Senior Information Security Engineer

Ciklum

Remote, Romania

About the role:

As a Senior Information Security Engineer, become a part of a cross-functional development team working for The global leader in leisure, travel, and tourism industries that offers a high-quality end-to-end customer experience, from booking to accommodation and transportation.

Responsibilities:

Secure coding, secure design, and security automation skills and capabilities in domains;
Full ownership of complex topics or multi-faceted initiatives and outcomes panning across your domain;
Creating software products that are secure by default and work collaboratively with software engineers, cloud engineers and architects to ensure information security is considered throughout the design and implementation of software products and services;
Tooling and automation to identify possible threats and vulnerabilities before they are promoted to production, thereby helping them to protect our customers’ data;
Taking an engineering approach to solving security problems, selecting and guiding teams to use the right tools for the right jobs and thus solve the given business and technical problems in an efficient way;
Taking the initiative to translate ideas into outcomes;
Regularly coaching, guiding and developing more junior colleagues;
To be responsible for the operation and constant security optimisation and adoption of Client`s Web Application Firewall infrastructure.

Requirements:

Proficient experience in working with CDN and WAF solutions like Akamai, AWS or Cloudflare. Bot detection, DDoS protection, cache optimisation;
Deep knowledge and hands-on experience on Web technologies - RFC’s, request/response lifecycle, DNS, protocols, status codes, cookies, headers, proxies, certificates, browsers, caching, etc.;
Experience in front-end development is a huge plus;
Advanced experience in designing secure, highly available, distributed applications in an Amazon Web Services (AWS) environment. EKS, Lamdba functions, Lambda@Edge, CloudFront, S3, API Gateways knowledge is preferable;
Ability to understand and analyse complex security events as well as adjust the resulting ongoing security profiles;
Monitoring experience - Datadog, Grafana. Trend analysis, deep investigation, issue tracking;
Experience in defining, planning, implementing, maintaining, and upgrading security measures, guardrails and controls for WAF and CDN;
Familiar with information security standards & practices and their practical implications;
Experienced in securing APIs, REST API and GraphQL API using AWS AppSync;
Deep automation skills, hands-on experience with agentic LLMs, experience with some scripting and programming languages such as Python;
Advanced experience with CI/CD, preferably Gitlab CI;
Experience with Infrastructure as a Code tools. Preferably Terraform, CloudFormation, AWS CDK;
Being customer centric, passionate about delivering great digital products and services;
Passionate about continuous improvement, collaboration and great teams;
Strong problem-solving skills coupled with good communication skills;
Understanding of social and ethical implications of software engineering;
Open minded, inquisitive, life-long learner;
Comfortable with ambiguity, highly autonomous.