Senior Platform Security Engineer (100% remote-friendly within Poland)

The Internal Platform is a pivotal foundation that accelerates product development by providing a reliable scalable and selfservice ecosystem. It supports the entire software lifecycle and is meticulously tailored to meet the organizations technological needs and strategic direction. 

The platform enables development teams to operate autonomously in 80% of cases reducing dependency on the Internal Platform team and ensuring that compliance security and business continuity are integrated across the entire platform defending general reliability of services and data integrity.

Overall a platform engineering team plays a critical role in ensuring a companys technology infrastructure is reliable and scalable.

The Internal Platform team consists of 34 people including 27 individual contributors 2 Staff Engineers 4 Engineering Managers and Head of Internal Platform. The team is organized in a way to efficiently address Stakeholders needs.

What are the challenges in the team

• Platform Security is a team within the Internal Platform. The team is a first point of contact for the Global Security Team. The team is responsible for security and integrity of the underlying infrastructure that supports the organization safeguarding the platform from potential vulnerabilities threats and attacks. 

• Developing and maintaining tools for Global Security in order to deliver vulnerability management platforms for application triaging and continuous compliance

• The complexity of the Docplanner organization: Docplanner is a complex organization with multiple teams working on various products and services. One of the main challenges for the platform security engineer is to understand and integrate the diverse technology stacks used by different teams. 

• Scalability and reliability of systems: As Docplanner grows and expands the demand for the technology infrastructure also increases. The platform engineering team must ensure that the systems are designed to handle high traffic are scalable and secure

Who will you work closely with

Global Security as the main external stakeholder for security initiatives. Youll collaborate on platform compliance risk management and act as a technical point of contact during escalated incidents such as DDoS or abuse cases.
PMS (Practice Management Systems) teams to audit existing systems support secure migration to the central platform and interpret global security and legal requirements in the context of PMS implementations.
Core Team within Internal Platform by consulting on technical compliance networking standards and resolving misconfigurations or vulnerabilities detected across platform components.
Experience Teams by providing guidance on infrastructurerelated application security topics secure encryption practices and collaborating on secure CSP integrations.
Legal to ensure alignment with data protection regulations encryption standards and locality requirements. Youll use their insights to assess and improve the security posture of the platform.

How would you be impacting our mission

• Making sure that our platform is compliant with the best industry practices and standards for security (ISO27001 C5 SOC2)

• Help us to introduce security on every step of our platform lifecycle

• Ability to vigilantly understand and mitigate security threats before they arise

• Optimize system scalability and cost efficiency

• Development monitoring and maintenance of Kubernetes clusters on several continents.   

• CI / CD development and maintenance.  

• Make sure that all of our services are deployed in a way that makes them highly available.  

• Fixing urgent issues and optimizing performance.  

• Support other team members in their daily work. 

Qualifications :

What will help you thrive

• At least 5 years of experience related with security

• Vast experience with container orchestration platforms like Kubernetes and how to secure them (musthave).   

• You know how to maintain develop policy for securityfocused CNI/Service Mesh (eg. Calico Cilium).

• You know how to scan for and manage vulnerabilities at scale.

• You have experience with Hashicorp Vault.

• You know why and how to use Terraform and popular CI/CD tools.   

• You know about building scalable and secure production HA environments using AWS.

• You know your ways around network security services eg. AWS WAF/Cloudflare.

• You are not afraid of developing tools or scripts in Bash or GO to automate work.   

• You can communicate in English (both spoken and written min. B2 level).  

• You know how to bring people on your side when talking about security and best practices.

• Growth mindset: nobody ticks all those boxes above but willingness to learn is strongly valued here.

Additional Information :

Lets talk money

• A salary adequate to your experience and skills. The range is broad so that we can accommodate our roles for all levels of experience but we will show you the career ladder to explain where we see your skills and impact within the company. Your salary will be now and always 100% transparent to you
   
• Share options plan after 6 months of working with us.

True flexibility and worklife balance

• Remote or hybrid work model with or hub in Warsaw;
• Flexible working hours (fully flexible as in most cases you only have to be on a couple of meetings weekly);
• 20/26 days of paid time off (depending on your contract);
• Additional paid day off on your birthday or work anniversary (you choose what you want to celebrate).

Health comes first 

• Private healthcare plan with Signal Iduna for you and subsidized for your family. 
• Multisport card cofinancing for you to have access to sports facilities across Poland. 
• Access to iFeel a technological platform for mental wellness offering online psychological support and counseling. 

We promote and embrace equal opportunities in our hiring process and also every day at work. When you apply for our roles you receive equal treatment regardless of age disabilities gender reassignment marital or civil partner status pregnancy or parental status race colour nationality ethnic or national origin religion or belief sex sexual orientation or any other dimension of human difference.  If you require additional support in your recruitment process we kindly encourage you to let us know. Behind those words youre reading theres a person (hi!) who already helped a candidate by adapting the interviews and now were lucky to have this person with us. So even if youve never asked for it before may this serve as a sign that now you can do so. We can only truly be equal if we adapt to each other.

We believe all humans in all their beautiful diversity should have equal rights dignity and respect. Period. Mariusz Gralewski  CEO