Clicking Apply Now takes you to AutoApply where you can tailor your resume and apply.
Experience Level
Mid to Senior
Qualifications
Proven experience in security engineering, with a strong understanding of web application security. Familiarity with security frameworks and standards such as OWASP. Experience with penetration testing and vulnerability assessment tools. Strong programming skills in languages such as Python, Java, or C++. Excellent problem-solving skills and the ability to work independently and as part of a team.
About the job
About the Role
Nord Security is looking for a Mid to Senior Security Engineer to join the WebSec Team in Warsaw. This position focuses on strengthening security protocols and building solutions that protect web applications.
What You Will Do
Identify vulnerabilities in web applications and services
Develop and implement security measures to protect users
Work closely with other security professionals to improve overall security posture
Contribute to the ongoing improvement of security processes and tools
Who You’ll Work With
Collaborate with a skilled team of security engineers and specialists, sharing knowledge and approaches to keep Nord Security’s web platforms safe.
About Nord Security
Nord Security is a leading cybersecurity company dedicated to providing innovative security solutions for individuals and businesses. With a commitment to excellence and a focus on user privacy, we strive to create a secure online environment for our customers.
Our Mission and VisionAt Solidgate, we are driven by a clear mission: to empower exceptional entrepreneurs in building remarkable internet companies. Our goal is to support the builders—those who are defining the digital economy—by providing them with the financial infrastructure they truly deserve. We are ambitiously pursuing our vision to become the world’…
At Veeam Software, we are committed to being the leading Data and AI Trust Company. Our focus is on empowering organizations to effectively manage, secure, and understand their data and AI capabilities, ensuring resilience and enabling safe AI scalability. As pioneers in data resilience and security posture management, we are strategically positioned at the intersection of identity, data, security, and AI risk. With our headquarters in Seattle and a presence in over 30 countries, we proudly protect more than 550,000 customers globally, earning their trust to keep their operations running seamlessly. Join us in our journey to innovate and make a significant impact for some of the world's most prominent brands.About the RoleAs a Lead Application Security Engineer (Offensive Testing), you will spearhead penetration testing and Dynamic Application Security Testing (DAST) for our Veeam Data Cloud offerings. Utilizing Burp Suite and the latest web/API testing methodologies, you will identify genuine exploitable vulnerabilities, prioritize risks, and collaborate closely with engineering teams to ensure effective remediation.Your role will also involve enhancing testing tools and methodologies to streamline processes, helping teams avert recurring vulnerabilities, particularly in areas such as authentication, authorization, session management, and tenant isolation.What You’ll DoLead offensive testing initiatives: strategize the scope, depth, and frequency of tests; generate clear, consistent reports, and develop reusable playbooks.Conduct manual penetration testing (primary focus): assess web applications and APIs, especially around authentication/authorization, multi-tenant boundaries, and critical workflows; simulate realistic attack paths by chaining vulnerabilities.Utilize Burp Suite on a daily basis: replicate and validate findings using advanced features; create and maintain repeatable scopes, macros, and authenticated flows.Enhance and execute DAST processes: perform and refine authenticated scans, minimize false positives, and collaborate with CI/platform teams to scale scanning efforts and manage credentials efficiently.Drive vulnerability remediation: produce high-quality documentation, partner with engineering teams for fixes and retesting, and assist in preventing regressions; ensure that findings are logged with appropriate severity and SLAs.Contribute to long-term security improvement: identify recurring patterns and collaborate with teams to establish prevention strategies through standards, libraries, platform controls, and contributions to threat modeling/design reviews.What You’ll BringRobust experience in web and API penetration testing, with a strong emphasis on authorization vulnerabilities (IDOR/BOLA, privilege escalation, etc.).
We are seeking a highly skilled Senior Cyber Security Engineer specializing in applications to join our dynamic team at Colliers International EMEA. In this role, you will be responsible for developing and implementing robust security measures to protect our applications and ensure the integrity of our systems.As a key player in our cybersecurity team, you will collaborate with cross-functional teams to identify vulnerabilities and enhance our security posture. Your expertise will drive innovative solutions that safeguard our digital assets and support our commitment to providing top-notch service to our clients.
