New offer - be the first one to apply!
June 8, 2026
Mid • Hybrid
Warsaw, Poland
Tasks
Design and implement security controls across applications, infrastructure, and cloud environments
Integrate SAST, DAST, SCA, secret scanning, and container scanning into CI/CD pipelines
Define and enforce security gates within pipelines
Harden cloud environments, IAM, and infrastructure configurations
Manage vulnerability lifecycle (scanning, prioritization, remediation)
Support incident response, root cause analysis, and post-incident improvements
Secure containers and Kubernetes environments (RBAC, runtime policies)
Ensure compliance with standards such as ISO 27001, NIST, SOC 2
Requirements
At least 3 years of experience in cybersecurity, DevSecOps, or a related role
Hands-on experience with AppSec tools (SAST, DAST, SCA, secret scanning)
Experience securing CI/CD pipelines and SDLC processes
Experience in cloud security and infrastructure hardening
Knowledge of containers and Kubernetes security
Ability to work with SIEM, logs, and incident response workflows
Knowledge of security standards (ISO 27001, NIST, SOC 2)
Very good command of English (B2+/C1), both written and spoken
Nice to have
Security certifications (Security+, CISSP, CCSP, CKS)
Experience with policy-as-code and security automation
Knowledge of threat modeling and secure architecture