New

Senior Security Engineer

Wrocław, PL

 

About us

At Auctane, we are united by a passion to help businesses deliver — whatever their size, wherever they are, and however they operate. We make it possible for businesses to meet the ever-changing requirements of their industry and customer expectations. Auctane products enable hundreds of thousands of businesses to annually mail and ship billions of items — over $200 billion worth — to recipients around the globe.

The Auctane family of mailing and shipping software products includes ShipStation, Stamps.com, ShipStation API, Metapack, GlobalPost, and Packlink. Our partners include Amazon, UPS, USPS, eBay, BigCommerce, Shopify, WooCommerce, and Walmart.

Our values

Win as One. Delight Customers. Deliver Great Outcomes. 

 

About the role

The focus of this role is to bolster Auctane's global engineering and operations within the Information Security Group. This position reports directly to the CISO and entails the leadership of several security programs within the engineering and operations teams.

The successful candidate will be instrumental in defining and developing the technology and processes governing cybersecurity practices to secure Auctane's global infrastructure. The role will specifically concentrate on securing the Enterprise and Cloud Infrastructures, alongside managing security operations responsibilities.This critical role requires a successful candidate to be a key contributor in establishing and evolving the technology and processes that define Auctane's global cybersecurity practices. The primary focus of this position is to secure the Enterprise and Cloud Infrastructures while also managing core security operations.

The Infosec group operates as part of the broader R&D Tech function, which utilizes modern architectural patterns and technologies, including AI, at scale and pace. 
This is a hybrid position based in Wroclaw or Zielona Gora.

About the team

We have a flat and open engineering culture where diverse opinions and perspectives are valued, data and evidence beats opinion and hierarchy, backed by honest and frank discussions. We passionately believe in forming autonomous, cross functional teams who are empowered to deliver our ambitious strategy. Our engineering culture is characterized by its flat and open structure, where diverse opinions and perspectives are highly valued. Decisions are driven by data and evidence, superseding opinion and hierarchy, and are supported by candid and transparent discussions. We are strong advocates for the formation of autonomous, cross-functional teams who are fully empowered to execute our ambitious strategy. We strongly support cross-collaboration and mission driven autonomous teams that are given full authority to implement our ambitious strategy. Our ambitious strategy is implemented by autonomous, mission-driven teams that are fully empowered to act and strongly encouraged to cross-collaborate.

What will you be doing?

  • Review and enrich playbooks and see opportunities for automation efficiencies in our Security detection and response capabilities.
  • Liaising with the Engineering teams on incident response, vulnerability management and remediation actions
  • Responsible for providing technical expertise in the support of security incidents using a plethora of leading security tools, coupled with continuous learning and training
  • Working with AWS & GCP Cloud-native security tooling such as GuardDuty, Security Hub,  GCP Security Command Center to ensure a level of protection & monitoring of threats in Auctane Public Cloud environments. 
  • Following up on regular security reviews, vulnerability, risk assessments and audits utilising our CSMP tool Wiz and Endpoint vulnerability tool Crowdstrike.
  • Building relationships with all staff to promote “Security by Design” throughout the Engineering Teams and wider business.
  • Being part of the internal Infosec / cyber security incident process - investigate suspected attacks and help manage security incidents, including providing post-mortem analysis, identify causes, develop solutions and preventive measures
  • Responding swiftly to new and emerging security threats and vulnerabilities, investigate suspected attacks and be an integral part of the Information security incident process
  • Learning and training, to enhance knowledge of Security Orchestration and Automation.

What are we looking for?

  • Bachelor’s degree in Cybersecurity, Information Technology, Computer Science, or a related technical field
  • 6+ years of progressive experience in cybersecurity, with at least 3-5 years in leading large scale cyber security implementations
  • Experience defining and leading several cyber security programs for large scale organizations
  • Advanced level experience at least in one or two security domains within the Enterprise and Cloud Infrastructures to develop threat detections and mitigation strategies 
  • Experience leading projects and programs while defining the roadmap and milestones, and communicating with to technical and non-technical stakeholders while advising senior management 
  • Experience leading other engineers and analysts while collaborating with the external team members
  • Able to balance the demands of delivering high quality and demanding timescales.
  • Relevant industry certifications (e.g. CISSP, CISM, CRISC, AWS Security, GCP Security)

What will make you stand out?

