Informacje o stanowisku

technologies-expected :

• AWS
• Google Cloud Platform

• As a Principal Web Application Security Specialist, you will be working for our client, a global financial services organization undergoing a transformation to fortify its cybersecurity posture across its digital infrastructure. You are joining a forward-thinking team within the cybersecurity division, focusing on enhancing web application defense mechanisms to counter evolving threats. This role places you at the heart of designing and implementing protection strategies for critical applications and services accessed globally, ensuring data security, business continuity, and customer trust in an increasingly complex cyber landscape.
• Join us, and be the shield behind global innovation!
• Kraków – based opportunity with hybrid work model (6 days/month in the office).

• Designing and deploying Web Application Firewalls (WAFs) to protect critical applications
• Monitoring and fine-tuning WAF rules for effective mitigation of threats
• Integrating vulnerability scanning tools with WAFs for automated threat response
• Conducting threat modeling to identify and address application security risks
• Collaborating with DevSecOps and infrastructure teams to align protection strategies
• Reviewing security policies and adapting them to evolving threats
• Leading incident response efforts related to web application attacks
• Supporting secure design and deployment in cloud-based environments
• Advising on secure development practices to reduce application-layer vulnerabilities
• Documenting security configurations, procedures, and best practices

• Proven experience in Web Application Security and Protection tooling
• Strong understanding of web application vulnerabilities and OWASP threat models
• Expertise with WAF platforms such as AWS WAF, Akamai Kona, or F5 ASM
• Deep knowledge of API security, including token-based authentication and gateways
• Solid grasp of vulnerability scanning tools and automated security integration
• Hands-on experience in threat modeling and mitigation
• Proficiency in cloud security, especially within AWS or GCP environments
• Excellent problem-solving skills with strong analytical thinking
• Ability to communicate complex technical topics to non-technical stakeholders
• Experience collaborating across global, cross-functional security teams

• Stable and long-term cooperation with very good conditions
• Enhance your skills and develop your expertise in the financial industry
• Work on the most strategic projects available in the market
• Define your career roadmap and develop yourself in the best and fastest possible way by delivering strategic projects for different clients of ITDS over several years
• Participate in Social Events, training, and work in an international environment
• Access to attractive Medical Package
• Access to Multisport Program
• Access to Pluralsight
• Flexible hours

• sharing the costs of sports activities
• private medical care
• flexible working time
• fruits
• integration events
• corporate gym
• mobile phone available for private use
• computer available for private use
• saving & investment scheme
• no dress code
• coffee / tea
• drinks
• christmas gifts
• birthday celebration
• access to +100 projects
• access to Pluralsight

Kraków - Oferty pracy w okolicznych lokalizacjach