Veeam
Veeam, the #1 global market leader in data resilience, believes businesses should control all their data whenever and wherever they need it. Veeam provides data resilience through data backup, data recovery, data portability, data security, and data intelligence. Based in Seattle, Veeam protects over 550,000 customers worldwide who trust Veeam to keep their businesses running. Join us as we move forward together, growing, learning, and making a real impact for some of the world’s biggest brands. The future of data resilience is here - go fearlessly forward with us.
About the Role
Join us as a Cloud Application Security Engineer and help shape the security of Veeam products, enhancing data protection and driving business resilience.
What You’ll Do
- Conduct regular security assessments, vulnerability scanning, and penetration testing of Veeam products and services
- Work with development teams to integrate secure development practices into the software development lifecycle
- Collaborate on the design and implementation of security within public cloud environments
- Threat modelling and design reviews for new and existing Veeam products
- Conducting manual source code security audits
- Using automated application-analysis tools
What You’ll Get
- 29 paid days off annually plus three global VeeaMe Days for self-care and paid volunteer time
- Paid parental, maternity, and paternity leave
- Fully covered family medical plan, dental, rehab, and vaccinations
- Life, critical illness, and disability insurance
- Employer pension contribution via PPK
- Monthly lunch and wellness benefits
- Six free therapy sessions, plus legal and financial advice
- Professional training and education, including courses and workshops, internal meetups, and unlimited access to our online learning platforms (LinkedIn Learning, Athena, O’Reilly) and mentoring through our MentorLab program
What You’ll Bring
- 3-5 years of experience in application security
- Familiarity with cloud platforms, preferably Azure, or AWS
- Experience with multiple programming languages (such as C/C++/C#/JavaScript)
- Experience with Infrastructure as Code, such as ARM/Bicep, Terraform or Ansible
- Experience with CI/CD tools, preferably Jenkins
- A good understanding of the principles of secure software development
- A desire to develop in the field of application security
- A lively and flexible mind, clear logic, and analytical skills
- The desire and ability to work as part of a team
- English proficiency for daily communication within international teams
Bonus Skills
- Knowledge of scripting languages (Python, PowerShell, Bash, Ruby, etc.)
- Knowledge of modern cryptographic algorithms
- Experience with DAST and SAST tools
- Skills using OWASP ZAP, Burp Suite, Kali Linux tools
- Certifications such as OSCP, CEH, CSSLP, CCSP, AWS Certified Security, Azure Cybersecurity Architect, etc
