Application Security Engineer - Penetration Testing

At Veeam, we are the trusted leaders in Data and AI, dedicated to empowering organizations in understanding, securing, and fortifying their data and AI capabilities. As pioneers in data resilience and security posture management, we thrive at the intersection of identity, data, security, and AI risk management. Our headquarters in Seattle is complemented by …

About InfiterraJoin us on our mission to revolutionize the subscription economy by streamlining the delivery of subscription services.Infiterra empowers IT distributors, Managed Service Providers (MSPs), and telecommunications companies to thrive in the subscription economy through our innovative subscription commerce platform. This platform automates and integrates subscription workflows—from quote to billing—enhancing operational efficiency, accuracy in billing, and facilitating scalable growth.As a recognized global leader in subscription commerce, Infiterra merges cutting-edge innovation, outstanding performance, and reliable expertise to assist our partners in transforming and expanding their businesses.About the RoleWe are in search of a Senior Application Security Engineer who will integrate security principles into our software design, development, and operational processes. This role is not just an afterthought; security will be an integral part of our daily engineering practices. You will actively collaborate with product and engineering teams to identify risks early on, enhance secure-by-design methodologies, and elevate our application security standards continuously. This is a hands-on AppSec role: closely aligned with the code, architecture, and fully embedded in the Software Development Life Cycle (SDLC). While Infiterra’s headquarters are based in Thessaloniki, Greece, this position offers full remote flexibility.Your ResponsibilitiesIntegrate Security into the SDLCIncorporate security activities throughout all SDLC phases: requirements gathering, design, implementation, testing, deployment, and maintenance.Collaborate closely with engineering teams to ensure consistent application of secure development practices.Evaluate security controls for new features, services, and architectural modifications.Threat Modeling & Secure DesignConduct threat modeling sessions (e.g., STRIDE) for both new and existing systems.Identify potential threats, attack vectors, misconfigurations, and insecure design patterns.Work alongside engineers to ensure compliance with secure-by-design principles.Secure Code & Architecture ReviewsExecute security-focused code reviews to uncover vulnerabilities and risky implementations.Provide clear, actionable recommendations on secure coding standards and best practices.

Why This Role is ExcitingAt Innovatrics, we empower you with the resources, environment, and trust necessary for your success. Our growth-oriented approach illustrates how you can evolve, contribute, and create a significant impact during your tenure with us.Security is a cornerstone of our biometric solutions utilized in elections, border control, digital ID, and secure onboarding across more than 80 countries. We are ISO 27001 certified and are committed to continuously enhancing our security framework.This position emphasizes the critical aspects of our ecosystem: ensuring the security of software development, architecture, and deployment both in SaaS and on-premise installations.You will not be inheriting a large security team; instead, you will have the opportunity to influence how security is integrated into engineering practices.In your initial months, you will delve into...Our biometric products and system architectureDeployment models for SaaS and on-premises (Kubernetes, cloud, CI/CD)Current secure development methodologiesThe implementation of ISO 27001 controls within engineeringYour role will involve identifying vulnerabilities in product and deployment security and outlining a practical roadmap that aligns with our engineering objectives.Once you acclimate to your role, you will contribute by...Defining and evolving our security strategy for solutionsIntegrating secure SDLC practices across engineering teamsIntroducing structured threat modeling and conducting security design reviewsEnhancing the security of Kubernetes, cloud, and CI/CD processesEstablishing a comprehensive vulnerability management and secure release protocolServing as the security authority for software and deployment-related risks, with the authority to halt releases if critical risks are detectedFunctioning as a white-hat hacker to test our injection attack detection systemsYou will collaborate with ITO on ISO 27001 issues, but your primary responsibility will focus on security within software engineering and deployments.Within your first year, you will have the chance to...Develop product security into a measurable engineering disciplineEnhance hardening baselines for both SaaS and on-premises environmentsImplement integrated DevSecOps practices into our CI/CD pipelineIncrease the visibility of product security risks to leadershipPrepare the engineering scope for surveillance and recertification auditsPotentially expand a dedicated product security capabilityThis is a high-impact role that will shape how secure software is developed and delivered.What You Will Help BuildAt Innovatrics, we create biometric technologies that are pivotal for elections, border control, digital ID, and secure onboarding in over 80 countries.Your efforts will safeguard sensitive biometric data and essential systems.Your contributions will directly affect how each engineering team designs, constructs, and deploys software.Join us if you are passionate about deeply embedding security into architecture and engineering practices.

