Jobs Security

Project Description

We’re looking for a Senior Software Developer who understands Windows at a deep level and enjoys solving hard identity-security problems in elegant ways. We value clear thinking, clean code, and people who build things that last. You will have broad autonomy, minimal bureaucracy, and direct influence on the product architecture.

Client Description

Our client is a cybersecurity company from Germany which redefines authentication: removing passwords, unifying token types, and building a new foundation for enterprise identity. You will be shaping the platform that CIOs, CISOs, and engineers trust for critical access control. 
 

Position Requirements:

- Expert-level knowledge of Windows system architecture (Win32 APIs, security subsystems, identity stack)

- Strong experience in both C++ and in C#/.NET

- Solid understanding of cryptography, especially Windows crypto implementations (CNG, DPAPI, smartcard/PCSC, certificate handling)

- Ability to work on complex features independently and drive them from concept to stable production code

- Curiosity, creativity, and a willingness to challenge old assumptions

Nice to Have

- Experience with authentication technologies, identity protocols, SAML, FIDO, smart cards, secure design

- Background in building system-level security products or middleware

- Familiarity with cryptographic key management, or hardware-backed cryptography

Candidate Responsibilities

You will design and build native and managed Windows applications and services that form the backbone of a passwordless multifactor authentication platform. This includes secure desktop components, system-level integrations, and high-performance server modules that interact closely with Windows internals.

🧙‍♂️ About the Role

The work happens directly inside client cloud environments: identifying security and compliance gaps, then remediating them through code — Terraform, OpenTofu, Bicep, YAML. Not manual configurations. Not PowerPoint recommendations. Real implementation work in production systems.

This role is part of a client delivery team supporting fast-growing US companies across multiple concurrent engagements in a consulting-driven environment. It combines cloud engineering, security, compliance, and advisory work.

The goal is not only to close gaps, but to help clients build security programs that survive real operational scale — not just audit

 

🧙‍♂️ In This Role You Will

• Harden cloud environments across AWS, Azure, GCP, and Oracle Cloud — IAM, network segmentation, secrets management, logging, monitoring, and CSPM.
• Remediate compliance and security gaps through Infrastructure as Code using Terraform, OpenTofu, Bicep, and YAML-based configurations.
• Use automated scanning and compliance tooling to assess posture across cloud environments, code repositories, HRIS, and ERP systems.
• Support clients through security and compliance initiatives including ISO 27001, ISO 27017, ISO 27018, ISO 27701, ISO 42001, SOC 2, and NIST 800-171.
• Automate security and operational workflows using Python, Bash, CI/CD pipelines, and vendor APIs.
• Participate directly in client calls, remediation planning sessions, technical workshops, and security roadmap discussions with engineering and security stakeholders.
• Build reusable IaC modules, automation scripts, and internal accelerators that improve delivery efficiency across future engagements.
• Collaborate with client engineering and security teams to deliver scalable, production-ready security solutions.
  
   

🎯 You May Be Interested If

• You enjoy solving real-world cloud infrastructure and security problems across different environments and industries.
• You prefer practical engineering and implementation work over checkbox security.
• You're comfortable managing multiple projects and adapting quickly to different client stacks and operational contexts.
• You take ownership of your work and can independently manage technical delivery workstreams.
• You're comfortable communicating directly with engineering leaders and explaining technical decisions clearly.
• You want to grow beyond pure execution into a more strategic, advisory-oriented security role.
• You come from a strong cloud engineering or DevSecOps background and want to move deeper into security and compliance engineering.
  
   

🍰 Must-Have

• Strong Infrastructure as Code experience — Terraform, OpenTofu, Bicep, or YAML in real production environments.
• Hands-on experience with at least one major cloud platform (AWS, Azure, or GCP); multi-cloud exposure is a strong plus.
• Understanding of security and compliance frameworks such as ISO 27001, SOC 2, or NIST, including how technical controls are implemented in practice.
• Experience with Python and/or Bash scripting for automation and operational workflows.
• Experience with CI/CD pipelines, GitHub Actions, infrastructure automation, and cloud-native tooling.
• Ability to communicate directly with client-side engineering and security stakeholders.
• Strong ownership mindset and ability to independently manage delivery workstreams.
• English proficiency at B2 level or higher.
• Availability for collaboration with US-based clients and scheduled calls starting from 16:00 Kyiv time.
  
   

🍒 Nice to Have

• Experience with Oracle Cloud Infrastructure (OCI).
• Experience with CSPM and automated compliance tooling such as Wiz, Lacework, Vanta, Drata, or similar platforms.
• Exposure to AppSec, vulnerability management, detection engineering, SIEM, or incident response workflows.
• Previous consulting, MSP, or client delivery experience.
• Relevant certifications such as AWS Security Specialty, CISSP, CCSP, or Security+.
  
