Jobs

Iterasec works with clients worldwide, helping them find vulnerabilities and secure their products. Our projects range from mobile/web applications to complex modern cloud and automotive stacks. We work with both small product companies as well as Fortune 500 enterprises.

We are looking for a talented and motivated Junior Pentester who will join our security team to work on penetration testing and vulnerability/cloud security assessment projects.

We expect a short motivation letter where you can explain your skills, achievements and motivation.

Required skills

- Solid non-commercial cybersecurity experience, such as HTB/THM

- Junior-level cybersecurity certifications would be a plus.

- Comfortable with basic application security testing and common vulnerabilities (like OWASP Top 10, CWE Top 25) and cybersecurity fundamentals

- Strong basic IT skills: Linux, networking (TCP/IP, DNS, HTTP etc.)

- Some experience in scripting/coding languages, such as Java, JS, Python, Shell, etc.

- Strong drive to learn and develop cybersecurity skills

- Technical English (Intermediate)

We offer

- Good salary + bonus system

- Rewarding environment: brilliant team ready to share knowledge and collaborate

- Support in obtaining professional certifications, such as BSCP, OSCP, eWPTX, cloud certifications, etc.

- Courses and conferences which are relevant to the position are sponsored by the company.

- We are a remote-first company with full WFH support and a flexible work schedule.

Responsibilities

- Execute penetration tests and security assessments as part of a team, including internal/external networks, web and mobile applications, Windows and Linux environments, cloud architectures, IoT devices, and more

- Create assessment documentation and reports, clearly identifying vulnerabilities and associated remediation steps

- Conduct security research

Iterasec works with clients worldwide, helping them find vulnerabilities and secure their products. Our projects range from mobile/web applications to complex modern cloud and automotive stacks. We work with both small product companies as well as Fortune 500 enterprises.

We are looking for a Middle/Senior Security Consultant / Penetration tester to work on and lead penetration testing and vulnerability/cloud security assessment projects.

In this role, you will work on technically challenging projects and also spend some time leading/mentoring our junior pentesting colleagues.

Required skills

- 1.5+ years of intensive commercial experience

- OSCP, eWPTx2 or similar would be a plus

- Scripting/coding skills and being comfortable with advanced pentesting tooling

- Strong knowledge of mobile/web security

- Comfortable with cloud and container security

- Basic RE skills

- Ability to mentor/lead colleagues

- Strong ability and drive to learn and develop cybersecurity skills

- Technical English (Intermediate+)

We offer

- Good salary + bonus system

- Diverse project portfolio and technologies to work with

- Rewarding environment: brilliant team ready to share knowledge and collaborate

- Courses and conferences which are relevant to the position are sponsored by the company.

- We are a remote-first company with full WFH support and a flexible work schedule.

Responsibilities

- Participate in various pentesting projects

- Lead junior colleagues

- Perform threat modeling in pentesting and security assessment projects

- Create assessment documentation and reports, clearly identifying vulnerabilities and associated remediation steps

- Consult clients on efficient issues remediation

- Conduct security researches

- Develop tools and scripts to automate and improve current pentesting processes

SOFTPROM VAD distrtibutor is looking for IT security engineer in Warsaw office.

Requirements:

• Experience in installation, administration and technical supporting of security solutions on windows and Linux

• Experience on the position of security/network engineer more than 2 years

• Experience in installation, administration and technical supporting of security solutions on windows and linux

• Knowledge of security technology Network Monitoring, Privileged Account Management, Endpoint Detection and Response

• Working with widespread information systems based on virtualization technology

• Strong presentation, business communication and interpersonal skills

• Strong knowledge of network technology

• Knowledge of English to reading technical documentation and higher

• Polish language C2

Desired skills:

• Experience in Unix-like environments

• Experience in installation, administration and supporting of SIEM solutions, SOAR, Attack Surface Management

• Deep understanding of networking

• Understanding of regular expressions

Responsibilities:

• Preparing and delivering customer presentations, demonstrations and webinars of the software

• PoC providing

• Delivering of technical courses

• Technical consulting

• Writing the project documentation

• Supporting of demo environment

Working conditions:

• 3 month probationary period

• Fix + bonuses

• B2B Contract with the Austrian company

• work from home office

Pine Software Technology Ltd is a software company specializing in trading technology solutions for regulated brokers and trading firms. The company provides Software-as-a-Service (SaaS) products designed to support electronic trading, brokerage operations, risk management, and financial data analysis.

We are seeking an experienced Senior Security Engineer with a strong background in application, infrastructure, and cloud security to help us protect and scale our trading technology platform.