At Bloomreach, we are at the forefront of creating the world’s leading agentic platform for personalization. We are transforming the way businesses engage with their customers by developing and deploying AI agents that enhance the entire customer journey.Our goal is to make autonomous search mainstream, making product discovery more intuitive and conversational for customers, while driving profitability for businesses.We are bringing conversational shopping to life, connecting every shopper with personalized guidance and product expertise — available on demand at each stage of their journey.We are redefining the future of autonomous marketing, streamlining workflows and allowing marketers to focus on the creative, strategic, and customer-centric aspects of their roles.All of this is powered by our innovative AI engine — Loomi AI — ensuring that personalization is not only autonomous but also consistent. Businesses across various sectors, from retail to financial services, hospitality to gaming, rely on Bloomreach to foster significant growth and enduring customer loyalty. We empower personalization for over 1,400 global brands, including American Eagle, Sonepar, and Pandora.The Staff Security Engineer will be responsible for overseeing current and target-state data architectures and reporting. This role includes designing, implementing, and monitoring security controls for cloud infrastructure (AWS/GCP); deploying, securing, configuring, and managing SIEM and other security resources; identifying, triaging, and remedying infrastructure and web vulnerabilities; leading incident response efforts; engaging with external researchers; and mentoring junior team members.This position offers the flexibility to work from one of our Central Europe offices (Bratislava, Brno, Prague) or from home in Central and Eastern Europe.

Pure Storage is building the next generation of data storage solutions. The Prague team is looking for a Security Engineer to join the Information Security Staff (ISS) group and help secure the Everpure Platform. Role overview This hands-on engineering position focuses on designing and protecting the Everpure Platform. The Security Engineer will help build a zero-trust environment for core services, working to defend engineering infrastructure against lateral movement and advanced threats. What you will do Work as part of the Information Security Staff team to secure the Everpure Platform. Collaborate with Platform Reliability and Infrastructure teams to integrate security into automation supporting global developer services. Apply expertise in areas such as network architecture, detection engineering, or securing AI pipelines. Requirements Experience in network architecture, detection engineering, or securing AI pipelines. Strong interest in building and maintaining secure engineering infrastructure. Ability to work closely with cross-functional technical teams. This Security Engineer role is based in Prague, Czech Republic.

Wrike is a leading work management platform designed to empower teams and organizations to collaborate effectively, innovate, and excel in their endeavors. By bringing all work into a unified space, Wrike simplifies processes, enhances productivity, and enables individuals to concentrate on their most impactful work. Our Vision: A world where everyone is liberated to engage in their most meaningful work collaboratively. About the Role:As a key member of Wrike’s Security team, you will play a vital role in safeguarding the integrity and trustworthiness of the data housed within our platform. In this senior role, you will take ownership of and enhance the security framework for Wrike’s production, Kubernetes, and GCP environments. You will not only maintain systems but also design a "secure by default" infrastructure that empowers our engineering teams to operate swiftly without sacrificing safety.Your Impact:Ownership of Infrastructure Security: Architect, implement, and refine security measures—including hardening, network segmentation, IAM, and endpoint security—across our entire infrastructure.Strategic Cyber Defense: Set the technical vision for cybersecurity defense, encompassing enterprise posture management, threat detection, and vulnerability management.Collaborative Security Architecture: Collaborate with ITOps, SysOps, DevOps, and XOps to integrate security into the foundation of our architecture and change management processes.SIEM Development: Create and manage our SIEM strategy and its associated infrastructure to ensure proactive monitoring and visibility.Mentorship and Education: Guide and educate engineering teams on secure system design, enhancing the security knowledge across the organization.

