Application Security Engineer

Benefits

Parental leave

Not verified

Non-birth-parent leave

Not verified

Family-building benefits

• Fertility benefits: Not verified
• Adoption assistance: Not verified
• Surrogacy assistance: Not verified

Mental health support

Not verified

Relocation assistance

Not verified

Childcare support

Not verified

Learning budget

Not verified

Verification

Not verified

Salary

Not verified

Was this benefit information wrong? Tell us.

Schedule

Shift type

Not verified

Weekend work

Not verified

Application

Cover letter

Not verified

Assessment

Not verified

Deadline

Not stated

Where they hire

State eligibility is not yet verified.

About this role

Application Security Engineer Remote (Poland) As PandaDoc continues to scale, we're expanding our security team and looking for an Application Security Engineer to help shape and strengthen our security foundations. In this role, you'll take ownership of key security initiatives across our application, working closely with engineering to embed security into every stage of development. You'll contribute to building a proactive, automation-driven security culture while addressing both current risks and emerging challenges, including AI security. In this role, you will: - Monitor and test information systems to identify vulnerabilities - Execute or manage the remediation of identified vulnerabilities - Respond to security incidents and perform root cause analysis - Assess and understand PandaDoc's current security framework and future architecture, providing recommendations for risk reduction - Design, implement, maintain, and evangelize automated security solutions - Work closely with engineering teams to implement new security controls - Analyze and monitor relevant security threats and prevention measures based on industry trends and standards - Perform cloud services hardening, including reviewing roles and permissions for services and APIs - Help address emergent threats in AI security as PandaDoc deploys AI in its product and for internal use Our stack: - Service-oriented architecture - Two main stacks: Java and Python - Amazon Web Services: EKS, RDS, ElastiCache, etc. - A combination of AWS native and 3rd party security tools for infrastructure and application security (WAF, CNAPP, SCA/SAST, DAST, AWS GuardDuty, etc.) About you: - 2+ years of cloud security experience implementing security controls and best

Read the full description at job-boards.greenhouse.io. FewerJobs shows a source-linked preview and links to the original posting.