About the project

• As an Engineer – Runtime Platform Security you will be working for our client, a leading global financial institution at the forefront of technological innovation in the financial services industry. You will join the Runtime Platform team, working closely with software and infrastructure engineers to safeguard the security of distributed systems and core infrastructure. This position is central to identifying vulnerabilities, influencing secure development practices, and ensuring compliance with security standards in a complex, large-scale environment handling critical financial operations.
• Warsaw-based opportunity with 2 days of remote work per week.

Your responsibilities

• Conduct penetration testing and vulnerability assessments across distributed platforms
• Identify and analyze security vulnerabilities in containerized environments including Docker and Kubernetes
• Collaborate with development teams to embed security best practices throughout the SDLC
• Interface with the internal Tech Risk team to align with security standards and policies
• Participate in code and design reviews with a focus on security implications
• Develop and maintain tools to automate security testing and vulnerability detection
• Perform threat modeling and risk assessments for internal platforms and systems
• Contribute to incident response efforts, including root cause and forensic analysis
• Document and communicate security findings and recommendations clearly
• Stay informed on emerging security threats, vulnerabilities, and mitigation strategies

Our requirements

• Proven experience in penetration testing and vulnerability assessment of distributed systems
• Proficiency in at least one programming language such as C++, Python, or Go
• Deep understanding of security principles and best practices
• Familiarity with container technologies such as Docker and Kubernetes
• Experience working with or developing security testing tools
• Strong knowledge of Linux operating system fundamentals
• Solid grasp of networking concepts and protocols
• Ability to communicate technical security risks to both technical and non-technical audiences
• A proactive and analytical approach to problem-solving in complex environments
• Experience collaborating across teams and navigating enterprise security requirements

Optional

• Industry certifications such as OSCP, CEH, or CISSP
• Experience with cloud security (AWS, GCP, Azure)
• Contributions to open-source security projects
• Experience with security automation and orchestration tools
• Familiarity with common security frameworks and standards (e.g., NIST, OWASP)
• Experience with reverse engineering and malware analysis
• Background in incident response and digital forensics
• Developing and delivering security training

Technologies we use

What we offer

• Stable and long-term cooperation with very good conditions

• Enhance your skills and develop your expertise in the financial industry

• Work on the most strategic projects available in the market

• Define your career roadmap and develop yourself in the best and fastest possible way by delivering strategic projects for different clients of ITDS over several years

• Participate in Social Events, training, and work in an international environment

• Access to attractive Medical Package

• Access to Multisport Program

• Access to Pluralsight

• Flexible hours