At Bloomreach, we are at the forefront of creating the world's leading agentic platform for personalization. Our mission is to transform how businesses interact with their customers by developing and deploying AI agents that enhance the entire customer journey.We are bringing autonomous search into the mainstream, making product discovery not only intuitive and conversational for customers but also more profitable for businesses.We are making conversational shopping a reality, providing every shopper with personalized guidance and product expertise—available on demand at every touchpoint in their journey.Our vision includes designing the future of autonomous marketing, eliminating the manual aspects of workflows, and enabling marketers to focus on creative, strategic, and customer-centric work.All of this is powered by our single AI engine, Loomi AI, ensuring that personalization is not just autonomous but also consistent. From retail to financial services, hospitality to gaming, businesses leverage Bloomreach to achieve accelerated growth and foster lasting customer loyalty. We proudly support over 1,400 global brands, including American Eagle, Sonepar, and Pandora.The Senior Staff Security Infrastructure Engineer is responsible for defining both current and target-state data architectures and reporting. This role involves designing, implementing, and monitoring security controls for cloud infrastructure (AWS/GCP), deploying and securing SIEM and other security resources, identifying and remediating infrastructure and web vulnerabilities, leading incident triage, engaging with external researchers, and mentoring junior team members.

Why Join Aisle?At Aisle, we are transforming the landscape of enterprise software security by leveraging AI agents for autonomous vulnerability remediation. With vulnerabilities identified as the leading cause of cyber incidents, we recognize the urgency of timely patching, a task that often takes organizations weeks or even months. Our innovative approach is here to change that.Our core mission is to safeguard democratic societies against the most advanced cyber threats. By empowering organizations, including those responsible for critical infrastructure, we enable them to fortify their systems and address security concerns with unmatched speed and scalability. Supported by a team of world-class founders and advisors, we are pioneering a new category in cybersecurity that merges AI, automation, and enterprise resilience.As a compact, highly skilled team spread across the US, Europe, and Israel, we prioritize ownership, agility, and collaborative spirit. If you aspire to work alongside top-tier minds in AI and security, thrive in dynamic settings, and are passionate about tackling one of the most challenging issues in technology, Aisle is the ideal workplace for you.

Join us at the forefront of technology as we revolutionize the data storage industry. At Pure Storage, you will engage in groundbreaking work, collaborate with the most brilliant minds in the field, and contribute to innovative solutions that make a significant impact.Embrace the opportunity to shape the future and leave a lasting imprint in the tech world. If you're ready to unlock a world of possibilities, we invite you to be part of our journey.THE ROLEIn the position of Senior Security Operations Engineer, you will be a pivotal architect in enhancing our Security Operations Center (SOC), transitioning from reactive monitoring to proactive defense strategies. Collaborating closely with the Security Operations Manager, you will oversee the integration of advanced security systems while mentoring a high-performance team. Your goal is to connect the intricate threat landscape with scalable technical solutions, safeguarding our global data infrastructure.WHAT YOU'LL DOArchitect and Onboard Security Infrastructure: Develop strategies for integrating new security systems and services, ensuring seamless data ingestion into our operations to enhance visibility.Drive SOC Maturity and Integration: Assess and optimize our current toolstack, including IDS/IPS, EDR, and SIEM, to automate workflows and enhance Mean Time to Respond (MTTR).Lead Incident Response and Threat Intelligence: Guide the detection and mitigation of active threats using GenAI and advanced forensics to minimize business impact.Operationalize Security Policy: Convert abstract security requirements into effective technical controls across Linux and Cloud (AWS) environments, aligning our security roadmap with global business objectives.Innovate through Automation: Employ a DevOps approach to create custom scripts (Python, PowerShell) and utilize containerization (Docker) to streamline tasks and boost team efficiency.WHAT YOU BRINGDeep Technical Proficiency in Defense: Extensive experience in managing enterprise security technologies such as UTM firewalls, network-based threat detection, and cloud platforms.Automation and Engineering Mindset: Demonstrated capability to automate intricate security tasks and processes.

