Security Lead Engineer

Senior • Remote

$28,000 - $33,000/

Gdańsk, Poland

Relout is a place created by ambitious people with a passion for technology. We work for international projects and clients from various industries. We’re helping startups, software houses, and enterprises to transform and scale their businesses. From infrastructure management to observability and automation – we’re building the foundation to scale for success.💪

We hire talented engineers with a passion for using software-based approaches to solve complex challenges and problems. You’ll be part of the engineering organization with a strong focus on using industry standards and cutting-edge technology.

We are currently looking for a Security Lead Engineer, willing to join a project for our strategic client – one of the largest manufacturing companies from Sweden, offering IoT solutions and assets management. In this role, you will be instrumental in shaping the security architecture of our client digital services platform. You will leverage your expertise in cybersecurity and hands-on coding experience to design and implement robust security solutions, develop proof of concepts, and drive innovation. If you are passionate about cybersecurity, possess strong design and coding skills, and thrive in a fast-paced, collaborative environment, we want to hear from you.

The company is well-established in the market, but even so, the work culture is not like in typical corporations. Teams are small and autonomous, engineers are given extensive freedom of action, and remote-first & async-first approach is promoted. The Scandinavian work culture also places a strong emphasis on work-life balance, which is promoted and shared in both the project itself and among rest of Relout.

🔷Responsibilities:

Work within a team of Security Leads/Architects responsible for Compliance, Risk Minigations & Management, Data Breaches and overall security strategy and policies for digital organization.
Collaborate closely with security team to implement security policies, guardrails and initiatives
Lead the design and development of proof of concepts to demonstrate the feasibility and effectiveness of security solutions for our digital services platform.
Coordinate and review penetration tests, identify vulnerable areas of our solutions and design mitigation strategies.
Write clean, well-documented code to implement security controls, encryption mechanisms, access management policies, and other security features.
Conduct thorough security reviews of code, and configurations to identify vulnerabilities and ensure compliance with security best practices.
Provide technical leadership on security-related initiatives. Promote security awareness and best practices within division’s team members
Collaborate with cross-functional teams and architects in adjacent departments, to translate security requirements into technical designs and implement scalable, maintainable, and secure solutions.
Work closely with software engineers, DevOps and SRE team, and other stakeholders to integrate security into the development lifecycle and automate security processes.
Integrate security into the full development lifecycle by embedding security checks into CI/CD pipelines and enabling automation of cloud security processes.
Perform continuous security risk assessment and transparent risk reporting to stakeholders across the organization.
Maintain traceability of security requirements throughout the development lifecycle and support teams in implementing secure configuration baselines for cloud services.
Follow compliance and regulations (CRA, NIS2, ISO/IEC 27001, NIST)

🎯Requirements:

5+ years of experience in security engineering, cloud security, or a similar technical security leadership role, with a strong focus on AWS Cloud Security.
Hands-on experience designing and implementing security controls in AWS, including IAM, Security Hub, GuardDuty, CloudTrail, Prisma Cloud and other AWS-native security services.
Practical experience with secure software development, including code reviews, threat modelling, and implementation of security controls within AWS-hosted applications and services.
Experience with Infrastructure-as-Code (IaC) in AWS (eg. Terraform, CloudFormation, CDK) and securing CI/CD pipelines (GitHub Actions, GitLab, AWS CodePipeline, or similar) in a DevSecOps setup.
Solid understanding of cloud-centric cybersecurity principles: authentication & authorization, encryption, identity management, least privilege, secure configuration baselines, and application-layer security.
Familiarity with security frameworks and regulations relevant to cloud operations, such as ISO 27001, NIST, NIS2, CRA.

Strong analytical and problem-solving skills, with the ability to design scalable, secure, and maintainable cloud solutions.
Excellent communication and collaboration skills, with the ability to work effectively with cross-functional engineering teams and provide technical leadership in AWS cloud security topics.

Nice to have:

Experience with SAML/OAuth/OIDC compliant frameworks and software such as KeyCloak, Auth0, Azure ADB2C, Okta, Curity, or other relevant components.
Familiarity with serverless and container based workloads particularly in AWS
Experience with CI/CD processes and tools (based on Gitlab)
Relevant certifications such as CISSP, CISM, AWS Certified Security - or equivalent, are highly desirable
Proficiency in programming languages such as Python or JavaScript/TypeScript, with the ability to build proof-of-concepts and automate security processes in AWS environments.

⭐What we offer:

Flexible contract currency of your choice (PLN/EUR/SEK)
Flexible work arrangements and remote work options
Professional development and training opportunities
Collaborative and inclusive work environment
Opportunity to work on cutting-edge technologies and make a meaningful impact in the dairy industry
Regular company events and integrations (meetups)
Unlimited legal advice & support with B2B partnership and self-employment
Missing anything you like? Luxmed, Multisport? Ask us about it!

Apply now! Join Relout Team today!📢

Relout

Relout is a consulting firm specializing in talent acquisition and recruitment for startups, software houses, e-commerce businesses, and similar enterprises. The company focuses on helping these organizations scale and transform by connecting them with ambitious engineers who have a genuine passion for technology. Relout is committed to enhancing the technological development and transformation of its clients by implementing modern engineering practices and improving system architecture, quality, and stability. The company values innovation, collaboration, and the proactive development of technical skills, fostering an environment where team members can have a significant impact on product development and direction. Relout operates in a dynamic and evolving industry, emphasizing the importance of adapting to changes and leveraging AI tools responsibly in daily operations.