Senior Information Security Engineer

We are a custom product engineering company that supports both multinational organizations and scaling startups to solve their most complex business challenges. With a global team of over 4,000 highly skilled developers, consultants, analysts and product owners, we engineer technology that redefines industries and shapes the way people live.

About the role:

As a Senior Information Security Engineer, become a part of a cross-functional development team working for The global leader in leisure, travel, and tourism industries that offers a high-quality end-to-end customer experience, from booking to accommodation and transportation.

Responsibilities:

• Secure coding, secure design, and security automation skills and capabilities in domains
• Full ownership of complex topics or multi-faceted initiatives and outcomes panning across your domain
• Creating software products that are secure by default and work collaboratively with software engineers, cloud engineers and architects to ensure information security is considered throughout the design and implementation of software products and services
• Tooling and automation to identify possible threats and vulnerabilities before they are promoted to production, thereby helping them to protect our customers’ data
• Taking an engineering approach to solving security problems, selecting and guiding teams to use the right tools for the right jobs and thus solve the given business and technical problems in an efficient way
• Taking the initiative to translate ideas into outcomes
• Regularly coaching, guiding and developing more junior colleagues
• To be responsible for the operation and constant security optimisation and adoption of Client`s Web Application Firewall infrastructure

Requirements:

• Proficient experience in working with CDN and WAF solutions like Akamai, AWS or Cloudflare. Bot detection, DDoS protection, cache optimisation
• Deep knowledge and hands-on experience on Web technologies - RFC’s, request/response lifecycle, DNS, protocols, status codes, cookies, headers, proxies, certificates, browsers, caching, etc
• Experience in front-end development is a huge plus
• Advanced experience in designing secure, highly available, distributed applications in an Amazon Web Services (AWS) environment. EKS, Lamdba functions, Lambda@Edge, CloudFront, S3, API Gateways knowledge is preferable
• Ability to understand and analyse complex security events as well as adjust the resulting ongoing security profiles
• Monitoring experience - Datadog, Grafana. Trend analysis, deep investigation, issue tracking
• Experience in defining, planning, implementing, maintaining, and upgrading security measures, guardrails and controls for WAF and CDN
• Familiar with information security standards & practices and their practical implications
• Experienced in securing APIs, REST API and GraphQL API using AWS AppSync
• Deep automation skills, hands-on experience with agentic LLMs, experience with some scripting and programming languages such as Python
• Advanced experience with CI/CD, preferably Gitlab CI
• Experience with Infrastructure as a Code tools. Preferably Terraform, CloudFormation, AWS CDK
• Being customer centric, passionate about delivering great digital products and services
• Passionate about continuous improvement, collaboration and great teams
• Strong problem-solving skills coupled with good communication skills
• Understanding of social and ethical implications of software engineering
• Open minded, inquisitive, life-long learner
• Comfortable with ambiguity, highly autonomous

What`s in it for you?

• Strong community: Work alongside top professionals in a friendly, open-door environment
• Growth focus: Take on large-scale projects with a global impact and expand your expertise
• Tailored learning: Boost your skills with internal events (meetups, conferences, workshops), Udemy access, language courses, and company-paid certifications
• Endless opportunities: Explore diverse domains through internal mobility, finding the best fit to gain hands-on experience with cutting-edge technologies
• Enjoy radical flexibility – work remotely or from an office, your choice
• Care: Medical subscription to Regina Maria, meal tickets of 16 ron net/day worked

About us:

At Confidencial (Apenas para Cadastrados), we are always exploring innovations, empowering each other to achieve more, and engineering solutions that matter. With us, you’ll work with cutting-edge technologies, contribute to impactful projects, and be part of a One Team culture that values collaboration and progress.
In Romania, we welcome top-tier tech talent — whether from our Bucharest office or fully remotely. Tap into deep industry knowledge, grow your career, and make an impact in an empowering environment.

Want to learn more about us? Follow us on Instagram, Facebook, .

Explore, empower, engineer with Confidencial (Apenas para Cadastrados)!

Interested already? We would love to get to know you! Submit your application. We can’t wait to see you at Confidencial (Apenas para Cadastrados).

AWS CloudFormation

Web Application Firewall (WAF)