Responsibilities:

• Ensure secure SDLC practices: threat modeling, SAST/DAST/IAST, code reviews, secret management;
• Integrate security into CI/CD pipelines and support DevSecOps implementation;
• Design API security and infrastructure controls, including VPN, WAF, DNS proxy, and DDoS protection;
• Harden cloud environments (GCP) and Kubernetes clusters with policies, scanning, and access control;
• Manage IAM/PAM lifecycles with SSO, MFA, RBAC, OIDC, and LDAP integrations;
• Conduct vulnerability assessments, misconfiguration monitoring, and patch coordination;
• Monitor security events, analyze logs/threat intel, and improve SIEM/EDR coverage;
• Define security policies and procedures, and support internal/external audits;
• Perform penetration testing and red teaming on applications and infrastructure;
• Implement data protection measures: encryption, DLP, secure key storage, and privacy compliance;

Job requirements

• 7+ years of professional experience in cybersecurity, with a strong focus on application, infrastructure, and/or cloud security;
• Strong knowledge of application security principles and secure development practices (e.g., threat modeling, code review, DevSecOps);
• Practical experience with cloud platforms, including identity, networking, and workload security;
• Familiarity with Kubernetes security concepts, tools (e.g., OPA, Falco, Kyverno), and best practices;
• Experience with authentication/authorization protocols and tools: SAML, OIDC, OAuth2, LDAP, MFA, SSO;
• Understanding of common vulnerabilities and experience in vulnerability management and remediation;
• Experience with penetration testing methodologies and tools;
• Solid understanding of network protocols, firewalls, VPN, WAF, and API security mechanisms;
• Hands-on experience with monitoring and detection tools;
• Knowledge of security frameworks and standards;
• Experience participating in or leading internal/external security audits and risk assessments;
• Ability to write clear policies, procedures, and documentation;
• Experience with privacy regulations.

‍

Would be a plus

• High-Frequency Trading or other low-latency systems background;
• Experience in FinTech is a plus;
• Familiarity with Cloudflare services and configuration is a plus.

Company offers

• Care from Day One — medical insurance immediately upon starting work, including dental care, massage and professional psychological support because your well-being matters
• Work-Life Balance — 25 days of paid vacation + 30 days of sick leave, so you can recover without unnecessary stress
• Investment in your energy — partial reimbursement for any sports activities that empowers you.
• Growth — partial coverage for English or Ukrainian language courses + a fixed budget for professional development. Choose what suits you best!
• Knowledge Library — books in the office and access to the Kuka online library to learn, grow, and find inspiration.
• Island Relaxation 14 days a year — enjoy a getaway at the corporate villa in Cyprus.

• Modern Office in Larnaca — a stylish space for inspiration: open areas, cozy lounges, and functional meeting rooms — all for your comfort.

   

Join the Pine Software team, where your talents and aspirations will be recognized! We offer a dynamic work environment, opportunities for professional growth, and support at every step of your career path. Start your journey to success with us—apply today and take the first step towards your bright future!

Pine Software is an equal opportunity employer. We encourage applications from candidates of all backgrounds and experiences. Please note, that only shortlisted candidates will be contacted. Thank you for considering Pine as your next career move!

About the Opportunity

The Dayforce Product Security team is responsible for the security of Dayforce products. We enhance product security by finding, fixing, and preventing security flaws across the Dayforce family of products, including Dayforce, Dayforce Wallet, and others.

We build the tooling and run the programs that improve the security of our people-first cloud platform. Beyond simply pointing out issues, we solve problems through close partnership with Product, Development, and CloudOps teams.

As such, we are looking for a Principal Cloud Security Architect with strong technical and leadership skills, a background in public cloud and infrastructure security, and a bias for automation. A passion for solving complex cloud security challenges in a fast-moving, agile environment is essential. The ideal candidate is comfortable working across the company and enjoys finding innovative ways to mitigate risk while protecting the data of more than five million users of Dayforce products.

Responsibilities

Strategic Leadership

• Provide strategic leadership and vision for the cloud security architecture, ensuring alignment with business and technology strategy.
• Lead the development and execution of a comprehensive multi-cloud (Azure primary; AWS in scope) security strategy.

Cloud Security Blueprint

• Own the definition and implementation of the cloud security blueprint—standardized landing zones, identity and access patterns, network segmentation, encryption standards, logging/monitoring baselines, and guardrails.
• Maintain an architecture framework that addresses current and emerging threats.

Governance and Compliance

• Oversee cloud governance and technical compliance design and enforcement (Azure and AWS).
• Ensure services comply with industry standards, regulations, and best practices by implementing policy-as-code (e.g., Azure Policy, AWS Organizations/SCPs) and continuous monitoring and auditing.

Security SME

• Act as the security subject matter expert for cloud and SaaS environments, owning the identification and remediation of security deficiencies.
• Drive maturity beyond compliance by leading threat modeling, control selection, and risk decisions for cloud workloads.

Automation and Tooling

• Design, build, and maintain automated guardrails and template configurations using Terraform and Bicep.
• Implement drift detection and auto-remediation pipelines; integrate controls into CI/CD to consistently enforce secure defaults.

Best Practices and Guidance

• Create and deliver best-practice recommendations, reference architectures, guidance, sample code, and technical presentations.
• Publish high-quality security documentation and enablement materials for engineering and operations teams.

Collaboration and Partnership

• Partner closely with Product, Development, SRE, and CloudOps to refine cloud security capabilities through collaborative roadmaps, design reviews, and reusable templates/modules.
• Build strong relationships with stakeholders to drive adoption.

Security Specifications

• Define high-level and detailed security specifications for identity, secrets and key management, data protection, network security, logging/telemetry, and incident response in the cloud.
• Ensure security is integrated into the design of all cloud solutions.

