In Cyclad we work with top international IT companies in order to boost their potential in delivering outstanding, cutting edge technologies that shape the world of the future. Currently, for our client, we are looking for a skilled Security Engineer to join our Application Security team. In this role, you will contribute to key AppSec activities, including Static Application Security Testing (SAST), web application scanning, and supporting software development teams in resolving security issues.

You will work in a collaborative team of 3-4 professionals, partnering closely with development teams to strengthen the overall security posture of our applications.

Project information:

• Location: Warszawa (1 day from the office, 4 days remotely)
• Type of employment: B2B contract
• Remuneration: 160 - 210 PLN net + VAT per hour on B2B 
• Project language: English

Your tasks:

• Provide expertise in secure software development and the security of programming languages and frameworks
• Perform security testing and conduct security code reviews to enhance software security
• Onboard applications into security testing tools such as:
• Static analysis tools (OpenText Fortify, Sonatype NexusIQ)
• Web application scanning tools (Qualys WAS)
• Create or adapt CI/CD pipelines to enable automated security scans
• Support development teams in troubleshooting and debugging security-related issues
• Document recurring issues and update secure coding guidelines
• Deliver occasional training sessions on secure coding practices and security tools
• Ensure application security standards and policies are respected across development projects
• Provide regular reporting 

Requirements:

• At least 6 years of proven experience as a Software Security Engineer or in a similar role
• In-depth technical knowledge of:
  • Authentication and authorization mechanisms
  • Applied cryptography
  • Application security vulnerabilities and mitigation techniques
• Development experience in at least one of the following languages: Java, JavaScript/TypeScript, Python
• Solid understanding of web technologies (Web Applications, Web Services, Service-Oriented Architectures) and network/web protocols
• Practical experience with penetration testing tools and techniques is a plus

We offer:

• Private medical care with dental care (covering 70% of costs) + rehabilitation package. Family package option possible
• Multisport card (also for an accompanying person).
• Life insurance
• International work environment