Senior Software Engineer - Security Focus

Video Solutions teams in the R&D center in Krakow have been growing dynamically since 2019. Currently, we have more than 150 specialists on board working on solutions for fixed cameras, video analytics, video management systems as well as access control.We bring advanced video and analytics capabilities to public safety and commercial customers including healthcare, airports, retail, critical infrastructure and public venues. Video is no longer reactive – looking back at what has taken place – but it also informs proactively, issuing alerts in real-time when a person, object or vehicle appears or a perimeter is crossed. This critical intelligence enables users to take the right action more quickly. As part of Motorola Solutions, Avigilon Alta Video offers a comprehensive suite of security solutions that leverage cutting-edge technology to improve situational awareness and enhance public safety. Join our team and help shape the future of video surveillance technology with Avigilon Alta Video in Motorola Solutions.

Are you a backend developer who finds themselves constantly pointing out potential vulnerabilities in code reviews? Do you enjoy not just finding security flaws, but getting your hands dirty to fix them?

The Avigilon Alta team is seeking a Software Engineer with a Security Focus to bridge the gap between our Security Audit teams and our Core Engineering teams. While traditional security engineers focus on policy and finding threats, your role is to engineer the solutions.

You will work within the engineering team to squash security bugs, refactor legacy code for safety, and build shared libraries that make it easier for the rest of the team to ship secure code by default.

Responsibilities:

• Take ownership of security findings from SAST/DAST tools, penetration tests, and bug bounties.

• Write and deploy production-grade code fixes in Go to resolve vulnerabilities

• Reproduce reported vulnerabilities locally to verify the issue, write the patch, and verify the fix

• Refactor existing backend microservices to improve their security posture without sacrificing performance or scalability

• Design and implement security-focused middleware and libraries

• Harden Docker containers and Kubernetes configurations to minimize the attack surface

• Act as the "Security Champion" within the development team, helping regular Software Engineers understand why a specific pattern is insecure and how to write it correctly

• Participate in code reviews with a specific security logic

• Assist in integrating automated security tools into our CI/CD pipeline, ensuring they provide actionable feedback

Basic requirements:

• Strong coding skills with experience in building clean, maintainable backend services (experience with Go/C++ is a huge plus)

• Solid understanding of microservices architecture, REST/gRPC APIs, and database interactions (e.g., PostgreSQL)

• Practical knowledge of common web application vulnerabilities (OWASP) and how to prevent them in code

• Experience investigating bugs or security issues and delivering code patches to production systems

• Comfortable working with Linux environments, containers (Docker), and CI/CD workflows

• Basic understanding of core security concepts like authentication protocols and applied cryptography (hashing, encryption) in a backend context

• Genuine curiosity about how software breaks and a desire to stay up-to-date with the latest attack vectors

• A collaborative attitude, with the ability to thrive autonomously while actively sharing knowledge with the team

• Good level of English