance vulnerability scanning and application security tools, as well as automation scripts and utilities.Contribute to security metrics and reporting systems to monitor security posture and track remediation progress.

Senior SecOps EngineerJoin us on an exhilarating journey as a Senior Cyber Security Engineer (SecOps Engineer) at Tipalti, a rapidly growing fintech unicorn! This role offers a unique chance to make a substantial impact in a dynamic company.Why Tipalti?Tipalti is an innovative AI-driven platform revolutionizing finance automation, enhancing the operational capabilities of finance teams globally. We empower our clients to accelerate their growth by simplifying the complexities of global business and improving financial operational efficiency. Our comprehensive suite of finance automation solutions caters to mid-market enterprises in areas such as accounts payable, global payouts, procurement, employee expenses, corporate cards, supplier management, tax compliance, and treasury. With partnerships alongside leading financial institutions like Citi, Wells Fargo, J.P. Morgan, and Visa, we enable over 5,000 global companies to securely manage payments to millions of suppliers and payees across more than 200 countries and territories, in 120 currencies.At Tipalti, our collaborative culture, product quality, and skilled workforce set us apart. Our team is passionate about their work and committed to achieving results. We offer competitive benefits, a flexible work environment, career coaching, and a space where diverse talents can thrive and contribute meaningfully. Our culture emphasizes teamwork and shared success.Founded in 2010 in Israel, Tipalti operates globally with headquarters in the San Francisco Bay Area (Foster City) and offices in Tel Aviv, Plano, Toronto, Vancouver, London, Amsterdam, Tbilisi, and Medellin.Responsibilities:Design, implement, and maintain security architectures and controls across the organization’s cloud, SaaS, and corporate environments.Safeguard sensitive data across endpoints, SaaS applications, and cloud platforms through effective Data Loss Prevention (DLP) and data protection measures.Ensure cloud infrastructure security (AWS/Azure/GCP) by identifying misconfigurations, enforcing security standards, and implementing cloud hardening and least-privilege access models.Manage and maintain security technologies such as Firewalls, WAF, EDR/XDR, IDS/IPS, SASE, DLP, IAM, and SIEM platforms.

Speechify builds technology that helps people read and learn in new ways. Our text-to-speech products serve over 50 million users, converting everything from PDFs and books to news articles and websites into audio. Users can read faster, remember more, and enjoy a smoother reading experience. Our product suite includes apps for iOS, Android, and Mac, a Chrome extension, and a web app. We’ve earned recognition from Google as Chrome Extension of the Year and received Apple’s 2025 Design Award for Inclusivity. Speechify’s team of nearly 200 works fully remotely, with no physical office. Team members include frontend and backend engineers, AI researchers, and specialists with backgrounds at Amazon, Microsoft, Google, Stanford, and successful startups. Role overview The Platform Software Engineer will join the team responsible for all backend services at Speechify. This includes payments, analytics, subscriptions, new product features, text-to-speech functionality, and external APIs. The role suits someone who thinks strategically, enjoys product development, and has a strong track record of building user-focused solutions. Speechify operates with a flat structure. Engineers who demonstrate strong technical skills and deliver results often take on leadership responsibilities. We value a strong work ethic, clear communication, and a drive to compete at a high level. What you will do Design, build, and maintain APIs, including the public TTS API and internal APIs for payments, subscriptions, authentication, and consumption tracking, with attention to scalability and business needs. Oversee the backend API ecosystem, prioritizing performance and maintainability. Collaborate on B2B projects, handling customization and integration for enterprise customers. Work with teams across the company to align backend architecture with product goals and user experience. Interview process The interview process includes several technical interviews, usually completed within one week. Location This position is based in Tbilisi, Georgia.