The Security Engineer (L2) role involves delivering exceptional second-line technical support to our clients, with a strong focus on proactively identifying and resolving technical incidents and issues. By engaging in preventative service incident activities, you will ensure that services are restored promptly and efficiently. This position is responsible for managing incidents of medium complexity, contributing to a seamless support experience for our clients.Key Responsibilities:Deliver remote technical support to clients.Diagnose and identify root causes of incidents.Guarantee timely resolution of incidents and service requests.Engage in performance reviews, pinpointing causes of performance issues and recommending enhancements.Analyze recurring or high-impact incidents and navigate them through the problem management process.

The Security Engineer (L2) position is crucial in delivering professional second-line technical support to clients. This role involves proactively identifying and resolving technical incidents and problems to restore service effectively. You will manage incidents of medium complexity, ensuring client satisfaction through timely resolutions.Key Responsibilities:Provide remote technical support to clients.Identify the root cause of incidents.Ensure timely resolution of incidents and service requests.Engage in performance reviews to identify and suggest improvements for performance shortcomings.Oversee recurring or high-impact incidents through the problem management process.

Veeam Software secures data and AI for over 550,000 customers worldwide, supporting business continuity for organizations of all sizes. Headquartered in Seattle and operating in more than 30 countries, Veeam specializes in data resilience and security posture management. The company helps global brands deploy AI safely and reliably at scale. Role Overview The Staff Security Engineer will design and strengthen the authentication and authorization framework for Veeam Data Cloud (VDC), a cloud-native SaaS platform. This position is based in Prague, Czechia. What You Will Do Evaluate and define the platform’s authorization model Architect and enhance Role-Based Access Control (RBAC) and related security controls Advance security measures that protect access to Veeam Data Cloud About Veeam Software Veeam is recognized for its commitment to data security, resilience, and supporting customers’ safe adoption of new technologies. The company values growth, learning, and meaningful impact for both employees and clients.

The Security Engineer (L2) plays a vital role in delivering exceptional second-line technical support to our clients. This position involves proactively identifying and resolving technical incidents and challenges, ensuring that our clients receive timely service restoration. As a key player in managing incidents of medium complexity, you will oversee the incident management process from start to finish, ensuring effective resolutions.Key Responsibilities:Deliver remote technical support to clients.Diagnose and identify the root causes of incidents.Ensure the successful resolution of incidents and service requests.Engage in performance reviews, pinpointing areas for improvement and offering actionable suggestions.Analyze recurring or high-impact incidents and steer them through the problem management process.

GoodData’s Professional Services team in Prague is hiring a Frontend Software Engineer to help build AI-powered data applications for Fortune 500 clients. This group works on the Agentic Data Platform, focusing on solutions that process and analyze large datasets. The frontend squad, consisting of 6-7 engineers, collaborates within a larger Scrum team that includes data engineers, logical model designers, and full-stack developers. Using React, the team creates interfaces that make complex data analysis accessible to major clients. Engineers in this role develop their skills with support from experienced tech leads and architects. The team values collaboration, continuous learning, and encourages taking on more responsibility over time. Work culture AI agents such as Claude Code, Cursor, and Codex are integrated into daily workflows, assisting with scaffolding, refactoring, code reviews, and automation. Engineers select their preferred stack, including IDE, LLM provider, and agent workflow. Anthropic is commonly used, but everyone is free to choose what fits best. Rapid iteration and maintaining high standards are important. Tech leads provide guidance to balance quality and speed. Knowledge sharing is encouraged through internal workshops, frontend meetups, and open architectural discussions. Autonomy and ownership are central. Engineers decide how to solve problems and collaborate on prioritizing issues. What you will do Develop custom dashboard plugins and single-page applications for large clients using the open-source GoodData.UI React library. Work with others to deliver client solutions based on the GoodData platform and GoodData.UI. Deliver features end-to-end in an agile Scrum environment. Collaborate with tech leads and architects on feature implementation and technical discussions. Review code, write unit and integration tests, and work with QA to ensure software quality. Suggest improvements to best practices, technology stack, and AI-supported workflows. Requirements Proficiency in JavaScript and React. Experience with data visualization tools and libraries. Strong problem-solving ability and a collaborative mindset.