   

💻 Working Conditions

• Employment Type: Full-Time
• Fully remote position with distributed teams across Ukraine and the US.
• Flexible remote setup with required overlap for US-based client communication and delivery coordination.
• 20 working days of paid vacation per year.
• Results-oriented environment with high autonomy and ownership expectations.
• Access to continuous learning opportunities, certifications, and professional development support.

Who Are We?

Welltech is a global wellness technology company with Ukrainian roots. Our mission is to build and scale wellness apps globally through state-of-the-art, tech-driven performance marketing.

We are one of the most established players in the wellness app space, and we are accelerating. Over 25.5 million people across the world use our apps — Muscle Booster, Yoga-Go, and WalkFit — to build healthier habits, move more, and feel better every day. Every subscription represents a real person making a real change in their life, and we take that seriously.

With 500+ people across hubs in Cyprus, Ukraine, Poland, Spain, and the UK, we combine the scale of a market leader and the drive of a team that's just getting started.

What We're Looking For

We are seeking a talented and motivated Senior Security Engineer (x/f/m) to join our small but dedicated Security Team. In this role, you will play a crucial part in strengthening our overall security posture, collaborate across teams and domains, and own security initiatives company-wide.

Responsibilities:

• Own and drive execution of multiple key security initiatives, ensuring they are well-integrated, documented, and effectively support Welltech’s security goals.
• Collaborate with leadership to shape the team’s roadmap, providing your expertise.
• Mentor junior team members in the Security team to help them grow in their role.
• Collaborate with engineering, IT, and product teams to embed security best practices throughout the development lifecycle and operational processes.
• Champion continuous improvement in Security Engineering by regularly reviewing processes, implementing automation, and driving standardization to enhance team efficiency and organizational impact
• Lead PCI-DSS Compliance initiative with relevant stakeholders
• Design, implement, and maintain security controls and measures across Welltech’s systems, networks, and cloud environments.
• Contribute to threat modeling, risk assessments, and incident response, supporting a proactive and resilient security posture.
• Develop and refine internal security policies, standards, and tools to support company-wide security goals.
• Support and lead security awareness efforts, helping to foster a strong security culture throughout the organization.

Continuously evaluate emerging threats, technologies, and practices, driving improvements to Welltech’s overall security maturity.

Requirements:

• 5+ years of hands-on security engineering experience with proven expertise in implementing and managing security solutions
• Solid understanding of security principles, vulnerabilities, and common attack techniques.
• Proficiency with Python (especially writing Lambda functions).
• Experience with Kubernetes in production environments.
• Familiarity with CI/CD tooling and secure deployment practices.
• Very good knowledge of cloud platforms - AWS or Google Cloud.
• Big plus: Solid Experience with PCI.

• Nice to have: Experience with application security, DLP platforms, and observability.

   

  Soft Skills:

• Excellent written and verbal communication skills.
• A collaborative, proactive mindset and passion for continuous improvement.
• Ability to clearly communicate complex security concepts to technical and non-technical stakeholders.
• Strong organizational skills to effectively prioritize and manage multiple concurrent tasks and meet deadlines.

Location: Germany (Hybrid)

Engagement model: Near-shoring with limited onsite presence (~5–10% for onboarding and recurring alignment meetings) 

Languages: German (working proficiency required) = B1 · English Seniority: Open to mid-level through senior consultants

About the project

We are staffing a consulting engagement set in a German public-sector / governmental environment. Because of the official context, working German language skills are mandatory. The engagement runs primarily as a near-shore delivery model, with approximately 5–10% onsite work reserved for onboarding and regular coordination meetings.

Your role

As a network consultant, you will support the full delivery lifecycle — from requirements management through design, implementation support, and testing — operating across network, enterprise, and software architecture contexts.

Core skill (must-have)

• IPv6 networking expertise — hands-on experience with design, addressing and planning, migration, and operations.

Additional skills (highly valued)

• Cisco networking technologies
• NetBox — IPAM / DCIM, network source of truth
• NetBird — WireGuard-based overlay / zero-trust networking
• Ability to bridge network, enterprise, and software architecture

Responsibilities across the lifecycle

• Requirements engineering and management
• Network / enterprise / software architecture design and consulting
• Implementation support
• Testing and validation

Your profile

• Proven track record as a network / IT consultant in complex environments
• Comfortable operating in German-language, public-sector settings

• Combines deep network expertise with a broader enterprise and software architecture understanding

   

Availability

Immediate availability is not required. We welcome consultants who are available now, as well as those who can become fully or partially available in the foreseeable future.

We are looking for a Threat Intelligence Analyst to join our cybersecurity team and strengthen the company’s proactive defense capabilities.

This role combines cyber threat intelligence, proactive investigations, and risk-oriented analysis. We are looking for a specialist who can identify emerging threats, analyze attacker behavior and TTPs, assess their relevance to the business environment, and help improve the organization’s detection and response capabilities.

You will work closely with SOC, IT, and Risk Management teams to transform threat intelligence into actionable security insights and recommendations.
 