DevSecOps Enablement

• “Shift left” common security tasks by integrating scanning, testing, and policy checks into developer workflows and pipelines (containers, IaC, secrets, dependencies).
• Promote image signing/provenance and SBOM practices for cloud workloads.

Service Catalog Contribution

• Contribute secure, compliant cloud-native modules and patterns to the internal service catalog (e.g., hardened Terraform/Bicep modules, reference repos).
• Ensure services are reviewed regularly and updated for new threats and controls.

Security Controls Implementation

• Collaborate with engineering and operations to implement and automate cloud security controls and processes (e.g., CSPM/CNAPP, CIEM, KMS/Key Vault, WAF, endpoint and container protections, SIEM integration).
• Develop and maintain cloud-native monitoring and reporting solutions.

Culture and Training

• Foster a security-first culture by partnering with engineering teams to balance performance, reliability, cost, and security.
• Develop and deliver training to raise awareness of cloud security best practices and paved-road adoption.

Qualifications

• Bachelor’s Degree in Computer Science, Information Technology, Cybersecurity, or equivalent experience.
• 10+ years of experience in software development, DevOps, or technical cybersecurity roles, with a strong emphasis on cloud security.
• 5+ years in a senior Security Engineering or cloud DevOps role.
• Extensive experience in Azure and AWS, including security of cloud-native applications and services.
• Deep expertise in infrastructure-as-code security, including Terraform and Bicep (ARM experience a plus).
• Proven track record of partnering with software engineering organizations to influence design and drive secure adoption.
• Experience working in a diverse global organization.
• Proficiency in programming/scripting such as Python, PowerShell, and Bash (Go a plus).
• Expertise in Kubernetes and container security (admission controls, image scanning, secrets management).
• Comprehensive knowledge of microservices architectures and cloud networking.
• Strong knowledge of enterprise architecture concepts and tools.
• In-depth understanding of cloud architecture and how applications/data are managed and secured in the cloud, including hybrid integration patterns.
• Expertise with Azure & AWS security services, Docker, and Kubernetes.
• Minimum of 3 years operating in compliant environments such as PCI DSS (v4.0), ISO/IEC 27001:2022, SOC 2, HITRUST, FedRAMP, or similarly regulated industries.

Preferred Qualifications

• Advanced security certifications such as CISSP, GSEC, Azure Solutions Architect, Azure Security Engineer/Technologies, and/or AWS Security Specialty.
• Significant DevOps experience with infrastructure, cloud, and application pipelines (GitHub/GitLab/Azure DevOps).
• Experience running operational teams and managing large-scale security programs/projects.
• Strong leadership and team management skills with the ability to inspire and motivate others.
• Excellent communication and interpersonal skills, with the ability to effectively communicate complex security concepts to both technical and non-technical audiences.

We’re hiring a DevSecOps Engineer who thrives in fast-moving environments, understands
technical depth, and can independently own security across multiple areas — from architecture and infrastructure to monitoring and investigations.
You’ll be joining a lean team with serious responsibilities — context switching and high autonomy are part of the job. The role is ideal for someone who prefers deep thinking over surface-level “best practices”.
You’ll play a key role in securing our systems and eventually take ownership of technical implementation and decision-making.
We are building a range of products — from an advanced crypto payment solution evolving into a full blockchain ecosystem with real-world impact, to a comprehensive platform featuring its own blockchain, non-custodial wallet, and stablecoin protocol designed for diverse use cases.

Requirements

• Solid hands-on experience with Kubernetes
• Strong understanding of networking principles and ability to troubleshoot/configure network layers
• Familiarity with bare-metal infrastructure
• Proactive mindset, ability to identify and resolve potential issues before they escalate
• Understanding of base-level security policies and practices
   

Would be a plus

• Interest or background in Web3 technologies
• Knowledge of cryptographic principles
• Experience in defining and managing security policies
• Ability to independently audit infrastructure
• Familiarity with DevSecOps methodologies
• In-depth knowledge of networking principles
   

Responsibilities

• Build and maintain secure development and delivery pipelines
• Define and enforce access boundaries, response processes, and security policies
• Detect and prevent data leaks, monitor logs, and investigate anomalies
• Contribute to architecture and infrastructure decisions with a security-first mindset
• Analyze incidents, model threats, and assess risks end-to-end

• Context-switch rapidly while maintaining focus and ownership

   

We offer

• Competitive compensation
• Social package (24 working days of annual leave, 5 paid sick days)
• Flexible working hours
• Challenging projects in diverse business domains and a variety of tech stacks
• Personal development and professional growth opportunities
• Work with talented, ambitious and family-feel teams
• Educational possibilities: corporate courses, knowledge hubs, and in-house English classes
• Compensation for your professional certification & support for your learning activities
• Opportunity to choose IT equipment you like
• Corporate social responsibility

GR8 Tech is a leading B2B provider of iGaming solutions that empowers operators to grow, lead, and win.

We deliver high-impact, full-cycle tech solutions designed to scale. From seamless integration and expert consulting to long-term operational support, our platform powers millions of active players and drives real business growth. It’s more than just a product — it’s the iGaming Platform for Champions, built for those who play to lead.