Wix.com is looking for an Application Security Specialist in Krakow to help protect both applications and sensitive data. This role centers on working closely with development teams to strengthen security across our products. What you will do Collaborate with developers to apply security best practices throughout the software development lifecycle Conduct vulnerability assessments to identify and address risks in applications Respond to security incidents and support remediation efforts Impact Your work will directly support a safer experience for Wix users and contribute to a stronger overall security posture for the company.
About InfiterraJoin our mission to revolutionize the subscription economy by streamlining subscription service delivery.Infiterra empowers IT distributors, Managed Service Providers (MSPs), and telecommunications companies to thrive in the subscription economy. Our cutting-edge subscription commerce platform automates and integrates subscription workflows—from quoting to billing—enhancing operational efficiency, ensuring billing accuracy, and facilitating scalable growth.As a globally recognized leader in subscription commerce, Infiterra fuses innovation, outstanding performance, and reliable expertise to assist partners in their transformation and growth journeys.About the RoleWe are seeking a dynamic Senior Application Security Engineer to incorporate security into our software design, development, and operational processes. This role is not an afterthought; it’s an integral part of our daily engineering practice. You will collaborate closely with our product and engineering teams to identify risks early, enhance secure-by-design practices, and elevate our application security standards. This is a hands-on AppSec role: engaging with code, architecture, and deeply integrated into the Software Development Life Cycle (SDLC). While Infiterra’s headquarters are in Thessaloniki, Greece, this position is completely remote.What You’ll DoIntegrate Security into the SDLCIncorporate security activities throughout all phases of the SDLC: requirements, design, implementation, testing, deployment, and maintenance.Work closely with engineering teams to ensure consistent application of secure development practices.Evaluate security controls for new features, services, and architectural modifications.Threat Modeling & Secure DesignFacilitate threat modeling sessions (e.g., STRIDE) for both new and existing systems.Identify threats, attack vectors, misconfigurations, and insecure design patterns.Collaborate with engineers to ensure adherence to secure-by-design principles.Secure Code & Architecture ReviewsConduct security-focused code reviews to detect vulnerabilities and risky implementations.Provide clear, actionable guidance on secure coding patterns and best practices....
About the Role Nord Security is looking for a Mid to Senior Security Engineer to join the WebSec Team in Warsaw. This position focuses on strengthening security protocols and building solutions that protect web applications. What You Will Do Identify vulnerabilities in web applications and services Develop and implement security measures to protect users Work closely with other security professionals to improve overall security posture Contribute to the ongoing improvement of security processes and tools Who You’ll Work With Collaborate with a skilled team of security engineers and specialists, sharing knowledge and approaches to keep Nord Security’s web platforms safe.
Role Overview EcoVadis is hiring a Senior Application Security Specialist in Warsaw. This role focuses on protecting company applications and systems. The specialist will work to find vulnerabilities, put security controls in place, and partner with teams across the business to strengthen security practices. Key Responsibilities Identify and assess security vulnerabilities in applications and systems Implement measures to reduce risk and improve security Collaborate with cross-functional teams to support secure development and operations
Join NordLayer and be part of a cybersecurity revolution!We are creating a scalable cybersecurity platform tailored for modern teams, eliminating security concerns while enhancing productivity. With trust from over 11,000 global companies, NordLayer seamlessly integrates into any tech stack, offering robust protection across borders.Your Role: Play a crucial part in empowering businesses with cutting-edge network security solutions.Key ResponsibilitiesEnhance our codebase by crafting clean, high-quality TypeScript code, backed by rigorous testing.Provide mentorship and technical guidance to frontend developers through insightful code reviews and implementation strategies.Collaborate with backend engineers to define API contracts and ensure smooth integration between frontend and backend services.Work alongside product managers and designers to transform product requirements and UX designs into viable technical solutions.Uphold high engineering standards by promoting best practices in code quality, testing, and maintainability.Assist the team in delivering features within a Scrum framework by effectively breaking down tasks, identifying risks early, and contributing to accurate estimations.Essential Qualifications5+ years of experience in developing and maintaining modern frontend applications using React and TypeScript.Proven experience in designing frontend architectures and establishing scalable components and state management patterns.Strong knowledge of frontend performance optimization and web application best practices.Experience working with REST APIs and collaborating effectively with backend teams.Familiarity with frontend testing frameworks such as Jest, Testing Library, Cypress, or Playwright.Experience leading technical discussions within a distributed team environment.Bonus QualificationsHands-on experience in building or contributing to open-source projects.