Responsibilities

• Collect, analyze, enrich, and contextualize cyber threat intelligence from multiple sources, including OSINT, CERTs, vendors, and industry feeds
• Monitor emerging threats, attacker activity, vulnerabilities, and adversary TTPs relevant to the organization
• Conduct proactive threat hunting activities across SIEM, EDR/XDR, cloud environments, and other telemetry sources
• Develop and validate hypotheses based on threat intelligence and behavioral patterns
• Support investigations related to incidents, suspicious activity, and threat intelligence findings
• Identify gaps in detection and response capabilities and provide recommendations for improvement
• Assess potential business impact and risk associated with identified threats
• Prepare analytical reports, threat assessments, and actionable recommendations for technical and non-technical stakeholders
• Collaborate with SOC and IT teams to improve detection logic, monitoring, and security processes
   

Requirements

• 2+ years of experience in Threat Intelligence, Threat Hunting, SOC L2/L3, DFIR, or Incident Response
• Strong understanding of MITRE ATT&CK framework
• Hands-on experience with SIEM platforms (Microsoft Sentinel, Splunk, QRadar, etc.)
• Experience working with EDR/XDR solutions
• Understanding of cyber threat intelligence processes and proactive threat hunting methodologies
• Strong analytical and investigative skills
• Ability to work with incomplete or ambiguous information
• Understanding of security risks and attack vectors
• Strong communication skills and ability to explain technical findings clearly
   

Nice to have

• Experience with Purple Team activities
• Understanding of cloud security (Azure / AWS / GCP)
• Experience with KQL, Python, Sigma, or detection engineering
• Experience with threat modeling or risk management processes
• Familiarity with automation and detection-as-code approaches

AppsFlyer builds technology at massive scale, powering measurement, analytics, and fraud prevention across billions of mobile events every day.

Join AppsFlyer’s Security SDK Team, responsible for protecting the integrity and authenticity of our mobile SDKs across Android and iOS. The team works on securing SDK communication, improving SDK resilience, and building trusted solutions that run on billions of devices worldwide.

This is a great opportunity for engineers who are passionate about mobile development and interested in security, low-level systems, and reverse engineering.

We work with Android and iOS platforms, native components (C/C++), and cloud-based infrastructure, while encouraging continuous learning, technical growth, and hands-on research.

What you’ll do

• Develop AppsFlyer SDK features end-to-end — from design to production.
• Build and improve protection mechanisms for Android SDKs (primary focus) and iOS SDKs.
• Help improve SDK resilience against tampering and abuse.
• Collaborate with Product Managers and Engineers across mobile and backend teams.
• Participate in research, debugging, and investigation of mobile security challenges.
• Learn and work with low-level mobile technologies, native code, and reverse engineering tools.
• Work in an Agile environment with engineers across mobile, backend, and product.

What you have (Must)

• B.Sc. in Computer Science or equivalent experience.
• 1–2 years of software development experience, preferably in Android development.
• Experience developing mobile applications or SDKs.
• Good understanding of Android fundamentals and application architecture.
• Strong debugging and problem-solving skills.
• Curiosity and motivation to learn security and low-level technologies.
• Very good English communication skills.
• Strong ownership mindset and willingness to learn and grow.

Bonus Points

• Experience with Kotlin, Java, or Android SDK development.
• Familiarity with C/C++ or mobile native development.
• Interest in mobile security, reverse engineering, or runtime internals.
• Familiarity with tools such as Frida, Ghidra, or IDA.
• Experience with Gradle, CMake, or CI/CD systems.
• Familiarity with AWS or backend services.
• Exposure to LLVM/Clang or build toolchains.

Benefits Package includes:

• Health Insurance
• Paid Unlimited Vacation Days + all national holidays + additional recharge days
• Meals Reimbursement
• Sport Reimbursement
• Breakfast in the office
• Mental health program
• Team building, happy hours, and other team activities
• Paid sick days
• Snacks, fruits & ice cold beer
• All new team members are provided with a brand-new Mac laptop with 2 monitors and a Starter package

As a global company operating from 25 offices across 19 countries, we reflect the human mosaic of the diverse and multicultural world in which we live. We ensure equal opportunities for all of our employees and promote the recruitment of diverse talents to our global teams without consideration of race, gender, culture, or sexual orientation. We value and encourage curiosity, diversity, and innovation from all our employees, customers, and partners.

“As a Customer Obsessed company, we must first be Employee Obsessed. We need to make sure that we provide the team with the tools and resources they need to go All-In.” Oren Kaniel, CEO

Cloudfresh ⛅️ is a Global Google Cloud Premier Partner, Zendesk Premier Partner, Asana Solutions Partner, GitLab Select Partner, Hubspot Platinum Partner, Okta Activate Partner, and Microsoft Partner.