We know the game and how to take it to the next level. With 1000+ talented professionals on board, we don't just build tech — we build success stories for iGaming operators all over the world. 

Our ambition drives us, our people make it real. Join us and be part of building champion-level success!

What You’ll Be Driving:

• Participating in the improvement and development of automated access management processes. Proposing and implementing changes to optimise the access management service;
• Adding new systems and keeping existing systems up to date in Access Flow. Updating the list of roles, sub-roles, and any other entities managing rights in the service. Taking part in the improvement of Access Flow. Approving of access according to the SLA;
• Processing requests for granting/changing/removing access in compliance with the SLA timeframe;
• Ensuring a high level of customer satisfaction with the process of processing access tickets;

• Describing and updating the role model in services. Developing and implementing procedures in the Company in the field of access rights management.

   

What Makes You a GR8 Fit:

• 1+ year of experience as an IT security specialist/engineer;
• Strong understanding of access control principles, authentication methods and security technologies;
• Proficiency in access management tools and technologies, such as identity and access management (IAM) systems, directory services (e.g., Active Directory), and privileged access management (PAM) solutions;
• Excellent verbal and written communication skills are essential for interacting with users, stakeholders, and team members effectively. The ability to explain technical concepts in non-technical terms is valuable;
• Good analytical skills are required to evaluate access rights, analyse the role model in systems and identify inconsistencies in access rights;
• Attention to detail is crucial for audits and detection of access anomalies;

• The ability to collaborate with team members and communicate with members of other teams to achieve shared success.

   

Why You’ll Love Working Here:

Benefits Cafeteria

An annual fixed budget that you can use based on your needs and lifestyle. You decide how to allocate it:

• Sports – gym, yoga, or any activity to keep you active;
• Medical – insurance and wellness services;
• Mental health– therapy or coaching support;
• Home office – ergonomic furniture, gadgets, and tools;
• Languages – courses to improve or learn new skills.

Work-life 

• Parental support with paid maternity/paternity leave and monthly childcare allowance;
• 20+ vacation days, unlimited sick leave, and emergency time off;
• Remote-first setup with full tech support and coworking compensation;
• Regular team events – online, offline, and offsite;

• Learning culture with internal courses, career development programs, and real growth opportunities.

   

Our Culture & Core Values

GR8 Tech culture is how we win. Behind every bold idea and breakthrough is a foundation of trust, ownership, and a growth mindset. We move fast, stay curious, and always keep it real, with open feedback, room to experiment, and a team that’s got your back.

• FUELLED BY TRUST: we’re open, honest, and have each other’s backs;
• OWN YOUR GAME: we take initiative and own what we do;
• ACCELER8: we move fast, focus smart, and keep it simple;
• CHALLENGE ACCEPTED: we grow through challenges and stay curious;

• BULLETPROOF: we’re resilient, ready, and always have a plan.

   

To keep things efficient, please apply only for roles that closely match your experience.

We are seeking a Senior Information Security Consultant / IT Audit Manager to join our TechMagic team. You will work on a diverse portfolio of clients, providing expert guidance on their security and compliance journeys. This is a full-time, remote position, and we are looking for a highly skilled professional with a strong background in GRC and IT audit.

Must have

• Experience: 4–7+ years in GRC, IT audit, or compliance, with a proven track record of successfully completing at least two end-to-end ISO 27001 and/or SOC 2 programs.
• Primary Stack: Deep expertise in ISO/IEC 27001:2022, SOC 2, NIST CSF 2.0, and OWASP ASVS/SAMM/DSOMM.
• Cloud & Compliance: Strong knowledge of cloud security best practices on AWS/Azure/GCP and a solid understanding of HITRUST, GDPR, and HIPAA.
• Tools: Hands-on experience with GRC platforms like Drata, Vanta, or Secureframe.
• English: Upper-Intermediate or Advanced level proficiency.

Will be a plus

• Certifications: ISO 27001 Lead Implementer/Lead Auditor, CISSP, CISM, or CISA.
• Regulatory Knowledge: Familiarity with Microsoft SSPA/DPR and NIS2/DORA.
• Security Operations: Exposure to SIEM/SOC (e.g., Microsoft Sentinel).
• Domain Experience: Prior experience in the fintech or healthcare industries.

Responsibilities

• Lead GRC Engagements: You will manage end-to-end ISO 27001, SOC 2, and HITRUST readiness projects. This includes everything from gap assessments and risk analysis to coaching clients on implementation and providing support during external audits.
• Act as a vCISO: Serve as a fractional vCISO for our clients, taking ownership of their security roadmaps, risk registers, security awareness programs, and reporting to executive leadership and boards.
• Implement and Manage ISMS: Build and maintain Information Security Management Systems (ISMS), handling all aspects from policy lifecycle management and internal audits to continual improvement.
• Drive Risk Management: Conduct enterprise risk assessments and facilitate threat modeling to proactively identify and mitigate security risks.
• Consult on Core Security Practices: Advise clients on key security practices, including secure SDLC, change management, incident response, and business continuity planning, with a focus on cloud security in AWS, Azure, and GCP.