Nord Security is seeking a Senior UX/UI Designer to join the Saily team in Warsaw. This position centers on shaping the user experience and interface for mobile applications. The main goal is to design interfaces that are both intuitive and visually appealing, supporting user engagement and satisfaction. Role overview This role involves working closely with cross-functional teams to develop and refine mobile app interfaces. The Senior UX/UI Designer translates user needs and research insights into practical design solutions, always keeping the end user in mind. What you will do Collaborate with teams across disciplines to create and improve mobile app interfaces Turn research findings and user needs into effective design concepts Conduct user research to better understand behaviors and preferences Gather feedback and use it to iterate on designs, raising product quality Requirements Proven experience designing UX/UI for mobile applications Ability to convert user insights into engaging, user-friendly designs Comfortable receiving feedback and iterating to improve results Strong collaboration skills with product, engineering, and other teams
Nord Security is looking for a Senior Android Engineer with strong Kotlin skills to help design and build mobile applications that support our security products. This position is based in Krakow. Role overview This role centers on developing Android applications that improve our security offerings. The Senior Android Engineer will work closely with colleagues from different teams to bring new features and improvements to our mobile products. What you will do Design and implement Android applications using Kotlin Work with cross-functional teams to deliver new features Contribute to the overall quality and user experience of our mobile apps Requirements Extensive experience developing Android applications with Kotlin Ability to collaborate with engineers, designers, and product teams Strong focus on building reliable and user-friendly software
Nord Security is seeking a Senior iOS Engineer to help build applications that strengthen user security and privacy. This position is based in Krakow and centers on designing and developing iOS apps that meet high standards for performance and responsiveness. Role overview This role focuses on creating secure and reliable iOS applications. Collaboration with other engineers and team members is an important part of the work, with a shared goal of delivering features that protect users and provide a smooth experience. What you will do Design and implement iOS applications with a focus on security and privacy Work closely with teammates to deliver high-quality, responsive features Contribute to the ongoing improvement of app performance Requirements Experience developing iOS applications Strong interest in user security and privacy Ability to work effectively within a collaborative team
At NordPass, we are dedicated to making password security effortless.We believe that logins should be both safer and simpler. Join the innovative team behind NordPass— a leading password manager relied upon by over 7 million users and more than 10,000 global enterprises to protect their credentials, cards, and sensitive information.Your impact? You will be instrumental in helping millions secure their digital lives by developing smarter and safer login solutions.Main ResponsibilitiesDesign, develop, and take ownership of security-focused backend services (including breach detection, email masking, and related tools) with a commitment to high quality, performance, and accuracy.Utilize AI-assisted workflows on a daily basis (code generation, test scaffolding, debugging, performance optimization) while continuously evaluating new tools to enhance the team's productivity.Contribute to the establishment of shared AI practices within the squad: reviewing patterns, creating prompt libraries, and setting guardrails to ensure AI-generated code meets the same standards as hand-written code.Engage in system design and architectural decision-making, advocating for solutions that are secure, scalable, and maintainable.Collaborate across functions with Frontend, Android, iOS, and Backend engineers to deliver comprehensive features across all platforms.Assume full responsibility for your creations, from design to production, ensuring uptime, reliability, and code excellence.
