Role overview

Senior Cyber Security Engineer (Apps)| EMEA

Requirements and responsibilities

Readable role content extracted into sections for faster review.

Your key activities:

  • Product security reviews. You will perform security reviews on new and existing applications to ensure that all security requirements are implemented and that each application aligns with the organization’s established security baselines. Periodically, you will review and update the security baselines in line with evolving threats, industry standards, and organizational needs.
  • Architecture and design. You will support the architecture team with threat model, assess risks, and help implement security controls and/or mitigations to address identified issues. You will directly steer the implementation of key applications to ensure we are secure-by-design.
  • Establish security principles, policies, and governance processes, including design and implement the secure development lifecycle framework and related processes in conjunction with Governance, Risk and Compliance teams. You will embed security into all phases of the product lifecycle—from early discovery and threat modeling to design reviews and secure delivery, and ongoing monitoring and testing post-release.
  • Vulnerability identification and analysis. You will be responsible for finding new and novel ways to identify and resolve security vulnerabilities. This includes static and dynamic code analysis, security scanning, investigation of security reports from InfoSec, or other trusted partners, and direct work with our incident response team on application security issues and incidents. You will define scope and oversee applications pentest.

Core responsibilities:

  • Perform deep architecture and security reviews on applications (cloud and on-prem) to identify vulnerabilities
  • Design applications security requirements, performing threat modelling and managing applications pentests.
  • Support decision-making by determining the tradeoffs between security and business requirements
  • Lead implementation of strategic security initiatives that improve security across Colliers

Key skills and qualifications:

  • Bachelor’s degree in computer science, Cybersecurity, or a related field (or equivalent experience).
  • 5–8+ years of experience in cloud applications, cybersecurity, or related domains.
  • Strong experience performing threat modelling and security reviews.
  • Possess hands-on experience on whitebox, greybox, and blackbox assessments or oversight applications pen tests focusing on OWASP.

Must have skills:

  • Strong documentation skills.
  • Experience working with various IT Teams and non-IT teams of various disciplines.
  • The ability to assimilate complex technical challenges and provide appropriate security advice that delivers the right business outcomes.

Preferred:

  • Relevant certifications: CISSP, CCSP, or equivalent.
  • Expert knowledge of zero trust, identity, threat detection, and threat modelling and security practices.

What We value:

  • Self-motivated, experience in solving complex problems.
  • Strong communication and collaboration skills who feels comfortable working closely with Architecture and Infrastructure teams.
  • Ability to learn and apply new technologies quickly and in complex deployments.

What we offer:

  • Remote work in Poland;
  • Contract of employment;
  • International environment, working in English;
  • Private healthcare with rehabilitation, 6 additional days off yearly for parents, cafeteria programme and other benefits;
  • Internal training program;
  • Job in a company that cares about the sustainable development of the organization;
  • Working in a company with the titles: Best Employer 2017 and 2019 awarded by Kincentric (formerly AON) and Investor in Human Capital 2019, 2021, 2022, 2023, 2024 and 2025.
Similar roles

Keep a backup shortlist.

Browse roles
FocusApplication SecurityRole area
Seniority signalSeniorCandidate level
StackStack listed in descriptionPrimary skills
Location1 accepted countryEligibility

Stack

Use these tags to compare similar remote roles.

Location eligibility

Candidates should apply only when their profile country is listed here.

Your profileCountry not setSign in to check your country against this role.

Hiring flow

WithMira shows the role, then sends candidates to the company application.

1Check role fit, stack, and location eligibility in WithMira.
2Open the company application page from the tracked apply link.
3Save the role or subscribe for similar opportunities before leaving.
Apply on company siteCompany siteOpen link