Work Schedule

Full-time working day in our Lviv or Kyiv office, (flexible hours) or full-time remote

Interview Stages

• 1st stage - call with Recruiter
• 2nd stage - Technical interview

Our Benefits

• Opportunity to improve your skills in stong technical team
• Work from anywhere (fully remotely or in our office) 
• Paid vacations and sick leaves, additional days off, relocation bonus;
• Wellness: Medical insurance/sports compensation/ health check-up+flu vaccination at your choice
• Education: regular tech talks, educational courses, paid certifications, English classes;
• Fun: own football team, budget for team lunches, branded gifts
• One of the best IT employers in Lviv based on DOU rating.

We are seeking a highly skilled DevSecOps Engineer with expertise in integrating security practices into DevOps pipelines and cloud-native environments. You will be responsible for building secure, automated CI/CD processes, implementing security controls, and ensuring compliance across infrastructure and applications. The ideal candidate has a strong background in DevOps, cloud platforms, and security engineering, with hands-on experience in securing large-scale, distributed systems.

Details:
Location: Remote in EU
Employment Type: Full-Time, B2B Contract
Start Date: ASAP
Language Requirements: Fluent English

Key Responsibilities

• Design and implement security automation in CI/CD pipelines for applications and infrastructure.
• Integrate static (SAST), dynamic (DAST), and dependency (SCA) security scanning tools.
• Collaborate with DevOps and engineering teams to ensure security best practices are embedded from design to deployment.
• Manage secrets, IAM, and encryption policies across cloud environments (AWS, Azure, GCP).
• Define and enforce compliance standards (ISO, SOC2, GDPR, HIPAA).
• Build monitoring and alerting systems for threat detection and vulnerability management.
• Implement container and Kubernetes security (runtime protection, image scanning, RBAC).
• Support penetration testing and incident response processes.
• Conduct security training and awareness for developers and operations teams.

Requirements

• 5+ years of experience in DevOps or Security Engineering, with at least 2+ years in DevSecOps.
• Strong knowledge of CI/CD tools (Jenkins, GitLab CI/CD, GitHub Actions, Azure DevOps).
• Hands-on expertise with security tools (SonarQube, Snyk, Checkmarx, Aqua, Prisma, Twistlock).
• Solid understanding of cloud platforms (AWS, Azure, GCP) and their security services.
• Experience with infrastructure-as-code (Terraform, CloudFormation, Ansible) and policy-as-code (OPA, Sentinel).
• Knowledge of containerization and orchestration security (Docker, Kubernetes).
• Familiarity with monitoring and logging tools (ELK, Prometheus, Grafana).
• Strong scripting/programming skills (Python, Bash, Go).
• Excellent problem-solving and communication skills.

Nice to Have

• Security certifications (CISSP, CISM, OSCP, CCSP, AWS/Azure/GCP Security).
• Experience with zero-trust architectures and microsegmentation.
• Familiarity with service mesh security (Istio, Linkerd).
• Knowledge of SIEM/SOAR platforms (Splunk, QRadar, Sentinel).
• Background in regulated industries (finance, healthcare, telecom).
• Contributions to security open-source projects or DevSecOps communities.

Cloudfresh ⛅️ is a Global Google Cloud Premier Partner, Zendesk Premier Partner, Asana Solutions Partner, GitLab Select Partner, Hubspot Platinum Partner, Okta Activate Partner, and Microsoft Partner.

Since 2017, we’ve been specializing in the implementation, migration, integration, audit, administration, support, and training for top-tier cloud solutions. Our products focus on cutting-edge cloud computing, advanced location and mapping, seamless collaboration from anywhere, unparalleled customer service, and innovative DevSecOps.

We’re looking for a Google Cloud Security Engineer to harden client environments across GCP. You’ll implement and help design security controls, automate guardrails, improve detection & response, and guide stakeholders through pragmatic, risk-based decisions across EMEA.

Requirements:

• 2+ years proven, hands-on experience in a Security Engineer, SecOps (or similar) role building and operating cloud security controls (GCP).
• Strong knowledge of Google Cloud architecture and native security services: Cloud IAM (least privilege, Conditions), Organization Policies, VPC / Private Service Connect, VPC Service Controls, Cloud Armor (WAF/DDoS), Security Command Center (SCC), Cloud KMS/CMEK/HSM, Secret Manager, IAP/BeyondCorp Enterprise (Context-Aware Access), Cloud Logging/Monitoring and GKE security.
• Technical certifications related to Cloud Solutions are an advantage (Google Professional Cloud Security Engineer, Professional Cloud Architect; CISSP/CCSP/ISO 27001 LI/LA a plus).
• Experience executing changes across multiple clients/verticals in EMEA/CEE with sound change control (CABs), documentation and participation in incident response/on-call.
• Excellent communication and strategic planning abilities, able to explain trade-offs, influence remediation, and drive adoption of guardrails.
• Proficient with engineering – tooling stacks: Terraform, GitHub/GitLab CI, OPA/Conftest / Policy Controller (Config Sync), Cloud Build/Deploy, Artifact Registry; comfortable with HubSpot and Asana for collaboration with account teams when needed.
• Basic scripting experience (e.g., Python, Bash, or gcloud CLI).
• Strong Plus experience with Cloudflare.
• Fluency in English.