  • Expert-level knowledge of AWS, Azure, and/or GCP security
  • Expertise in vulnerability and risk management across public cloud and enterprise environments
  • Expertise in leading advanced threats detection and prevention programs in a cross-functional environment 
  • Expertise in developing security patterns with architectural recommendations
  • Advanced experience in software development practices, automation with basic knowledge of AI

The tech stack

  • AWS, GCP, SaaS, and Enterprise
  • Artificial Intelligence Solutions (Gemini, Claude, internal)
  • CNAPP, DSPM, and Cloud Security Solutions
  • Application Security Technologies (DAST, SAST, SCA, ASM)
  • Email Security Technologies
  • SIEM Solutions and Detection Technologies
  • Google Workspace
  • Vulnerability Management Solutions
  • Application Security
  • Python, PowerShell, Bash

What do we offer?

  • 🗓️ Annual Salary Review: We are reviewing the salaries of all our teams annually in order to evaluate an increase according to individual performance and the business results.

  • 📦 99% discount on your personal shipment orders via Packlink.pro

  • 💙 Up to 500PLN/year to match your NGO donations! We are happy to support your initiatives by duplicating the amount donated.

  • 😊 Volunteer day. You can take 1 day off per year in order to participate in volunteering activities! We will love to see some pictures in our slack!

  • Referral Fee 🔗 We need your support in hiring top-class talent! We offer a referral bonus of 4-20k, depending on the complexity of the role and the hiring process.

  • 👩‍⚕️We have an Employee Assistance Program with psychological assistance free of charge.

  • ⚖️ Great work-life balance We offer a flexible work schedule and will do our best to adapt to your personal situation. Working in a fast-paced environment can be intense, but that doesn’t mean you shouldn’t enjoy your free time!

  • 💜 An inclusive and upbeat work environment Leave your suit behind... we’re a t-shirt and converse kind of place! More importantly, our company culture promotes diversity and inclusion. The personality and opinions of each of our team members are important and valid, and we aim to offer all employees a safe environment where they can be themselves and thrive.

  • 🌍 A cross-cultural atmosphere We are a truly international team of 20 nationalities that speak 10 languages. Our company language is English and all internal communication and company-wide meetings are in English.

  • 🏟️ Company events Work hard, play hard! We do our best every day, even at our regular team-building events. 

  • 📺 Internal and external training, free access to online training platforms such as Linkedin Learning

  • 🏠 Possibility to work in a home-office using equipment provided by AUCTANE, or in our office prepared in accordance with all safety requirements.

  • 📙 Personal Training Budget. Up to 7000 PLN/year training budget (certifications, conferences attendance, etc.) to invest in your professional development. We want to help you improve your technical skills, feel involved in the product community, and develop your soft skills to lead teams and manage other stakeholders.

  • 🌅 Up to 30 days of vacation per year (additional days are granted along with seniority at AUCTANE).

  • 🗺️ Languages classes every week. Thirsty for knowledge? Learn a new language by joining our free English/Spanish/German classes. You can connect and enjoy taking up a new language or improving your current skills with one of our great instructors.

  • 🏥 Free private medical insurance.

  • 📄 Attractive life insurance.

  • 🏐  Co-financing for sports and recreational activities

  • 🏐 Gym membership co-financing 

  • 🏢 Nice Office in Zielona Gora and Wroclaw (free drinks, snacks…)

  • Do you want to know a little bit more about the team? Please, don’t hesitate to reach out to Amazing Auctane-PL and our Instagram

Create a Job Alert

Interested in building your career at Auctane ? Get future opportunities sent straight to your email.

Apply for this job

*

indicates a required field

Resume/CV*

Accepted file types: pdf, doc, docx, txt, rtf

Please provide your Primary Home Address.

Select...
Select...
Select...

Please note we offer an employment contract (not B2B contract)