Since 2017, we’ve been specializing in the implementation, migration, integration, audit, administration, support, and training for top-tier cloud solutions. Our products focus on cutting-edge cloud computing, advanced location and mapping, seamless collaboration from anywhere, unparalleled customer service, and innovative DevSecOps.

We’re looking for a Google Cloud Security Engineer to harden client environments across GCP. You’ll implement and help design security controls, automate guardrails, improve detection & response, and guide stakeholders through pragmatic, risk-based decisions across EMEA.

Requirements:

• 3+ years proven, hands-on experience in a Security Engineer, SecOps (or similar) role.
• Strong knowledge of building and operating Security Porture, Edge protection, WAF, Endpoint security.
• Technical certifications related to CyberSecurity Google Cloud Solutions, Cloudflare and JumpCloud are an advantage.
• Experience of presentation, documentation.
• Excellent communication and strategic planning abilities, able to explain trade-offs, influence remediation, and drive adoption of guardrails.
• Basic scripting experience (e.g., Python, Bash, or gcloud CLI).
• Fluency in English.

Responsibilities:

• Design, implement, and operate security controls for internal needs and clients across.
• Perform cybersecurity audits.
• Configure and monitor Security Command Center, audit logs, and threat protection.
• Establish logging, detection and incident response.
• Assist clients with implementation of Cybersecurity products (Google Cloud Security Center, Google Workspace Security, Cloudflare, JumpCloud) and compliance controls.
• Generate security assessment reports and provide actionable recommendations.
• Continuously assess the landscape: track new Vendors features and update baselines to improve posture, reliability, and cost efficiency.

Work conditions:

• Competitive Salary & Transparent Motivation: Receive a competitive base salary with performance-based bonuses, providing clear financial rewards for your success.
• Flexible Work Format: Work remotely with flexible hours, allowing you to balance your professional and personal life efficiently.
• Training with Leading Cloud Products: Access in-depth training on cutting-edge cloud solutions, enhancing your expertise and equipping you with the tools to succeed in an ever-evolving industry.
• International Collaboration: Work alongside A-players and seasoned professionals in the cloud industry. Expand your expertise by engaging with international markets across the EMEA and CEE regions.
• Vibrant Team Environment: Be part of an innovative, dynamic team that fosters both personal and professional growth, creating opportunities for you to advance in your career.

When applying to this position, you consent to the processing of your personal data by CLOUDFRESH for the purposes necessary to conduct the recruitment process, in accordance with Regulation (EU) 2016/679 of the European Parliament and of the Council of April 27, 2016 (GDPR).
Additionally, you agree that CLOUDFRESH may process your personal data for future recruitment processes. You can withdraw this consetn at any time.

Who Are We?

Welltech is a global wellness technology company with Ukrainian roots. Our mission is to build and scale wellness apps globally through state-of-the-art, tech-driven performance marketing.

We are one of the most established players in the wellness app space, and we are accelerating. Over 25.5 million people across the world use our apps — Muscle Booster, Yoga-Go, and WalkFit — to build healthier habits, move more, and feel better every day. Every subscription represents a real person making a real change in their life, and we take that seriously.

With 500+ people across hubs in Cyprus, Ukraine, Poland, Spain, and the UK, we combine the scale of a market leader and the drive of a team that's just getting started.

What We're Looking For

Welltech’s success and constant growth is increasingly introducing new challenges to the security of our products. We are looking for a dedicated and experienced Senior/Staff Security Engineer to lead our security initiatives and drive our security strategy forward.

Responsibilities:

• Security Strategy Development: Design and implement mid and long-term security strategies, aligning them with business goals and technology roadmaps to ensure robust protection of digital assets. Collaborate across functions to integrate security practices into the broader organizational strategy.
• Risk Management: Identify, assess, and manage security risks, developing strategies to mitigate potential threats and vulnerabilities. Communicate risks and recommendations to senior leadership.
• Security Observability: Lead the transition from managed detection and response services to an in-house capability, ensuring seamless operational change and continuity. Develop and implement security monitoring and alerting strategies using Datadog and PagerDuty.
• Incident Response: Establish and manage an on-call incident response protocol to ensure swift and effective response to security incidents.
• Data Security Innovation: Partner with the Privacy team to establish foundational data security practices and policies, driving data security initiatives that comply with international industry standards and regulations.

• Certification & Compliance: Provide hands-on expertise to achieve and maintain PCI DSS certification. Ensure that security standards comply with industry regulations and best practices.

   

Requirements:

• Experience:
  • A minimum of 5 years in Security Engineering roles.
  • Demonstrated ability to lead large scale security projects and initiatives effectively.
  • Proven track record in implementing data security initiatives that meet industry standards.
  • Hands-on incident response experience with a track record of managing and mitigating security incidents effectively.
  • Experience with regulatory compliance standards and frameworks such as GDPR, PCI-DSS, or ISO 27001.
• Technical Skills:
  • Strong coding skills, with a focus on security-focused development.
  • Proven proficiency in utilizing Datadog and PagerDuty for detection and response operations.
  • Deep understanding of AWS security frameworks, practices, and tools to protect cloud-hosted environments.
• Soft Skills:
  • Strong communication skills with the ability to articulate complex security issues to technical and non-technical audiences.