Capital, a global trading platform headquartered in Warsaw, focuses on technology-driven solutions and a user-centered experience. As the company expands, it seeks professionals who can help reinforce its technical foundation. Role overview The Network Security Engineer takes on a central role in safeguarding Capital’s infrastructure and network. This position involves building, maintaining, and improving security systems that support the safety and reliability of the platform for users around the world. Main responsibilities Develop and maintain monitoring systems for network and infrastructure Automate security processes to boost operational efficiency Support ongoing improvements to the company’s security framework What Capital offers Work with recognized products and advanced technology Join a globally respected team Opportunities to make a meaningful impact on security operations
About HelloFresh and HelloTech HelloFresh is a global food solutions company with a presence in Warsaw and across the world. The HelloTech organization brings together more than 1,000 technology professionals who build and maintain the digital products behind HelloFresh’s meal kits, ready-to-eat meals, and specialty offerings like pet food and premium meats & seafood. Technology is at the core of HelloFresh’s subscription-based, direct-to-consumer model. Teams develop customer-facing apps, personalization features, pricing and demand forecasting tools, supply chain systems, and solutions to help reduce food waste. Each HelloFresh brand operates independently to serve unique customer groups, but all share technology platforms, data, and operational standards developed by HelloTech. Role Overview: Senior Application Security Engineer Based in Warsaw, the Senior Application Security Engineer will join HelloTech’s international team. This role focuses on building and securing scalable, data-driven products used by millions of customers each month. The work involves close collaboration with colleagues across different markets and specialties, using a modern technology stack to support the entire HelloFresh food experience, from discovery and ordering to delivery and enjoyment. Working from the Warsaw office means direct involvement in shaping the platforms and tools that power HelloFresh’s global operations, with a strong emphasis on security, reliability, and innovation.
Join our dynamic team at unit44 as a Security Operations Engineer. In this role, you will be pivotal in ensuring the integrity and security of our systems. Your primary responsibilities will include monitoring security threats, responding to incidents, and implementing security measures to protect our infrastructure.As a member of our team, you will have the opportunity to work with advanced security technologies and collaborate with talented professionals to enhance our security posture. We are looking for a proactive individual who is passionate about cybersecurity and eager to learn and grow in a fast-paced environment.
About BoxBox (NYSE:BOX) is at the forefront of Intelligent Content Management, empowering businesses to enhance collaboration, oversee the complete content lifecycle, secure essential information, and revolutionize workflows through enterprise AI. Founded in 2005, Box simplifies operations for renowned global organizations like AstraZeneca, JLL, Morgan Stanley, and Nationwide. Our headquarters is located in Redwood City, CA, with additional offices spanning the United States, Europe, and Asia.Joining Box means you will play a pivotal role in advancing our platform. Content is the backbone of everyday operations, encompassing contracts, invoices, employee records, financial documents, product specifications, marketing materials, and more. Our mission is to infuse intelligence into content management and empower our clients to revolutionize workflows throughout their organizations. With the synergy of AI and enterprise content, there is a remarkable opportunity to reshape collaborative efforts, and at Box, you will be at the forefront of this evolution.Why Your Expertise is EssentialAt Box, we are redefining the collaborative landscape. Security is fundamental to our vision. We are expanding our Product & Platform Security Engineering team in Poland to work closely with our Assurance & Architecture Engineering teams based in the US. As a Staff Security Engineer, you will collaborate with a high-impact engineering team in Warsaw, focusing on scaling security measures and integrating AI into our security protocols across our platform and product stack.This position offers the chance to influence strategic direction and deliver tangible outcomes that safeguard millions of users.Your ResponsibilitiesContribute to a strategic roadmap that enhances Box’s security capabilities across various platforms and products.Develop and iterate on minimum viable products (MVPs) for security automation, including supply chain security, SDLC controls, and developer-centric guardrails.Collaborate with the Assurance & Architecture Team and cross-functional teams (Product, Platform, Cloud, SRE, Developer Experience) to integrate security into workflows and tools.Lead initiatives focused on automation and innovative security techniques.