Join JSC Georgian Card as a Senior QA Engineer:Main Responsibilities:• Engage in the complete product lifecycle, including requirements analysis, test design, creating test cases and checklists, executing tests, identifying, reproducing, validating, and documenting defects.• Plan and execute functional and regression tests while determining test coverage aligned with business risks.• Identify defects, provide clear reporting, and perform re-testing of fixes.• Validate APIs, databases, and backend components, analyzing logs and system behavior.• Develop and maintain test automation, managing automated regression test suites.• Integrate tests into CI/CD pipelines and implement quality control stages.• Collaborate with the team to analyze business tasks, participate in backlog refinement and sprint planning, and evaluate release readiness.Knowledge and Skills:• Minimum of 4 years of experience in software testing (both manual and automated).• Strong understanding of software testing fundamentals and QA principles.• Familiarity with SDLC, STLC, and defect lifecycle.• Ability to analyze requirements, user stories, and acceptance criteria.• Experience in API testing (using Postman / REST Assured).• Proficiency in test automation (Python, Selenium, Cypress, Playwright, or similar tools).• Experience integrating automated tests into CI/CD processes.• Knowledge of working with databases and experience using SQL.• Familiarity with performance testing tools (JMeter, k6, or similar).• Experience in developing testing strategies and quality models in enterprise-level environments is a plus.Please fill out the requested information, upload your resume/CV, and click the “Submit Application” button. The deadline for resume submissions is March 12, 2026.

Join Bank of Georgia as an Engineering Lead for our Customer Tribe! In this pivotal role, you will oversee our engineering team, cultivate talent, provide expert technical direction, and refine development processes to guarantee uninterrupted and efficient product delivery. You will engage with Agile teams focusing on a variety of business products and diverse technologies.Key Responsibilities:Lead and mentor the engineering team, fostering a culture of growth and high performance.Formulate and execute best practice engineering strategies, policies, and processes to elevate team productivity.Transform high-level business needs into scalable architectural designs, ensuring alignment with corporate objectives.Assess and recommend the best technical solutions, collaborating with stakeholders to guarantee feasibility and efficiency.Champion architectural design and streamline development processes for continuous product delivery.Provide technical support to business development, estimation, and onsite engineering teams.Gain a thorough understanding of project scopes, objectives, functionalities, and desired features.Quickly identify and assist in resolving issues, ensuring prompt delivery and support for applications.Help gauge the effort and timeline needed for solution delivery.Diagnose and resolve system issues in production and customer-facing environments.

Join Our Team as a Senior DevOps Engineer!At IDT, we are seeking a highly skilled Senior DevOps Engineer to enhance our Engineering Team's capabilities. In this pivotal role, you will be instrumental in streamlining our code deployment processes and fostering an Agile mindset within the team, in alignment with industry best practices.

Cellfie Mobile is looking for a Network Engineer based in Tbilisi. The position centers on supporting and enhancing the company’s network infrastructure, with the goal of delivering dependable connectivity to clients. Key responsibilities Design and build network solutions to meet business needs Collaborate with colleagues across different teams to maintain network operations Monitor and optimize network performance to ensure stable service for clients Location This role is based in Tbilisi.

We are looking for a highly skilled Senior Network Engineer to join our dynamic Global Network Engineering Team at IDT.In this role, you will be pivotal in supporting our extensive network infrastructure, which includes LAN/WAN systems, hardware and software components, routers, switches, firewalls, as well as management and monitoring systems.Your responsibilities will include:- Designing, configuring, implementing, and providing support for all network components.- Delivering troubleshooting and diagnostic services to ensure the integrity of our network.- Managing routers, switches, and firewalls effectively.- Participating in the day-to-day operations of our hosting and corporate environments.- Conducting product evaluations and research, including beta testing and analysis of network tools, hardware, and software.

Join Devexperts as a Senior Systems/Networks Engineer (Tier 3) and play a critical role in maintaining and optimizing our network infrastructure. You will collaborate with a talented team to troubleshoot complex systems, implement solutions, and ensure high availability of our services. Your expertise will be pivotal in driving the performance and reliability of our network systems.

