[Hiring] Senior Cyber Security Engineer @Colliers International EMEA

Role Description

The Senior Cyber Security Engineer will work closely with IT and business teams to review existing and new applications and make sure applications security are aligned with security best practices. This role is also responsible to define and ensure security requirements are implemented on any IaaS, PaaS or on-prem infrastructure and to identify risks within SaaS platforms that could impact the confidentiality, integrity, and availability of information assets. As a Senior Cyber Security Engineer, you will be hands-on and have wide-ranging opportunities to shape and support the security of Colliers.

• Product security reviews: Perform security reviews on new and existing applications to ensure that all security requirements are implemented and that each application aligns with the organization’s established security baselines. Periodically review and update the security baselines in line with evolving threats, industry standards, and organizational needs.
• Architecture and design: Support the architecture team with threat modeling, assess risks, and help implement security controls and/or mitigations to address identified issues. Steer the implementation of key applications to ensure we are secure-by-design.
• Establish security principles, policies, and governance processes: Design and implement the secure development lifecycle framework and related processes in conjunction with Governance, Risk and Compliance teams. Embed security into all phases of the product lifecycle—from early discovery and threat modeling to design reviews and secure delivery, and ongoing monitoring and testing post-release.
• Vulnerability identification and analysis: Find new and novel ways to identify and resolve security vulnerabilities. This includes static and dynamic code analysis, security scanning, investigation of security reports from InfoSec, or other trusted partners, and direct work with our incident response team on application security issues and incidents. Define scope and oversee applications pentest.

Core responsibilities:

• Perform deep architecture and security reviews on applications (cloud and on-prem) to identify vulnerabilities.
• Design applications security requirements, performing threat modeling and managing applications pentests.
• Support decision-making by determining the tradeoffs between security and business requirements.
• Lead implementation of strategic security initiatives that improve security across Colliers.

Qualifications

• Bachelor’s degree in computer science, Cybersecurity, or a related field (or equivalent experience).
• 5–8+ years of experience in cloud applications, cybersecurity, or related domains.
• Strong experience performing threat modeling and security reviews.
• Possess hands-on experience on whitebox, greybox, and blackbox assessments or oversight applications pen tests focusing on OWASP.

Requirements

• Strong documentation skills.
• Experience working with various IT Teams and non-IT teams of various disciplines.
• The ability to assimilate complex technical challenges and provide appropriate security advice that delivers the right business outcomes.

Benefits

• Remote work in Poland.
• Contract of employment.
• International environment, working in English.
• Private healthcare with rehabilitation, 6 additional days off yearly for parents, cafeteria programme and other benefits.
• Internal training program.
• Job in a company that cares about the sustainable development of the organization.
• Working in a company with the titles: Best Employer 2017 and 2019 awarded by Kincentric (formerly AON) and Investor in Human Capital 2019, 2021, 2022, 2023, 2024 and 2025.