Czym będziesz się zajmować? What will you do?In this role, you’ll collaborate closely with various stakeholders, including Security Engineers, Engineering Managers, and developers to create effective security designs and protocols while securing microservices and monitoring threats. That’s why this position requires not just strong technical skills, but also great communication abilities, a knack for mentoring, and knowledge-sharing.  You’ll be responsible for building a world-class, scalable, and resilient security infrastructure that keeps the Hippo platform safe and sound. You’ll boost developer productivity by integrating security tools and processes into our CI/CD pipelines, as well as monitoring systems and cloud environments to ensure everything runs smoothly. You’ll be using Golang, Python, and other scripting languages like Bash on a daily basis to automate security operations, build secure APIs, and develop serverless security functions.You’ll get to work with various cloud providers, databases, open-source tools like Terraform, Kubernetes, and Docker, and a range of security tools like CSPM, DSPM, WAF, ZTN, DAST, SAST, Vault, and more.You’ll be the advocate for a security-first mindset within the DevOps team and across the organization.

Kogo poszukujemy? We might be a match if you…Have 3+ years of hands-on DevOps experience and security is an area that you understand, have skills in and are passionate about. Are skilled in Golang or Python.Have hands-on experience with tools like AWS, Kubernetes, Terraform, Docker, and modern CI/CD systems. Understand AWS VPC or GCP networking, including key concepts like network separation, security groups, and ACLs. Have worked with security frameworks such as OWASP, NIST, or SANS and know your way around IDPS. Have experience securing CDN configurations and can integrate them into a broader security strategy. Can recognize and defend against common CDN attack vectors like DDoS attacks, cache poisoning, and content hijacking. Know about authentication protocols like SAML, OIDC, OAuth or similar. Are comfortable working with security logging and metrics systems.Enjoy working in a small, focused, and highly efficient team. Have a great command of English (written & spoken).  Are available in the afternoons – you'll join a Polish-American team, so you can expect afternoon meetings. Rest assured, we prioritize work-life fit, respect everyone's private lives, and don’t work at night but we still must ensure that communication between the time zones is effective.