Responsibilities:

• Design, implement, and operate security controls for GCPfor SMB & Enterprise clients across EMEA & CEE.
• Perform security audits for GCP and Google Workspace environments.
• Implement key features: Org Policies, IAM Conditions, break-glass flows, VPC design (private subnets, Cloud NAT), Private Service Connect, VPC Service Controls perimeters, Cloud Armor (WAF/MPA, rate limiting, geo/IP policies), IAP/BeyondCorp with Context-Aware Access, KMS/CMEK/HSM, Secret Manager, Confidential/Shielded VMs, Cloud IDS.
• Configure and monitor Security Command Center, audit logs, and threat protection
• Harden GKE & Workloads: private clusters, Workload Identity, Binary Authorization, Pod Security standards, NetworkPolicy, image scanning/provenance, OS patching via OS Config/VM Manager.
• Automate guardrails: Reusable Terraform modules, gated CI checks (OPA/Conftest/Policy Controller), drift detection and safe automated remediation; codify SCC mute rules and Cloud Armor policies.
• Establish logging, detection & IR: Standardize Cloud Audit Logs and Log Router sinks to CMEK log buckets; integrate to Chronicle SIEM; tune SCC (ETD/CTD/VM TD), build IR runbooks, triage incidents, and continuously improve MTTR.
• Assist clients with implementation of 2FA, DLP, and compliance controls.
• Generate security assessment reports and provide actionable recommendations.
• Collaborate with DevOps and infrastructure teams to fix vulnerabilities.
• Collaborate with ISSM: Work on maintaining ISO 27001 Security standards, performing annual networking tests.
• Continuously assess the landscape: track new GCP features (e.g., Assured Workloads, Confidential Space, reCAPTCHA Enterprise) and update baselines to improve posture, reliability, and cost efficiency.

Would be a plus:

• Experience with multi-cloud or hybrid environments
• Familiarity with Google Workspace Enterprise security features
• Basic knowledge of SIEM or zero trust architectures

Work conditions:

• Competitive Salary & Transparent Motivation: Receive a competitive base salary with performance-based bonuses, providing clear financial rewards for your success.
• Flexible Work Format: Work remotely with flexible hours, allowing you to balance your professional and personal life efficiently.
• Training with Leading Cloud Products: Access in-depth training on cutting-edge cloud solutions, enhancing your expertise and equipping you with the tools to succeed in an ever-evolving industry.
• International Collaboration: Work alongside A-players and seasoned professionals in the cloud industry. Expand your expertise by engaging with international markets across the EMEA and CEE regions.
• Vibrant Team Environment: Be part of an innovative, dynamic team that fosters both personal and professional growth, creating opportunities for you to advance in your career.
• When applying to this position, you consent to the processing of your personal data by CLOUDFRESH for the purposes necessary to conduct the recruitment process, in accordance with Regulation (EU) 2016/679 of the European Parliament and of the Council of April 27, 2016 (GDPR).
• Additionally, you agree that CLOUDFRESH may process your personal data for future recruitment processes.

PrivatBank is the largest bank in Ukraine and one of the most innovative banks around the world. It holds a leading position for all the financial indicators in the area and comprises about a quarter of the whole banking system of our country.

We are looking for an Application Security Engineer. We are searching for the person who seeks to work in a dynamic environment and shares the values of initiative, openness and mutual trust.

We are striving to find a goal-oriented and multitask professional who would be focused on making good results and high quality.

Requirements:

• At least 3 years of experience in application security or related fields such as penetration testing and security architecture
• Proficiency in using security scanners such as SAST, DAST, SCA, Secret Detection, and Container scanning
• Experience integrating security scanners in CI/CD pipelines using Jenkins for GitLab
• Certifications such as CEH, OSCP, CSSLP, AWS Certified Security Specialty, etc. is preferred
• Background in software development, including roles such as Developer, Business Analyst, Architect, DevOps, etc
• Knowledge of Secure Software Development Life Cycle (S-SDLC) and frameworks like OWASP SAMM, BSIM, and Microsoft SDL
• Familiarity with the software development process and stages
• Basic understanding of software code
• Knowledge of key infrastructure components like databases, queues, application servers, load balancers, NoSQL, etc
• Understanding of major types of vulnerabilities
• Understanding of software architecture
• Knowledge of network protocols such as DNS, HTTP/S, SMTP, SSH, and FTP
• Ability to independently research information and solve complex problems
• Critical thinking skills

Responsibilities:

• Conduct security audits using the OWASP SAMM framework to assess current practices, identify gaps, and evaluate compliance levels within the organization
• Develop and implement strategic plans aimed at enhancing security maturity levels throughout the organization, with gradual improvements
• Application security governance and metrics
• Collaborate with various team members, including developers and top management, to advocate and implement application security best practices
• Improve our application security management platform
• Manage security architecture, focusing on integrating security at every stage of the software development lifecycle
• Integrate and oversee security automation tools to enhance security processes and reduce manual error
• Oversee security testing across various stages of software development to identify and mitigate potential security vulnerabilities
• Engage in threat modeling activities to predict and neutralize potential security threats before they impact the system
• Ensure compliance with relevant industry standards and regulations by regularly updating security policies and standards
• Track and manage software defects to ensure timely resolution of security-related issues
• Develop and conduct training and awareness programs to enhance security knowledge and practices across the organization
• Spearhead the secure integration of CI/CD practices into software development processes to ensure continuous security
• Use cloud services for application security

