We are looking for an experienced Cyber Security Architect to lead security architecture initiatives across enterprise applications, AI-enabled solutions and cloud platforms. The role will focus on application security, AI security, secure software development lifecycle (SSDLC), compliance and cyber risk management for modern cloud-native and hybrid environments. The ideal candidate will have strong expertise in securing applications built on AWS and Microsoft Azure, as well as experience addressing emerging security risks associated with AI/ML platforms, LLM integrations and data protection. This role requires close collaboration with engineering, DevOps, data science, infrastructure and governance teams to ensure security is embedded throughout the delivery lifecycle.
Responsibilities
- Design and maintain secure architecture patterns for cloud-native and enterprise applications
- Definition and enforcement of application security standards, best practices and secure coding guidelines for Java, Python and .NET applications
- Performance of security architecture reviews, threat modeling and risk assessments for new and existing systems
- Support for secure API design, authentication, authorization, encryption and secrets management strategies
- Collaboration with development and DevOps teams to integrate security controls into CI/CD pipelines and SDLC processes
- Evaluation and recommendation of security tools and technologies including SAST, DAST, SCA, container security and cloud security solutions
- Implementation of security controls for AI/ML and Generative AI solutions
- Assessment of security risks related to Large Language Models, AI APIs, model integrations and AI data pipelines
- Mitigation of AI-related risks such as prompt injection, data leakage, model poisoning, insecure output handling and unauthorized model access
- Development and governance of security architectures for AWS and Microsoft Azure environments, ensuring secure configuration across cloud services, networking, IAM, storage and compute resources
- Support for Zero Trust principles, least-privilege access and identity federation
- Conduct cyber risk assessments and provide recommendations for mitigation strategies
Requirements
- Minimum 7 years of experience in cyber security architecture across enterprise applications, cloud platforms and AI-enabled solutions
- Expertise in securing applications built on AWS and Microsoft Azure
- Proficiency in Java, Python and .NET application security
- Skills in security architecture reviews, threat modeling and risk assessments
- Knowledge of secure API design, authentication, authorization and secrets management
- Familiarity with SAST, DAST and SCA tools alongside container security and cloud security solutions
- Background in AI/ML and Generative AI security including LLMs, AI APIs and AI data pipelines
- Understanding of Zero Trust principles, least-privilege access and identity federation
- Competency in compliance frameworks such as ISO 27001, SOC 2 and NIST
- Qualifications in CIS, GDPR and PCI-DSS regulatory requirements
- Capability to develop security policies, standards, procedures and technical documentation
- Skills in cyber risk assessment, incident analysis and root cause investigation
- English proficiency at B2 level or higher
We offer
- We gather like-minded people:
- Engineering community of industry professionals
- Friendly team and enjoyable working environment
- Flexible schedule and opportunity to work remotely within Poland
- Chance to work abroad for up to 60 days annually
- Business-driven relocation opportunities
- We provide growth opportunities:
- Outstanding career roadmap
- Leadership development, career advising, soft skills, and well-being programs
- Certification (GCP, Azure, AWS)
- Unlimited access to LinkedIn Learning, Get Abstract, Cloud Guru
- English classes
- We cover it all:
- Stable income (Employment Contract or B2B)
- Participation in the Employee Stock Purchase Plan
- Benefits package (health insurance, multisport, shopping vouchers)
- Strategically located offices featuring entertainment and relaxation zones, table tennis and football, free snacks, fantastic coffee, and more
- Referral bonuses
- Corporate, social and well-being events
- Please, note:
- The set of bonuses might vary based on the role you apply for – specifics will be discussed with our recruiter during the general interview.
- We will reach out to selected candidates exclusively.
EPAM is a leading global provider of digital platform engineering and development services. We are committed to having a positive impact on our customers, our employees, and our communities. We embrace a dynamic and inclusive culture. Here you will collaborate with multi-national teams, contribute to a myriad of innovative projects that deliver the most creative and cutting-edge solutions, and have an opportunity to continuously learn and grow. No matter where you are located, you will join a dedicated, creative, and diverse community that will help you discover your fullest potential.