Key skills
AWSAzureCloudGoogle Cloud PlatformKubernetesPythonSDLCBashAIGCPGoogle CloudOAuthJWTSAMLIdentity ManagementCI/CDCommunicationOWASPPenetration TestingCloud SecurityWAF
About this role
Role Overview
- Review, test, and monitor our applications to identify security weaknesses
- Manage vulnerabilities from discovery through remediation, working directly with engineering teams to resolve them
- Respond to infrastructure security alerts and perform hardening, including reviewing roles and permissions across services and APIs
- Participate in incident response and root cause analysis
- Analyze and monitor relevant security threats and prevention measures based on industry trends and standards
- Partner with product, development, and infrastructure teams to embed security requirements into how they build
- Integrate and operate automated security testing across the development lifecycle, including SAST, DAST, SCA, secrets detection, container, and supply chain security
- Develop security automation and tooling to scale security across engineering
- Drive threat modeling and secure-by-design practices across our services
- Assess our overall security posture and identify risks, providing recommendations to strengthen it
- Assist in addressing emergent threats in AI security as PandaDoc deploys AI in its product and for internal use
Requirements
- 3+ years of experience with application security tools such as SAST/SCA, DAST, WAF, CI/CD security, and penetration testing
- 2+ years of cloud security experience implementing security controls and best practices in AWS, GCP, or Microsoft Azure
- Strong background in web application security, including common vulnerability classes (OWASP Top 10, CWE Top 25), attack vectors, and mitigations
- Good understanding of access control and identity management principles (SAML 2.0, OAuth, OIDC, JWT, etc.)
- Practical skills building security automation and tooling with Python, Bash, or equivalent languages
- Experience implementing DevSecOps practices across the SDLC
- Familiarity with containerized, Kubernetes-based environments and their security
- Solid interpersonal, written, and verbal communication skills
- Upper-Intermediate English level (B2+)
Tech Stack
- AWS
- Azure
- Cloud
- Google Cloud Platform
- Kubernetes
- Python
- SDLC
Benefits
- Multisport Card for fitness and wellness activities (individual or family plan)
- LuxMed healthcare coverage (individual or family plan)
- UNUM life insurance protection (individual or family plan)
- Onboarding benefit allowance that can be used for necessary work equipment and setup
- 6 self-care days beyond standard Polish vacation entitlements
- Wellness, learning and development budgets
- Employees may be able to purchase company stock or receive annual bonuses.