We offer:

• Work in the largest and most innovative bank of Ukraine
• Official employment and 24 calendar days of vacation
• Sick leave compensation
• Medical Insurance
• Competitive salary
• Bonuses, premium according to company policy
• Corporate training
• Modern comfortable office
• Interesting projects, ambitious tasks and dynamic growth
• Corporate financial assistance in critical situations
• A friendly professional and strong team
• Possibility of remote work format

PrivatBank is open to support and employ veterans and people with disabilities.

We believe that discrimination due to health conditions, physical abilities, age, race and ethnicity, gender or marital status is unacceptable.

We are ready to train veterans and candidates with disabilities without banking experience.

At Balancify, we’re redefining finance to be transparent, inclusive, and built for the next generation. Banking shouldn’t feel like a black box — we make it clear, accessible, and trustworthy. Our real strength is the team: not just roles, but builders creating something meaningful together.

What you’ll do:

• Apply cloud security best practices: IAM, encryption, compliance  

• Diagnose and resolve complex infrastructure issues  

• Develop and maintain IaC with Terraform, CloudFormation, and scripts (Python, Bash, Go)  

• Drive end-to-end observability, define SLOs/error budgets, and maintain actionable dashboards  

• Manage secrets & keys (AWS KMS/Secrets Manager), automate rotation, and maintain audited access  

• Keep payment processing highly available & low-latency: capacity planning, autoscaling, load/performance testing

We’re looking for you if you:

• Have 4+ years in DevSecOps/SRE/Cloud Engineering  

• Strong AWS knowledge (IAM, VPC, KMS, Secrets Manager)  

• Experience with IaC (Terraform/CloudFormation) and automation scripting  

• Proficient in observability tools (Prometheus, Grafana, ELK, OpenTelemetry)  

• Hands-on with CI/CD, Docker/Kubernetes, and security best practices

• Analytical, proactive, and able to balance speed, security, and reliability 

Bonus points for:  

• Experience in FinTech, high-load, or regulated environments  

• Knowledge of PCI DSS, SOC2, or other compliance frameworks  

• Performance/security testing expertise

Why join us?

• Build and secure the backbone of a next-generation fintech product

• Be part of a team that values ownership, collaboration, and innovation

• Directly influence system resilience, security, and performance

• Flexible, supportive, and growth-oriented environment

🚀 Ready to keep our systems secure, scalable, and blazing fast? Apply now and join Balancify!

About the company

At Balancify, we’re redefining finance to be transparent, inclusive, and built for the next generation. Banking shouldn’t feel like a black box — we make it clear, accessible, and trustworthy.

Our real strength is the team: not just roles, but builders creating something meaningful together.

What you will do:

 • Apply cloud security best practices: IAM, encryption, compliance

 • Diagnose and resolve complex infrastructure issues

 • Develop and maintain IaC with Terraform, CloudFormation, and scripts (Python, Bash, Go)

 • Drive end-to-end observability, define SLOs/error budgets, and maintain actionable dashboards

 • Manage secrets & keys (AWS KMS/Secrets Manager), automate rotation, and maintain audited access

 • Keep payment processing highly available & low-latency: capacity planning, autoscaling, load/performance testing

We’re looking for you if you:

 • Have 5+ years in DevSecOps/SRE/Cloud Engineering

 • Strong AWS knowledge (IAM, VPC, KMS, Secrets Manager)

 • Experience with IaC (Terraform/CloudFormation) and automation scripting

 • Proficient in observability tools (Prometheus, Grafana, ELK, OpenTelemetry)

 • Hands-on with CI/CD, Docker/Kubernetes, and security best practices

 • Analytical, proactive, and able to balance speed, security, and reliability

Bonus points for:

 • Experience in FinTech, high-load, or regulated environments

 • Knowledge of PCI DSS, SOC2, or other compliance frameworks

 • Performance/security testing expertise

Why join us?

 • Build and secure the backbone of a next-generation fintech product

 • Be part of a team that values ownership, collaboration, and innovation

 • Directly influence system resilience, security, and performance

 • Flexible, supportive, and growth-oriented environment

🚀 Ready to keep our systems secure, scalable, and blazing fast? Apply now and join Balancify!

Ixilix is a technology-driven company that builds high-quality solutions and long-term partnerships. Our team is growing, and we are looking for an IT Security Engineer

Responsibilities

• Monitor and respond to security incidents using SIEM/IDS/IPS tools.
• Implement and manage vulnerability management processes and apply security patches.
• Collaborate with DevOps/Development teams to integrate security into CI/CD pipelines and cloud environments.
• Automate routine security tasks (e.g., scans, testing, asset inventory).
• Collaborate with external auditors to perform scanning, monitoring, control, and remediation of security issues.
• Develop and maintain security policies, procedures, and awareness training.

