This is a fully remote position, open to applicants in Portugal.

• Oversee and evaluate information systems to detect vulnerabilities

• Carry out or oversee the correction of identified vulnerabilities

• Address security incidents and conduct root cause analysis

• Evaluate and comprehend PandaDoc’s existing security framework and future architecture, offering suggestions for risk mitigation

• Design, implement, sustain, and advocate for automated security solutions

• Collaborate closely with engineering teams to establish new security controls

• Analyze and track pertinent security threats and preventive measures based on industry trends and standards

• Conduct hardening of cloud services, which includes reviewing roles and permissions for services and APIs

• Assist in tackling emerging threats in AI security as PandaDoc integrates AI into its products and internal processes

• At least 2 years of cloud security experience in implementing security controls and best practices in AWS, GCP, or Microsoft Azure

• Minimum of 2 years of experience with security management tools, such as IPS/IDS, WAF, vulnerability scanning, and penetration testing

• Strong understanding of Access Control and Identity Access Management principles (SAML 2.0, OAuth, JWT, etc.)

• Experience in applying DevSecOps practices within the SSDLC

• Excellent interpersonal, written, and verbal communication abilities

• Upper-Intermediate English proficiency (B2+)

• A competitive salary. For those based in Poland, the salary range is 222000 to 334000 PLN annually.

• A transparent and open culture that prioritizes feedback and fosters professional and personal growth

• The flexibility to work from any location — our team is distributed globally, from Lisbon to Manila, and from Florida to California

• 6 self-care days

• And much more!

Application Security Engineer

People also viewed