Wrike is a leading work management platform designed to empower teams and organizations to collaborate, innovate, and achieve their goals efficiently. By creating a seamless environment for all work-related tasks, Wrike aims to eliminate complexity, enhance productivity, and allow individuals to concentrate on their most impactful work. Our Vision: A world where everyone is free to focus on their most purposeful work together. About the Role:As a key member of Wrike’s Security team, you will play a vital role in safeguarding the integrity of our platform's data. In this senior role, you will be responsible for enhancing and managing the security framework across Wrike's production, Kubernetes, and GCP environments. Your focus will be on developing a 'secure by default' infrastructure that empowers our engineering teams to operate swiftly without compromising security.Your Impact:Own Infrastructure Security: Design, implement, and refine security measures—including hardening, network segmentation, IAM, and endpoint security—across our entire infrastructure.Strategic Defense: Lead the technical strategy for cybersecurity defenses, encompassing enterprise posture management, threat detection, and vulnerability management.Collaborative Architecture: Collaborate with ITOps, SysOps, DevOps, and XOps to integrate security into the core of our architecture and change management processes.SIEM Evolution: Establish and maintain our SIEM strategy and associated infrastructure to ensure proactive visibility.Mentorship: Coach and educate engineering teams on secure system design, enhancing the overall security knowledge within the organization.

About Speechify Speechify builds text-to-speech tools that help remove reading barriers for over 50 million people worldwide. The company’s products span iOS and Android apps, a Mac desktop application, a Chrome extension, and a web platform. Users can listen to content from PDFs, books, Google Docs, news articles, and websites, making information more accessible and easier to retain. Speechify’s work has earned recognition from major industry leaders, including Google’s Chrome Extension of the Year and Apple’s 2025 Design Award for Inclusivity. The team is fully distributed, with close to 200 professionals collaborating across the globe. Team members bring experience from companies like Amazon, Microsoft, and Google, as well as academic backgrounds from institutions such as Stanford.

Gen Digital unites well-known brands such as Norton, Avast, LifeLock, and MoneyLion, delivering cybersecurity, privacy, identity protection, and financial wellness solutions to nearly 500 million users worldwide. The company fosters a culture that values diverse viewpoints, teamwork, and ongoing learning. Employees at Gen Digital have access to flexible work options, competitive pay, and wellness initiatives. The team looks for people who are creative, self-driven, and ready to share fresh ideas. Role overview The Security Controls Engineer - Vulnerability Management focuses on strengthening Gen Digital’s ability to identify and address security vulnerabilities. This position works closely with security and DevOps teams to turn legal and security requirements into actionable programs. Key responsibilities Design and manage the full vulnerability management lifecycle, including identification, triage, prioritization, remediation, and validation. Continuously refine processes to improve vulnerability management practices. Promote secure development and ensure compliance with regulatory standards. Coordinate vulnerability disclosure and maintain transparency of the Software Bill of Materials (SBOM). Oversee patch management and monitor systems after deployment. Location This position is based in Brno, Czech Republic.

Our MissionAt SentinelOne, our mission is straightforward: empower those who are safeguarding our future. In an era where AI is transforming organizational dynamics, the imperative to protect these entities intensifies. By joining SentinelOne, your contributions will fortify global enterprises, critical infrastructures, and the innovations defining our future. If you seek impactful challenges that yield tangible and worldwide effects, your purpose awaits here.Who We AreSentinelOne operates at the nexus of AI and cybersecurity, leading the charge with an innovative model designed for modern security. Our AI-driven platform consolidates protection across endpoints, cloud environments, identities, data, and AI systems, ensuring autonomous detection and response with precision and speed. By integrating real-time analytics, intelligent automation, and a cohesive data foundation, we mitigate noise, streamline complexities, and enable security teams to concentrate on what genuinely matters.Our workforce comprises builders, problem-solvers, and visionaries dedicated to redefining the future of security. If you are enthusiastic about tackling complex challenges with exceptionally skilled, mission-focused individuals, we welcome you to join us in crafting a safer tomorrow for all.Position OverviewAs a Senior Windows Low Level Engineer specializing in Endpoint Security, you will architect and implement cutting-edge security features for SentinelOne’s Windows endpoint protection platform, functioning across both user-mode and kernel-mode environments. You will construct and enhance mission-critical components such as anti-tampering measures, network sensors, and agent infrastructure while addressing intricate performance and stability challenges at a large scale. By delving into Windows internals and diagnosing profound system issues, you will collaborate with distributed engineering teams to deliver high-impact security functionalities safeguarding millions of devices globally.