RedCore is an international business group that creates technological solutions for digital markets. Our products and services cover fintech, marketing, e-commerce, customer service, communications and regulatory technologies.

We are looking for a Security System Engineer to join our teams!

Requirements:
- 2–4 years of experience in Endpoint Security / SOC / IT Security
- Hands-on experience with EDR solutions (SentinelOne, CrowdStrike, Microsoft Defender for Endpoint, or similar)
- Experience managing MDM solutions (ManageEngine, Intune, Jamf, or similar)
- Understanding of endpoint hardening principles and baseline configurations (CIS Benchmarks or similar)
- Experience with patch management processes and compliance tracking
- Hands-on experience in incident investigation
- Understanding of Incident Response processes and basic forensic practices
- Experience working with or integrating SIEM solutions (Splunk, ELK, Microsoft Sentinel, or similar)
- Understanding of the endpoint threat landscape (malware, phishing, privilege escalation, persistence techniques)
- Administrative-level experience with Windows and macOS

Will be plus:

- Experience with IdP solutions (JumpCloud, Okta, Azure AD)
- Basic scripting skills (Python, Bash, or PowerShell) for automation
- Experience participating in threat hunting activities
- Understanding of security standards and frameworks (ISO 27001, PCI DSS, SOC 2)
- Cybersecurity-related certifications

Soft Skills:

- Ability to independently investigate incidents and make decisions
- Ability to handle large volumes of alerts and effectively prioritize tasks
- Strong communication skills with SOC, IT, and cross-functional teams
- Attention to detail and a structured, analytical mindset

Responsibilities:
- Endpoint Security
- Ensure 100% endpoint coverage with security agents (EDR/AV, MDM, IdP)
- Manage and optimize EDR policies
- Implement and maintain secure baseline configurations for endpoint devices
- Manage device security policies via MDM
- Control software inventory on corporate devices
- Manage agent versions, ensuring timely updates and lifecycle (EOL) control
- Monitor patch compliance and prepare reporting across teams

Monitoring, Incident Response & Threat Hunting
- Integrate EDR, MDM, and IdP with SIEM, ensuring complete and reliable telemetry ingestion
- Participate in threat hunting activities to identify endpoint-level threats
- Investigate and respond to endpoint security incidents
- Collect and analyze forensic artifacts
- Participate in post-mortem analysis and define corrective actions

- Compliance & Audit
- Develop and maintain endpoint security policies
- Conduct regular audits and remediate out-of-compliance devices
- Ensure endpoint security posture aligns with current standards and regulatory requirements

Our benefits to you:

☘️An exciting and challenging job in a fast-growing business group, the opportunity to be part of a multicultural team of top professionals in Development, Architecture, Management, Operations, Marketing, Legal, Finance and more

🤝🏻Great working atmosphere with passionate experts and leaders, sharing a friendly culture and a success-driven mindset is guaranteed

🧑🏻‍💻Modern corporate equipment based on macOS or Windows and additional equipment are provided

🏖Paid vacations, sick leave, personal events days, days off

💵Referral program — enjoy cooperation with your colleagues and get the bonus

📚Educational programs: regular internal training sessions, compensation for external education, attendance of specialized global conferences

🎯Rewards program for mentoring and coaching colleagues

🗣Free internal English courses

✈️In-house Travel Service

🦄Multiple internal activities: online platform for employees with quests, gamification, presents and news, clubs for movie / book / pets lovers and more

🎳Other benefits could be added based on your location

About the Role

We are looking for a highly skilled and strategic Senior DevSecOps Engineer to lead our security operations and infrastructure automation initiatives. In this role, you will bridge the gap between development, security, and operations, ensuring our on-premise environment remains secure, resilient, and efficient.
You will act as a subject matter expert, leveraging cutting-edge tools like CrowdStrike to automate threat detection and response, while maintaining robust perimeter security via Cloudflare.

Key Responsibilities
Implementation and automation of security tools in the CI/CD process (SAST, DAST, SCA).
Analysis of vulnerabilities in code, infrastructure and containers.
Development and configuration of security monitoring systems, incident response.
Monitoring and improving the security level of on-prem infrastructures.
Interaction with developers, DevOps and security teams to implement secure practices.
Active participation in the processes of IAM configuration, management of certificates, secrets and access policies.
Conducting internal security audits, participation in external (e.g. penetration) tests.

