Security Engineer

About Level Access: Level Access is the trusted pioneer and industry leader in digital accessibility solutions, empowering enterprises to build web, mobile, and software surfaces that are completely compliant and usable for individuals with disabilities. By combining advanced automated auditing software with deep legal and technical expertise, Level Access helps organizations navigate strict global accessibility mandates. Operating as a fast-paced, remote-first innovator, the company is deeply committed to uncompromised digital safety, striving to maintain the highest security bars while expanding software inclusivity for users worldwide.

Position Overview

We are seeking a highly motivated, systems-fluent, and defense-minded Security Engineer to join our centralized Information Security division under a permanent, full-time remote configuration open across Poland. Reporting directly to the Senior Director of Information Security, you will act as a primary sentinel protecting our business operations, cloud architectures, and digital accessibility platforms from evolving threats and malicious actors. Shifting completely away from routine standalone non-regulated copywriting, generic website layout shifts, or basic customer helpdesk ticketing, you will operate an active security incident triage, vulnerability orchestration, and automated governance laboratory. This position requires an engineering professional with 1–3 years of cybersecurity history (or 4–6 years of equivalent technical IT experience) who manages risk vectors fluidly natively using Cybersecurity and infrastructure primitives, leverages business AI toollines to streamline defensive operations, audits corporate SaaS ecosystems, and maintains consistent daily schedule alignment to provide critical overlap hours with North American EST business hours.

Key Responsibilities

• Security Signal Triage Governance: Lead the technical evaluation and initial triage of disparate tier-2 security alerts, system logs, and security events, orchestrating rapid incident isolation to protect business operations natively utilizing Cybersecurity methodologies.
• Vulnerability Lifecycle Management: Monitor and analyze continuous security tool feeds and vulnerability scanners, translating abstract risk vulnerabilities into actionable remediation guidelines for downstream software groups.
• Security Awareness Engineering: Run and upgrade the corporate security awareness platform—designing simulated phishing exercises, monitoring compliance completion metrics, and supporting distributed users to reduce social engineering risk.
• Audit & Compliance Instrumentation: Collaborate directly with internal and external stakeholders to compile information, package evidence logs, and support rigorous compliance audits and governance assessments.
• AI-Native Process Automation: Evaluate and deploy modern AI tools and automated workflows to accelerate compliance mapping, elevate incident response speeds, and optimize day-to-day security efficiency.
• SaaS Risk Analysis & Mitigation: Undertake targeted technical micro-projects to assess, isolate, and eliminate infrastructure risks across a highly distributed, remote workforce reliant on SaaS productivity suites.
• Cross-Functional Collaboration: Partner closely with distributed DevOps and software engineering teams to advocate for secure coding standards and modern application security practices throughout the development lifecycle.

Required Skills & Qualifications

• Possess a formal Bachelor’s degree from an accredited institution in Computer Science, Information Security, or a related quantitative technical field, paired with 1–3 years of professional info-sec history; or hold 4–6 years of equivalent technical IT infrastructure experience.
• Grounded Cloud and Protocol Literacy: Strong, foundational comprehension of networking protocols, operating systems, and prominent enterprise cloud platforms (such as AWS, Azure, GCP, and Microsoft 365).
• Demonstrated history using or configuring enterprise security tools and technologies (including SIEM nodes, IDS/IPS filters, DLP rules, or vulnerability scanners).
• Practical tool familiarity leveraging modern business AI utilities or prompt-driven interfaces (such as Microsoft Copilot, Atlassian Rovo, or Anthropic Claude) to optimize workflows.
• Outstanding analytical and troubleshooting strengths in English, with an established capability to manage multiple urgent tasks independently inside a fast-paced environment.
• Mandatory Time Zone Syncing: Absolute willingness and professional flexibility to maintain consistent daily operational overlap hours with North American EST (Eastern Standard Time) business hours.
• Location Context: Position operates under remote parameters open exclusively to qualified security engineers residing permanently within Poland.

Preferred Strategic Indicators (Nice to Have)

• Prior experience or direct technical interest navigating data privacy regulations, data retention protocols, or compliance standards (such as SOC 2, ISO 27001, or GDPR).
• Possess formal industry certifications (e.g., CompTIA Security+, CEH, or matching cloud security badges).
• Familiarity with modern software engineering workflows, SaaS application architectures, or a basic understanding of web accessibility standards (WCAG).

What We Offer

• Competitive European Cybersecurity Remuneration: A market-competitive annual base salary calibrated directly to your technical experience level, supplemented by structured performance bonus opportunities.
• 100% remote workspace infrastructure autonomy across Poland, eliminating daily office commuting costs.
• Direct High-Scale Infrastructure Ownership: Unique professional growth milestones achieved by anchoring defensive boundaries for a prominent tech platform leading the digital accessibility space.
• Comprehensive employee benefits provisions, inclusive workplace networks, and an unlimited vacation/flexible time off (FTO) parameters to ensure exceptional personal balance.
• Access to robust continuous learning avenues, professional development resource blocks, and a transparent culture built on proactive execution.