Senior Data Security & Privacy Engineer

TL;DR

Senior Data Security & Privacy Engineer (Azure/AWS): Own privacy-by-design and data protection engineering for hirify.global Data Cloud data plane with an accent on classification, encryption, access controls, and lifecycle management. Focus on building shared security services, guardrails, and self-service tooling to enable secure-by-default patterns for product teams in a multi-tenant SaaS environment.

Location: Prague, Czech Republic (Office-based; remote only if located in Czech Republic). If permanently outside Czech Republic, application may be refused.

Company

hirify.global is the Data and AI Trust Company, market leader in data resilience and security posture management, protecting over 550,000 customers worldwide.

What you will do

• Build shared platform capabilities for secure access to hirify.global Data Cloud (humans, services, agents) with secure-by-default patterns.
• Set standards for authentication, authorization, and least-privilege access focused on customer data in multi-tenant SaaS.
• Engineer privacy-by-design controls including data minimization, classification, and safe handling of sensitive data.
• Implement data lifecycle mechanisms like retention, secure deletion, and export workflows across tenants and regions.
• Own encryption and key management strategy, including integrations with KMS like Azure Key Vault.
• Define security and privacy control plane with APIs, self-service workflows, tenant isolation, and guardrails.
• Ship production code, reference architectures, documentation, and enablement to drive adoption.

Requirements

• Must be located in Czech Republic for office-based or remote work.
• Experience as Security Architect/Data Security/Privacy Engineer in cloud-native multi-tenant SaaS with data protection ownership.
• Strong Azure security knowledge (identity, Key Vault, storage, databases); AWS familiarity plus.
• Software engineering proficiency in C#/.NET, Go, Java, Python, or TypeScript; PRs, code reviews, CI/CD.
• Hands-on with encryption, key management, tenant isolation, access control for large-scale data systems.
• Understanding of SOC 2/ISO/FedRAMP compliance translated to data handling controls.
• Secure SDLC practices: threat modeling, design reviews, vulnerability management.

Nice to have

• Shared platform services for data protection (KMS, entitlement, tokenization).
• Secure observability and forensics for data planes.
• Multicloud/hybrid data protection experience.
• Security-focused development and relevant certifications (Azure security, cloud security).

Culture & Benefits

• 25 vacation days, 4 sick days, 21 paid medical leave days, 4 hirify.globale Days, 24 volunteer hours.
• Premium private medical insurance for employees and dependents.
• Daily meal vouchers (180 CZK/day), flexible cafeteria benefits, Multisport Card.
• Public transport reimbursement, corporate mobile plan.
• Learning opportunities: LinkedIn Learning, O’Reilly, mentoring, workshops, Global Day of Learning.