Required Skills

• Experience as a Cyber Security Engineer or a similar role.
• Experience with AWS cloud platforms.
• Knowledge in development and support of infrastructure as code (Terraform, Terragrunt).
• Experience with hardening frameworks and standards (CIS, NIST, AWS Security Best Practices, Kubernetes/EKS Hardening).
• Experience with DAST and SAST tools.
• Strong knowledge of container security (EKS, Docker), including EKS Hardening.
• Hands-on experience with common penetration testing tools (Nmap, Metasploit, Burp Suite, Aircrack-ng, SQLmap, etc.).
• Experience with SIEM, logging, and alerting systems (e.g., ELK/EFK Stack, Splunk, Datadog, Prometheus Alertmanager).
• Practical experience with OWASP — applying OWASP Top 10 in penetration testing and code reviews. 

Preferred Skills

• Experience participating in Bug Bounty programs — vulnerability discovery, validation, and reporting.
• Experience in conducting threat modeling for new and existing systems, identifying risks, and designing countermeasures.
• Experience in identifying and mitigating privilege escalation risks; access rights audits and secure IAM/sudo policy design.
• Experience with Zero Trust security principles (least privilege, continuous verification, microsegmentation).

What we offer

Rewards & Celebrations     

• Quarterly Bonus System
• Team Buildings Compensations
• Memorable Days Financial Benefit

Learning & Development    

• Annual fixed budget for personal learning 
• English Language Courses Compensation

Time Off & Leave    

• Paid Annual Leave (Vacation) - 24 working days
• Sick leave - unlimited number of days, fully covered

Wellbeing Support    

• Mental Health Support (Therapy Compensation)
• Holiday Helper Service

Workplace Tools & Assistance    

• Laptop provided by Company (after probation)

Work conditions

• Remote work from EU
• Flexible 8-hour workday, typically between 9:00 - 18:00 CET
• Five working days, Monday to Friday
• Public holidays observed according to Ukrainian legislation
• Business trips to Bratislava every 3-6 months (company provides compensation of expenses)

At Ixilix, we value transparency, trust, and ownership. We believe that great results come from people who care - about their work, their team, and the impact they create. 

Sounds like you? Let’s connect! We’re just one click away.

United Tech is looking for an engineer to strengthen our security on all levels: help us build a modern SIEM, streamline IAM with SSO/MFA, and implement centralized secret management. The goal is to identify risks before they become issues and respond quickly without unnecessary bureaucracy. This role is for a detail-oriented professional who takes pride in precision and loves when systems run cleanly and transparently. If you adapt quickly to change without compromising on quality, this combination will help you become a key player in developing our security landscape — and, over time, grow into the Head of Security role

About the company: United Tech is a global IT product company shaping the future of real-time social connection. With millions of users across North America, Europe, LATAM, and MENA, we build next-gen mobile and web apps for live-streaming and social networking. Our platforms enable connection at scale fast, interactive, and deeply engaging. The market is projected to exceed $206B by 2030, and we are already leading the evolution. Founded in Ukraine, scaling worldwide. Are you in?

In this role, you will

• Build and evolve a high-availability SIEM platform with proper event collection
• Connect key log sources (clouds, applications, infrastructure, security tools)
• Configure meaningful detections and clear dashboards aligned with real business risks
• Streamline IAM: SSO/MFA, access model, JML automation, and “breakglass” account control
• Integrate a secrets manager for convenient and secure usage across development and CI/CD

It’s all about you

• Hands-on experience with SIEM (Wazuh/ELK/OpenSearch or similar), writing rules, and working with Active Response
• Confident with Linux, networks, and log stack; solid understanding of event normalization
• Proven track record in IdP/IAM integrations (SAML/OIDC/OAuth2, SCIM, MFA/WebAuthn, RBAC/ABAC)
• Experience with secret managers (Bitwarden, Vault, or equivalents) in enterprise environments
• Passion for automation: Bash or Python, Terraform/Ansible, and cloud/security APIs
• Good understanding of MITRE ATT&CK, CIS, NIST, and PCI DSS/ISO requirements
• Experience in financial or payment environments
• Practice with EDR, WAF, cloud security services, and incident response

What we offer

Care and support: 

• 20 paid vacation days, 15 sick days, and 6 additional days off for family events
• Up to 10 additional days off for public holidays
• 100% medical insurance coverage
• Sports and equipment reimbursement
• Team building events, corporate gifts, and stylish merch
• Financial and legal support
• Position retention and support for those who join the Armed Forces of Ukraine
• Participation in social initiatives supporting Ukraine
   

Comfortable working environment:

• Work from our Kyiv hub or remotely with a flexible schedule 
• Modern equipment or depreciation of your own tools
   

Investment in your future:

• Collaborate with a highly-skilled team of Middle & Senior professionals, sharing practical cases and expertise in the social networking niche
• 70% of our heads and leads have grown into their roles here – so can you!
• Performance-oriented reviews and Individual Development Plans (IDPs)
• Reimbursement for professional courses and English classes
• Corporate library, book club, and knowledge-sharing events
   

Hiring process

• Intro call
• Technical interview
• Interview with Hiring Manager
• Polygraph
• Reference check
• Offer