AirHelp

Department: Engineering

Location: Kraków

Description

Help us stay one step ahead.

We're looking for a Security Engineer who thrives in fast-paced environments, cares deeply about protecting users, and sees cybersecurity as a strategic enabler, not a blocker. You’ll take ownership of strengthening our security posture, embedding best practices across the development lifecycle, and ensuring we grow with resilience and trust.

You’ll join a product-led, tech-forward organization that serves millions of travelers worldwide—and be part of a team that values impact, curiosity, and collaboration.

It's a hybrid (2 days/month from the office) job opportunity based in Kraków, Gdańsk, or Warsaw.

What you'll own and drive:

• Take ownership of security controls across our AWS infrastructure - ensuring we scale securely, stay compliant, and move fast without compromising trust.
• Optimize edge protection with Cloudflare - tuning WAF, rate limiting, and bot detection rules to keep millions of users safe and systems performant.
• Embed security into how we build - working shoulder-to-shoulder with engineers to integrate checks and policies into CI/CD, and automate enforcement.
• Run threat modeling and vulnerability assessments that drive real change, not just paperwork - prioritizing risks and delivering fixes that matter.
• Lead the charge when it counts - detect and respond to security incidents, reduce response time, and continuously improve tooling and readiness.
• Champion security across the company - through training, documentation, and clear guidance that empowers teams to build securely by default.

What you'll deliver in first 12 months:

• Strengthen our cloud security posture by working on optimizing security controls across our infrastructure.
• Raise the bar for application security - hardening APIs and critical web surfaces against common and emerging threats.
• Embed additional automated security gates into CI/CD to further enhance code and application security.
• Build and launch new security automations, streamlining detection and response workflows to cut manual effort and boost visibility.

What sets you apart:

• 4+ years of hands-on experience as a Security Engineer, delivering real impact in cloud-native, fast-moving environments.
• Deep expertise in securing AWS environments, plus strong instincts for what matters in production.
• Strong practical experience with WAFs, Zero Trust, and security rule tuning.
• Confident working across the SDLC, owning CI/CD security, managing secrets, mitigating supply chain risks, and integrating SAST/DAST tools.
• Hands-on experience with Infrastructure as Code (IaC) (Terraform) and cloud-native tooling.
• Fluent in automation, scripting with Python, Go or others to scale defenses and reduce manual work.
• Solid grasp of compliance landscapes (ISO 27001, GDPR, SOC 2) without losing sight of practicality.
• Communicate clearly across all levels, from devs to leadership, and elevate teams through training, guidance, and collaboration.

Why AirHelp?

• Culture of Autonomy: No micromanagement, no politics. Just builders building.
• Growth Investment: Dedicated learning days, personal development plans, internal workshops, mentorship, and language classes.
• Live well: Life/health insurance, private healthcare, wellbeing access (Mindgram), gym card.
• Flexible Work: Choose contract type (B2B or employment), hybrid setup (2 days/month in office), 2 weeks work-from-anywhere, plus flexible benefits to choose from (gym card, various subsidies).
• Stay connected: Annual travel allowance, team days, company events.
• Tech you need: MacBook and top-tier tools from day one.
• Extra perk: Unlimited, free access to AirHelp’s services – for you and your loved ones.