Join our dynamic Product Security team as a Senior Platform Security Engineer, where your expertise will be crucial in safeguarding our platform that supports multiple products and handles sensitive, high-value information. With our operations expanding, we seek two professionals to strengthen our security efforts.Your role will involve hands-on engineering, where you will design, build, and deploy robust security and privacy controls. This is not about merely defining policies; you will actively contribute to the security architecture of our systems.Your responsibilities will include enhancing supply-chain security through SAST, SCA, container scanning, and CI/CD hardening. Expect a varied role that will challenge you across multiple domains without confining you to a single specialty.What Success Looks Like:Within 90 days, you will have implemented significant, production-level security enhancements.You will take ownership of components of the AuthN/AuthZ model and its execution.You will develop a comprehensive understanding of our data flows and associated privacy risks.Establish yourself as a trusted advisor across teams, able to confidently voice concerns and provide rationale.Effectively reduce risk through practical measures rather than superficial security actions.Your Work Style:This role offers a high degree of autonomy, encouraging you to identify and address issues independently.You will collaborate closely with engineers from different teams, fostering a culture of teamwork.Engaging in constructive disagreements is encouraged, with decisions rooted in data and threat modeling.You will have the authority to block releases on security or privacy grounds when necessary, following clear escalation paths.Proactively addressing problems, even beyond your immediate area, is expected.
Join Techland S.A. as a Security Engineer (Blue Team) and play a crucial role in safeguarding our digital landscape. As a member of our dedicated Security and Compliance department, you will be responsible for identifying vulnerabilities, implementing security measures, and ensuring that our systems are secure against potential threats.Your contributions will not only enhance our security posture but also support our commitment to protecting our customers' data and ensuring compliance with industry standards. This is an exciting opportunity for a mid-senior level professional looking to make a significant impact within a dynamic and innovative company.
About TripadvisorThe Tripadvisor Group connects individuals with experiences that deserve to be shared. Our mission is to be the world’s most reliable source for travel and experiences. Through our diverse brands, advanced technology, and capabilities, we engage a global audience with partners using rich content, travel insights, and two-sided marketplaces for experiences, accommodations, dining, and more. Tripadvisor, Inc. (Nasdaq: TRIP) encompasses a portfolio of esteemed travel brands, including Tripadvisor, Viator, and TheFork.We are on the lookout for a proactive Senior Cloud Security Engineer who will serve as the first line of defense for the Tripadvisor Experiences platform. This pivotal role merges proactive security engineering with responsive incident management. You will immerse yourself in our cloud environment, vigilantly monitoring for threats, addressing security incidents, automating defenses, and collaborating closely with our engineering teams to fortify our platform.This position is available for remote work in either Portugal or Poland.What You'll DoIncident Response Focused on Products:Monitor, analyze, and investigate security alerts from our AWS infrastructure, application logs, and security tools (WAF, SIEM, Cloud-Native tools).Lead incident responses that affect the Viator application, including potential data breaches, application-layer assaults, or infrastructure vulnerabilities.Oversee and prioritize vulnerabilities reported through our bug bounty program and other sources.Security Engineering & Automation:Develop and sustain security monitoring and alerting systems within our production environment.Automate security operations tasks using scripting languages like Python or Go to enhance our detection and response capabilities.Configure, fine-tune, and manage security tools, including our Web Application Firewall (WAF), AWS GuardDuty, and Security Hub.Vulnerability Management & Team Collaboration:Translate findings from application security tools (SAST, DAST, SCA) into actionable steps by collaborating with engineering teams to prioritize and remediate vulnerabilities in our codebase and dependencies.Conduct threat modeling for new features to identify and mitigate risks before deployment.Act as a security subject matter expert and mentor for other team members.
Join 42dot as a Car Infotainment Application Engineer and be an integral part of shaping the future of automotive technology. You will work with cutting-edge technologies to develop innovative infotainment solutions that enhance user experiences in vehicles.