Requirements

Must-have:
Experience: 5+ years of experience in DevSecOps, Security Engineering, or a related field, with at least 2 years in a Senior role.
Tooling Expertise: Deep hands-on experience with the following specific tools:
Baremetal/on-premise infrastructure
Docker (Docker Swarm is a strong plus)
Gitlab CI 
CrowdStrike
Cloudflare
ELK.
SIEM Proficiency: Proven experience deploying and tuning SIEM solutions (e.g., Splunk, Elastic Security, Datadog, or similar).
Infrastructure: Strong background in managing on-premise infrastructure (physical servers, data centers, virtualization, networking).
Scripting: Proficiency in Python, Go, or Bash for automation and tooling.

Nice-to-have:
Experience with Kubernetes and such tools as Wiz.io and Torq.
Previous involvement in high-load, regulated, or 24/7 production environments (e.g., iGaming, FinTech, telecom or similar).

We offer
Fully remote work opportunity
Enhanced leave benefits:
20 days of paid vacation
5 paid days off
14 paid sick leaves
Company clubs & communities
Celebration gifts for personal milestones
Corporate online events, raffles & challenges
Corporate English program
Corporate yoga classes
Team-building activities
Coworking compensation
Training and development programs (internal & external).

Come Back Agency supports US software and technology companies by running their hiring process. We work with delivery and leadership teams to define roles, screen candidates, and manage interviews. Successful candidates are hired directly by the company and become part of its team.

This position is with a US-based software company providing custom development and AI implementation for North American clients. The team builds and maintains production software, including AI-enabled systems, and works in long-term client engagements. Team members operate as part of an internal, distributed team and collaborate directly with client stakeholders.

About the role

The company is moving deeper into enterprise work. We need a DevOps engineer who can help harden our infrastructure, implement security best practices, and drive compliance readiness so we can pass enterprise vendor reviews and pursue certifications like SOC 2 and ISO 27001. You will work closely with engineering and leadership across infrastructure, security, and compliance.

What you will do:

• Build and maintain secure cloud infrastructure and CI/CD pipelines
• Implement access control, least privilege, and secrets management across environments
• Standardize logging, monitoring, alerting, and audit trails
• Create and maintain secure SDLC practices, including code scanning, dependency scanning, and change control
• Set up incident response basics, including runbooks, on-call expectations, and post-incident process
• Compliance readiness for SOC 2 and ISO 27001 by implementing required technical controls and gathering evidence
• Vulnerability management and patching routines for infrastructure and dependencies
• Improve backup, disaster recovery, and business continuity practices
• Support client security questionnaires with clear technical answers and evidence

Requirements:

• Up to 2 years of DevOps experience with cloud infrastructure and deployment pipelines
• Hands-on experience with AWS, including IAM, networking, compute, and logging services
• Experience with Infrastructure as Code such as Terraform
• Experience with containerization and orchestration, Docker and Kubernetes preferred
• Comfort setting up security tooling, SAST, DAST, dependency scanning, secret scanning
• Ability to document systems clearly and work with auditors or compliance tools when needed
• English at B2 level or higher - you will collaborate directly with US client stakeholders

Nice to have:

• SOC 2 or ISO 27001 experience, even if you were the technical owner not the compliance PM
• Experience with Vanta, Drata, Secureframe, or similar evidence automation tools
• Experience working with HIPAA or other regulated client environments
• AWS certifications such as Solutions Architect or Security Specialty

What We Offer:

• Working hours aligned with US time zones, typically 16:00-23:59 Kyiv time
• English lessons to support clear and confident communication
• Paid vacation and sick days
• Fully remote work
• Opportunities for professional growth within the team
• Structured, personalized onboarding to help you ramp up effectively

Apply with your resume and a short note outlining your relevant experience. You can also submit it through our website at comeback.ua. Selected candidates will be contacted by Come Back Agency.

We are looking for a  DevSecOps Engineer to join our team and help maintain and improve a secure cloud infrastructure on AWS. Our applications run on Kubernetes (EKS), Cloudflare is used for edge protection, and Wazuh serves as our SIEM / HIDS platform.
 

This role is suited for an engineer with hands-on experience who will work within an existing architecture and established best practices, rather than owning the full system design.

Requirements:
AWS / Cloud

• 2+ years of commercial experience with AWS;
• Hands-on experience with EKS or other managed Kubernetes platforms;
• Basic understanding of IAM, VPC, Security Groups, and CloudWatch.

Kubernetes / Containers

• Experience with Kubernetes (deployments, services, ingress);
• Understanding of Kubernetes RBAC (ability to apply and maintain existing policies);
• Experience with Docker (building and running containers).

Security / Monitoring

• Experience with Wazuh or other SIEM / security monitoring solutions;
• Understanding of logging, alerting, and basic HIDS principles;
• Hands-on experience with Cloudflare (DNS, basic WAF configuration).

DevOps / Automation

• Experience with CI/CD tools (GitLab CI, GitHub Actions);
• Infrastructure as Code: Terraform;
• Bash or Python for basic automation tasks.

Networking

• Understanding of HTTP/S, DNS, and TLS;
• Basic knowledge of cloud networking concepts.