Ensure the optimal operation of heating, ventilation, and air conditioning (HVAC) systems across the entire banking network.Conduct continuous monitoring and control of HVAC systems throughout the banking network.Key ResponsibilitiesGuarantee the smooth functioning of HVAC systems across the entire network.Perform regular maintenance and monitoring of HVAC systems and equipment, coordinating with vendors as necessary.Conduct periodic assessments of HVAC systems, identifying issues promptly and proposing optimal solutions to management, planning, and executing necessary actions.Implement regulatory requirements and oversee compliance within the HVAC domain.Provide technical support to the operations team.Engage with general contractors, supervising their activities and negotiating contract terms for improvements.Coordinate, plan, supervise, and control the HVAC service team's operations.Review and oversee compliance with contract terms.Provide technical assignments to designers.Respond promptly to requests in JIRA.Evaluate proposals related to HVAC systems, ensuring compliance with the operational requirements.Monitor and control the procurement of HVAC systems and components.Manage inventory and organization of HVAC systems in stock, ensuring proper storage conditions and planning for future use, as well as monitoring and controlling spare parts.Efficiently execute tasks assigned by immediate supervisors.Ensure technical work is performed with maximum safety standards.Control the budget related to HVAC systems and prepare monthly reports.Monitor HVAC systems during nighttime operations in case of issues at branches.

About Pave BankPave Bank is the pioneering programmable business bank, created by the visionary founders of Monzo and BigPay. We are transforming the landscape of global business banking by seamlessly integrating programmable financial infrastructure with exceptional client experiences.About the RoleWe are in search of a talented Senior Manual QA Engineer to become an integral part of our dynamic engineering team. In this pivotal role, you will be responsible for ensuring the quality, dependability, and security of our digital banking platforms through meticulous manual testing. This position offers a thrilling opportunity to thrive in a fast-paced fintech environment, contribute to the establishment of foundational QA processes, and collaborate with developers, product owners, and business teams to deliver exceptional banking experiences.What You'll DoLead comprehensive manual testing efforts for our online banking and fintech platforms.Develop and maintain detailed test plans, test cases, and test scenarios that align with both business and technical requirements.Execute functional, regression, smoke, and exploratory testing across web and mobile banking applications.Validate essential banking workflows, including user onboarding, KYC processes, payments, transfers, transaction processing, account management, card services, and lending functionalities.Conduct API testing utilizing tools such as Postman or equivalent alternatives.Ensure data integrity across the front-end and back-end systems.Test integrations with third-party services, including payment gateways, identity providers, and fraud detection systems.Guarantee adherence to financial regulations and standards (AML, KYC, GDPR).Perform security-focused testing concentrating on authorization, authentication, and role-based access controls.Actively engage in requirements analysis, grooming sessions, and sprint planning.Collaborate closely with developers, product owners, and business stakeholders to achieve project goals.Document and track defects with clear reproduction steps and impact assessments.Mentor junior QA engineers and advocate for best practices in testing.

Join our mission to safeguard cross-border transactions and empower our customers to send money securely across the globe. As a Senior Mobile Software Engineer on our Anti-Fraud & Compliance team, you will be responsible for designing and developing high-performance systems that rigorously detect fraudulent activities and ensure adherence to regulatory standards.

Role Overview JSC Bank of Georgia is hiring a Tribe DevOps Engineer in Tbilisi. This position works closely with development and engineering teams to build, implement, and refine automated solutions for managing infrastructure and supporting the delivery of large-scale applications. Main Responsibilities Work with development and engineering teams to design, deploy, and maintain automated infrastructure management solutions. Manage and improve tools and methods for infrastructure management, continuous integration, deployment, and test automation. Create and maintain scripts to automate tasks and processes. Monitor application and server performance, uptime, and daily operations using tools such as Elasticsearch, Kibana, Dynatrace, Grafana, and Prometheus. Address issues as they arise. Find opportunities to automate existing processes and boost operational efficiency. Keep up with developments in DevOps, cloud computing, and containerization.