Join our dynamic team at vilgain, where we're building an innovative e-commerce platform serving all of Europe. Our operations are powered by Odoo ERP and our proprietary WMS, including AutoStore technology. We are on the lookout for a technically adept L2/L3 Application Support Engineer who can ensure our systems remain operational and tackle complex issues beyond simple server restarts.Key Responsibilities:L2/L3 Escalation Point: Manage and resolve intricate incidents in Odoo and WMS that are escalated from the first line of support.Diagnosis and Root Cause Analysis: Conduct analyses to identify root causes, fix application logic, and optimize database performance and integrations.Odoo Core Support: Administer modules (purchasing, manufacturing, inventory, accounting), configure workflows, automated actions, and custom fields.WMS & Logistics: Support inventory flows, pick-pack-ship logic, and hardware communication (AutoStore, conveyors).Integration and Data Management: Debug API (JSON/XML) interactions between the e-shop, Odoo, WMS, and logistics partners.Monitoring and SQL: Write SQL queries for data repairs and reporting, monitor system health using Grafana.Collaboration: Work closely with developers on code reviews and validation of fixes in staging before deployment.Qualifications:3+ years in L2/L3 support: Experience in e-commerce, retail, or logistics preferred.Familiarity with Odoo (v14+) or similar tools: Must understand its logic and be able to configure it (not just use it).Strong SQL/MySQL skills: Ability to write diagnostic queries and interpret EXPLAIN plans.Analytical mindset: Dive deep to uncover the true cause of issues.Communication: Excellent verbal and written communication skills.

Our PurposeAt SentinelOne, we are united by a profound mission: to empower those who safeguard our future. As artificial intelligence revolutionizes how organizations function, innovate, and operate, the imperative to protect them intensifies. By joining SentinelOne, you contribute to the protection of global enterprises, critical infrastructure, and the technologies that will define tomorrow. If you thrive on meaningful challenges and seek to make a tangible, global impact, you will find your purpose here.About UsSentinelOne stands at the crossroads of AI and cybersecurity, redefining the operating model for protection. Our AI-native platform consolidates security across endpoints, cloud environments, identity management, data integrity, and AI systems to deliver autonomous detection and response swiftly and effectively. By harnessing real-time analytics, intelligent automation, and a cohesive data foundation, we minimize distractions, streamline complexities, and empower security teams to concentrate on what truly counts.Our teams are innovators, builders, and problem-solvers dedicated to shaping the future of security. If you are thrilled by the prospect of addressing challenging issues alongside talented, mission-driven individuals, we invite you to help us forge a safer future for humanity.What Are We Looking For?We seek individuals who are perpetually curious and dedicated to lifelong learning. AI is transforming every aspect of our operations, and we empower every team member, regardless of their role or experience level, to develop fluency in AI tools and concepts. Those who excel in our environment proactively pursue new solutions, experiment thoughtfully, and apply their insights to yield improved, faster, and smarter outcomes.As a Senior Software Engineer, you will oversee the complete development process of new agent capabilities, researching Linux and cloud security technologies, designing detection strategies, and implementing them at scale. You will engage with kernel-level components, user-space engines, and cloud-native security features, tackling intricate systems engineering challenges.Your contributions will strengthen the security of Linux and cloud workloads utilized by hundreds of thousands of users worldwide. We are on the lookout for engineers with Linux and/or cloud security experience who can innovate from the ground up and propel scalable capabilities across our product suite.What Will You Do?...