Security Engineer (Laravel)

TL;DR

Security Engineer (hirify.global): Improving the security of cloud infrastructure, SaaS platforms, and internal systems with an accent on vulnerability management, compliance support, and developer enablement. Focus on automating security processes, strengthening cloud security posture, and collaborating with engineering teams on application security.

Location: Fully remote, EU Based

Company

hirify.global is a globally distributed software company behind one of the world’s most popular web application frameworks.

What you will do

• Own security operations across cloud infrastructure, SaaS platforms, and internal systems.
• Strengthen cloud and infrastructure security, including identity, access control, network controls, logging, and data protection.
• Identify, prioritize, and remediate vulnerabilities using scanning, monitoring, and reporting tools.
• Partner with engineering teams on application and platform security, threat modeling, and secure configuration.
• Support compliance efforts across frameworks such as ISO 27001, SOC 2, PCI-DSS, HIPAA, and GDPR.
• Manage and collaborate on bug bounty and security research, triaging findings and supporting remediation.

Requirements

• Experience in security operations, information security, or application security engineering.
• Practical experience securing cloud environments (AWS preferred) and SaaS platforms.
• Strong understanding of web application security, secure development practices, and OWASP Top 10.
• Familiarity with security and privacy frameworks such as ISO 27001, SOC 2, HIPAA, GDPR, and NIST.
• Ability to work across teams, communicate clearly, and take ownership of outcomes.
• Comfort operating in ambiguous situations and applying judgment where playbooks don’t exist.

Nice to have

• Experience building security automation and operational tooling
• Familiarity with CI/CD pipelines and infrastructure-as-code
• Hands-on experience with bug bounty programs
• Security certifications such as CISSP, CCSP, or similar
• A degree in Cybersecurity or a related discipline

Culture & Benefits

• Small tight-knit team where every developer counts
• Fully remote and globally distributed working environment
• Option to attend Laracon conferences around the world
• Health care plan (Medical, Dental & Vision)
• Paid time off (Vacation, Sick & Public holidays)
• Company equity