Responsibilities:

• Maintain and enhance CI/CD pipelines with integrated security checks;
• Support and operate Kubernetes clusters (AWS EKS);
• Configure and maintain Wazuh (agents, basic rules, alerts, dashboards);
• Support and optimize Cloudflare services (DNS, basic WAF rules, rate limiting);
• Deploy and update infrastructure using IaC (Terraform / CloudFormation);
• Manage access controls (AWS IAM, Kubernetes RBAC);
• Monitor logs and security alerts and participate in incident response;
• Apply basic hardening practices for containers and EKS nodes;
• Collaborate with development teams to ensure secure application deployments;
• Configure infrastructure according to CIS benchmarks.

Nice to Have:

• Experience with security scanning tools (Burp, Snyk, kube-bench);
• Familiarity with AWS Security Hub or GuardDuty;
• Basic understanding of Zero Trust principles;
• Experience with multi-account AWS environments;
• Exposure to security policies or compliance controls;
• Experience with ELK Stack.
   

What We Offer:

• Work in a team with established processes and mentoring;
• Clear growth path toward a Senior DevSecOps Engineer role;
• Modern cloud-native technology stack (AWS, Kubernetes, Terraform);
• Flexible work format (remote / hybrid);
• Competitive compensation based on experience

Playtech‘s Security unit is looking for Security Operations Engineer with excellent communication and problem-solving skills.

Your influential mission. You will...

• Support, maintain and operate security infrastructure and technologies used by SOC and make recommendations to enhance threat detection
• Build up and improve real-time security monitoring and incident response framework and playbooks
• Develop security detection use cases, tune signatures and refine analytical models in order to identify malicious activity
• Maintain, tune and troubleshoot SIEM Solution to deliver optimal performance and best detection and investigation capabilities
• Identify new data sources and integrate them into monitoring operations
• Evaluate and implement new information security tools and technologies in support of SOC needs
• Provide analysis and trending of security events, alarms, and information from a large number of heterogeneous security devices and critical environments
• Participate in knowledge sharing with other analysts and improve incident response documentation
• Provide Incident Response (IR) investigation, support and triage to security alerts

Components for success. You...

• Should have 2+ years of experience in a technical environment in the role of Security Operations Engineer/Security Engineer/SRE/DevOps
• Must have ability to identifies and develop workflow automation to lower response time and eliminate lengthy response times
• Display good knowledge of Information Security, IT and Networking principles
• Must have ability to demonstrate a deep understanding of cyber security monitoring platforms such as intrusion detection systems (IDS), Endpoint Protection, Web proxies, firewalls, EDR, UEBA, CASB
• Must have solid organizational skills including attention to detail and multitasking skills.
• Should have great written & spoken English.
• Have experience with Linux, Docker

You'll get extra points for...

• Basic knowledge of AWS, GIT, CI/CD

Thrive in a culture that values...

• Possibility to work with a product company
• Personalised professional growth
• Warm and friendly attitude to every specialist
• Educational possibilities
• Competitive salary and benefits
• Medical insurance
• Fully-equipped cosy office space located in the city centre (Gulliver, “Palats Sportu” metro station)
• Paid vacation days, sick leaves and national holidays
• Corporate events and team buildings

SECURITY TEAM

The Security Team is a dynamic and forward‑thinking unit responsible for building, improving, and safeguarding Playtech’s global infrastructure. We work across the organization to ensure secure, reliable, and resilient systems.

Joining the Security Unit means tackling complex challenges, working with modern technologies, and continuously strengthening your security expertise within one of the industry’s most trusted and respected companies.

Playtech is an equal opportunities employer. Our mission is to welcome everyone and create inclusive teams. We celebrate differences and encourage everyone to join us and be themselves at work.

Who We Are 
 

At Digital Shelf by NIQ, we’re passionate about technological innovation and excellence in cybersecurity. Our cutting-edge solutions enable us to scrape data for 12 billion products and manage over 20 billion data points. In a market where anti‑bot technologies represent a $10B industry in constant evolution and consolidation, our dedicated teams tackle real‑world challenges with precision and creativity. 
 

What You’ll Do 
 

• Reverse Engineering & Decompilation: 
  Analyze web and mobile applications (APK/IPA) to uncover hidden mechanisms. Disassemble code to understand its inner workings, with a focus on cryptographic functions that secure our systems. 
• Overcoming Anti‑Bot Mechanisms: 
  Evaluate and bypass advanced security protocols such as TLS, HTTP/2, HTTP/3, WebSockets, DoH, and session management. Identify vulnerabilities to enhance our data extraction methods. 
• Developing Custom Tools: 
  Build robust Python scripts and frameworks that automate bypass procedures and dynamically adjust security measures, whether by modifying TLS stacks or patching JavaScript on the fly. 
• Implementing Stealthy Scraping Techniques: 
  Engineer sophisticated methods such as browser patching, headless browser evasion, proxy tunneling, and human‑behavior emulation to keep our operations discreet. 
• Continuous Innovation: 
  Regularly test, disrupt, and improve our tools to stay ahead of ever‑evolving defenses. 

