Senior Cyber Security Engineer

We are currently seeking a Senior Cyber Security Architect with hands-on and potentially team leading experience to join our team and play a crucial role in enhancing our security posture. In this role, you will be responsible for helping us tackle various security challenges, including improving the security of our core product application and infrastructure, streamlining our log management and alerting system, and strengthening our incident response capabilities. Your expertise and commitment to security will be instrumental in ensuring the protection of our assets and maintaining the trust of our customers.

You’ll be reporting directly to the CTO, working with a fellow security analyst and be a part of a larger technical organization within Rossum.

Rossum’s vision is a world that builds rather than types. We leverage state-of-art AI to eliminate useless paperwork and make the whole world go faster. If you want to know more about the company and how we are making B2B communication frictionless, you’ll find detailed information at the bottom of the job description.

The role

Our technology stack is what you would expect in a modern startup, without any legacy baggage. Our Python+React app and infrastructure run in terraformed Kubernetes clusters on AWS using GitLab-driven CI/CD. We utilize Okta for SSO and Workspace1 for endpoint management. Our IT infrastructure is centered around GSuite, Atlassian, and Slack. We operate predominantly in the cloud, with a zero-trust network model implemented in our offices.

As a security architect you’ll be responsible for:

• Maintaining company threat model, monitoring security stance, creating policies and providing assistance with audits, client inquiries or various security related issues 

• Security partner for our engineering teams who co-owns the security landscape around our core application and infrastructure. This role requires a practical understanding of web, cloud, and network security, along with experience in threat modeling for security reviews. The ideal candidate should be able to manage security infrastructure hands-on as needed.

• Co-owns and automates basic IT security operations, including log management system administration, managing log sources, and handling security alerts. 

In our team we value open communication and an inclusive environment. Our long-term goal is to do things as efficiently and sustainably as possible, because security is a perpetual work, and it never ends.

Your role will have a direct impact on Rossum’s security stance, especially in relation to the safety of our clients. In addition, you’ll be ensuring that our almost 200 employees are working in the most secure and compliant way possible.

You’ll work closely with development and infrastructure teams, to define the scale of the role and its challenges - we are still a small company and so are the data amounts and issues we're dealing with, so it's feasible to be a kind of "security full-stack" person as you'll be planning, managing and using the security systems, processes and policies.

You should apply if

• You are good at planning, coordinating, and delivering short-term cross-team security improvements and/or remediation activities

• You have a wide range of general knowledge about good security practices and have a holistic approach to security of companies - like e-mail security setup, basic networking, access rights management, and many more

• You’d like to aim for a team-leading role in the future

• You have a background in Linux system administration and scripting (preferably in Python)

• You have experience with log management and security monitoring systems - as an admin (hence the Linux system administration background) and as a security analyst (to be able to understand the logs, set up security alerts, and solve them)

• You like to help others and also are not afraid to ask for help for yourself

• You’re a geek (this is not mandatory, but it helps 🙂) 

What we offer (Benefits)

We are building a hyper-growth SaaS startup following the best Silicon Valley practices, in Prague.

• Stock options
• 5 weeks of vacation
• 5 sick days / personal time off
• Flexible working hours, hybrid regime of work
• Extra two weeks for paternity leave
• High end laptop & other necessary tech (Macbook Pro 14” or Lenovo 14” laptop with Linux available with this position)
• English & Czech language lessons on all levels
• Tasky snacks, food and beverages in the office
• Multisport card to access sports facilities
• Referral program