Senior Security Engineer at Apify

Popis pracovní pozice:

Nejnovější informace o práci od Apify na pozici Senior Security Engineer. If the Senior Security Engineer volné místo v Praha odpovídá vaší kvalifikaci, zašlete svou aktuální žádost nebo CV přímo přes aktualizovaný portál Jobkos.

Vezměte prosím na vědomí, že hledání práce nemusí být vždy snadné, protože kandidáti musí splňovat určité požadavky stanovené společností. Doufáme, že kariérní příležitost v Apify na pozici Senior Security Engineer níže odpovídá vaší kvalifikaci.

Join Apify on our mission to help anyone get more value from the web, so they can automate tasks and spend time on the things that matter most.

Apify downloads billions of web pages from all over the world for AI, market research, and finding lost children. We give chatbots the context to interact intelligently, and we’re making agents an integral part of the Apify platform.

We’re looking for a Senior Security Engineer to build Apify's security function from the ground up. You'll have the rare opportunity to shape how we protect the Apify platform, with 55,000 monthly active users and 25,000 customers. You’ll establish a dedicated security function across the Firma as the První member of the new security team. It's a lot of responsibility, and a lot of opportunity.

You'll focus primarily on product security - making sure our features, infrastructure, and development practices keep users safe. But you'll also help shape IT security standards across the Firma. We have solid foundations (SOC 2, established policies), but we need someone to take ownership, identify gaps, and drive continuous improvement.

What you’ll be working on:

Product and infrastructure security:

• Secure our software development lifecycle: Review major architectural changes for security implications before deployment.
• Vulnerability management: Own the full lifecycle of vulnerabilities, leveraging GitHub Dependabot, code scanning, and external tools.
• Coordinate security testing: Manage and coordinate penetration testing and oversee our bug bounty program.
• Secrets and access: Manage secrets, credentials, and control access to sensitive systems.
• Collaboration: Work directly with engineering teams to ensure vulnerabilities are fixed within established SLAs.
• Cloud hardening: Enhance and secure our AWS environment, focusing on IAM policies, network security, and robust logging.
• Threat detection and response: Monitor for threats, respond to security incidents, and continuously improve our detection capabilities.
• Security automation: Build and implement automation to improve security and efficiency across the infrastructure.

Firma security and standards

• Policy and governance: Maintain and evolve our existing security policies and standards.
• Compliance: Actively support ongoing compliance efforts (e.g. SOC 2, CIST).
• Risk management: Evaluate third-party vendors and integrations to assess and mitigate security risks.
• Training: Run security awareness training to maintain a security-conscious and sharp team.
• IT security operations: Perform security reviews and audits of internal IT infrastructure and oversee the vendor security review process for all third-party software and services.

Who we’re looking for:

• Experience: 5+ years mainly in security engineering, Application Security (AppSec), or a closely related field. Previously worked in a security team within a larger Firma (250+ employees).
• Cloud: Hands-on experience securing cloud environments (e.g. IAM, CloudTrail, GuardDuty).
• Web security knowledge: Solid understanding of common web application vulnerabilities (OWASP Top 10).
• Tooling: Experience with vulnerability scanning, SAST/DAST tools, and utilizing GitHub's security features.
• Technical aptitude: Ability to read and review code (proficiency in Node.js/TypeScript is a plus).
• Communication: Strong ability to communicate technical security risks and work effectively with engineering, product, and leadership.
• Self-starter mentality: You’ll be instrumental in building this function, not just maintaining an established one.

Why should you work at Apify?

• Space, support, and autonomy for personal growth, with a direct impact on our success
• Full-time Pozice in Prague at our amazing office located in Lucerna Palace
• Option to work remotely

  Informace o práci:

  • Firma: Apify
  • Pozice: Senior Security Engineer
  • Místo výkonu práce: Praha
  • Země: CZ

  Jak poslat žádost:

  Po přečtení a pochopení kritérií a minimálních požadavků na kvalifikaci uvedených v informacích o pracovní pozici Senior Security Engineer at the office Praha výše, si okamžitě připravte dokumenty k žádosti, jako je průvodní dopis, životopis (CV), kopie diplomu, výpis známek a další přílohy. Odeslat můžete přes odkaz Další strana níže.

  TATO NABÍDKA JIŽ VYPRŠELA (před více než 30 dny).
  Vyhledejte prosím nejnovější pracovní příležitosti na naší Hlavní stránka.