Middle+/Senior Backend Engineer

About On The Spot

We bring startups and disruptive tech companies to the local market, offering engineers the opportunity to work on innovative, high-impact products. Join us and become a member of their R&D team while we take care of employment, HR support, a benefits package, and an enjoyable work environment.

About the team

Cycode is an AI‑Native Application Security Platform that secures every stage of modern software delivery. Cycode unifies code and pipeline scanning, secrets detection, supply chain security, IaC analysis, and runtime insights into one end‑to‑end solution.

‍

The platform uses AI to connect signals across the entire development lifecycle, helping teams focus on the highest-impact risks and automate remediation. ‍By integrating source control, CI/CD tools, cloud environments, and deployment pipelines, Cycode gives organizations full visibility and control over how their software is built and delivered.

‍

Take a look inside Cycode’s Warsaw team 👉 in our blog post.

‍

About the role

We’re looking for a Backend Engineer to join the team working on the next generation of Static Application Security Testing (SAST).

‍

Our core engine is written in Rust, with some parts in C#. You’ll be working alongside engineers and security experts to improve the engine’s performance, expand language support, and build out new features.

‍

Responsibilities

• Develop & optimize: Enhance and maintain the Rust-based SAST engine, ensuring high performance and reliability

• Collaborate: Work closely with the SAST team to implement features and extend support for additional programming languages

• Design & architecture: Participate in technical discussions, contributing to architecture and design decisions for the SAST engine

Requirements

• 3+ years of experience, with proficiency in Rust or in C, C++, or Go, and a strong willingness to quickly learn Rust

• Experience designing CLI tools or low-level applications

• A solid understanding of performance optimization for high-performance applications

• Interest or experience in application security

• Strong communication skills, with the ability to articulate and share complex ideas effectively in both written and spoken formats

• English: B2 level

Nice to have

• Background in secure coding practices

• Experience parsing Abstract Syntax Trees (ASTs) using tools like Tree Sitter

• Passion for programming languages, considering yourself a polyglot

• Familiarity with Foreign Function Interfaces (FFI)

• Experience using profiling tools to optimize performance

• Some exposure to C#

Benefits

• Work in a highly professional team. Informal and friendly atmosphere in the team

• Paid vacation — 20 business days per year, 100% sick leave payment

• Equipment provision

• Partially compensated educational costs (for courses, certifications, professional events, etc.)

• Legal and Accounting support in Poland

• Ability to work from our comfortable office in Warsaw at Prosta 51

• ‍5 sick days per year

• Medical insurance (after the end of the probationary period)

• Flexible working hours – we care about you (!) and your output

• English and Polish classes 2 times a week (online)

• Bright and memorable corporate life: corporate parties, gifts to employees on significant dates