Your Profile 
 

• P45510n4t3 C0d3 W4rr10r: 
  You thrive on pushing systems to their limits while upholding the highest ethical standards. R3v3rs3 3ng1n33r1ng isn’t just a skill it’s your creative playground. 
• R3v3rs3 3ng1n33r1ng Expertise: 
  Whether using tools like IDA Pro, Ghidra, or your own custom-built solutions, you excel at dissecting both binary and web code to uncover core functionalities. 
• W3b & N3tw0rk Pr0t0c0l Savant: 
  You possess deep expertise in pr0t0c0ls such as TLS, HTTP/2, WebSockets, DoH, and more, leveraging that knowledge to find innovative solutions. 
• Advanced Python Developer: 
  Your coding abilities go far beyond basic scripting. We're looking for a coder, someone who can design and implement robust, efficient solutions for complex challenges. 
• Collaborative Innovator: 
  While you excel as an independent problem-solver, you also thrive in a dynamic team environment that values open communication and continuous learning. 

How to Apply 
 

If you’re a dedicated code warrior with a passion for dissecting and rebuilding intricate systems and you consistently deliver high‑quality, efficient code, send us your resume.

What we offer

Direct contract with the USA
Flexible work hours and remote work

20 business days of paid vacation
Flexible days off

Maternity/Paternity leaves

Medical insurance 

Join Digital Shelf by NIQ and help us reshape the digital frontier. 

This position is open exclusively for Ukrainian residents within Ukraine (preferably Kyiv or Lviv).
 

We are looking for a Cryptography engineer with software engineering experience to join our team and work with us on mission-critical systems. If you are interested in applied cryptography, modern math and application security, this may be the position for you!
 

Responsibilities:

• Work as part of cryptographic research and development team.
• Analyse modern applied cryptography structures and algorithms, participate in the analysis of their security, and adapt them for our software needs.
• Participate in the code review of someone else’s cryptographic code (it’s fun!).
• Design, write, test, implement, wrap, debug code that implements certain mathematical and cryptographic constructions for mission-critical systems.
• Write code, write tests, read cryptographic papers, write specs, discuss cryptography, jump on calls, draw diagrams on the board.
   

Requirements:

We’re looking for people who fit one of two profiles, both are equally welcome:

• Cryptography-first — strong theoretical foundation in cryptography and mathematics, with enough software engineering experience to build and ship real systems (or the drive to develop it).
• Engineering-first — strong software engineering background (systems, protocols, or application development) with some cryptography fundamentals and the appetite to go deeper into the theory.

In either case, we expect:

• Experience with at least one general-purpose programming language (preferably Rust, Go or Python) and readiness to learn Rust.
• Solid knowledge of modern systems, including how protocols operate within the real-world stack (from the network level to operating systems, web services, and client applications).
• Good understanding of cryptography basics (hash functions, signature, symmetric encryption, asymmetric encryption, ECC, DH).
• Comfort with mathematical reasoning and the ability to read technical literature. You will need to work with modern math, and modern algorithms often, and your colleagues will use academic language with you.
   

Nice to have:

• Good knowledge of applied cryptography, and / or formal education in this area and knowledge of the underlying mathematics.
• A general overview of programming languages will be a big plus.
• An overall understanding of what information security is, how real-world risks and threats affect the choice of security controls and cryptographic structures, where cryptography needs to be supported by other security controls, what zero trust architecture is, and why AES-CBC is a questionable choice.
• An understanding how modern blockchains work with transaction privacy, what primitives are used, multi-signature protocols, consensus.
• General understanding of modern applied cryptography: HPKE, key wrapping, CT on Merkle trees, the problem of searching in encrypted data.
   

Our hiring process:

• Resume review — up to 5 business days
• Test task — estimated time 4-6 hours
• Introductory meeting
• Technical interview
• Offer discussion
   

What’s in it for you?

• A sense of meaning and responsibility for those who seek purpose — we’re building “invisible texture of modern civilisation” — bits of infrastructure finance, power grids, healthcare rely on, and we are trusted with very challenging aspects of it.
• Competitive compensation with a flexible bonus scheme.
• Hybrid work model: this position allows for a combination of in-office and remote work as needed.
• UK, EU and USA clients.
• Working at the crossroads of ML security, cryptographic protocol support, hardware protection, reverse-resilient mobile app development, and securing web apps for millions of users.
• Public track record in the open-source aspect of our products.
• Personalised mentorship and formal personal development plans, together with conferences, books, courses — we encourage learning and sharing with the community. Our team members share a lot in talks, workshops, and blog posts.
• Paid vacation — 21 business days per year.
• Paid sick leaves.