Senior Product Security Engineer (Cybersecurity)

TL;DR

Senior Product Security Engineer (Cybersecurity): Strengthening the security posture of the product portfolio through security assessments, threat modeling, and penetration testing with an accent on cloud-native applications and web services. Focus on identifying security risks, developing improvement plans with engineering teams, and evangelizing security best practices.

Location: Hybrid in Prague, Czech Republic

Company

Global leader in AI-based continuous testing and quality engineering.

What you will do

• Conduct comprehensive security assessments, including threat modeling, security scanning, and internal penetration tests.
• Collaborate with engineering teams to design and implement security improvement plans.
• Serve as the primary security expert for product managers, engineers, and architects.
• Act as an internal security evangelist to promote security awareness across the organization.

Requirements

• 5+ years of professional experience in security engineering or cybersecurity.
• Experience with cloud-native applications, web applications, and web services.
• Development, scripting, and automation skills in Java, C#, C++, or Python.
• BA/BSc in Computer Science, a related discipline, or equivalent work experience.
• Must be able to work in a hybrid setup in Prague, Czech Republic.

Nice to have

• 5+ years of experience in penetration testing.
• Experience with SaaS security architecture, microservices, containers, and Kubernetes.
• Knowledge of SOC2, FedRAMP, or FIPS compliance requirements.
• MS in Computer Science or Information Security.

Culture & Benefits

• Flexible working schedule with no core hours.
• Hybrid work environment with home-office allowance.
• 25 days of paid time off, 3 sick days, and 2 days of paid volunteering leave.
• Comprehensive package including pension contributions, life, and disability insurance.
• Meal allowance and professional growth opportunities.