Server Security Engineer

Svitla Systems Inc. is looking for a Server Security Engineer for a full-time position (40 hours per week) in Poland. Our client is the leading global provider of enterprise software and services that enable companies to manage and optimize their environmental, health, safety, and sustainability processes. 

You'll work closely with infrastructure, operations, and development teams to ensure that server and infrastructure environments remain secure, compliant, and resilient. Reporting to the Director of Information Security, this role is responsible for coordinating and managing the patching lifecycle for servers and other infrastructure components across cloud and on-premises environments, while supporting a holistic approach to server and endpoint hardening. 

Requirements

• 5+ years of experience in server administration, infrastructure security, or systems engineering, with at least 1 year of experience in dedicated patch management or vulnerability remediation.

• Bachelor's degree in Management Information Systems, Computer Science, Cybersecurity, or a related field.

• Strong knowledge of Windows Server and Linux (RHEL, CentOS, Ubuntu) operating system administration and security.

• Hands-on experience with patch management platforms such as WSUS, SCCM/MECM, Ansible, Puppet, Chef, or equivalent tools.

• Familiarity with vulnerability management tools such as Tenable Nessus, Qualys, or Rapid7.

• Understanding of CIS Benchmarks, DISA STIGs, and NIST SP 800-123 server security guidelines.

• Basic background in scripting (PowerShell, Bash, or Python) to support automation of patching workflows and compliance reporting.

• A solid understanding of network protocols, server infrastructure, and cloud environments (AWS, Azure, or GCP).

• Experience working cross-functionally with infrastructure, operations, and security teams.

• Ability to assess vendor security advisories and CVEs to prioritize patching based on risk.

• Excellent and professional communication skills (written and verbal) with an ability to articulate complex topics clearly and concisely.

• The ability to communicate patch schedules, risk impacts, and compliance status effectively to both technical and non-technical audiences.

• Excellent analytical skills with the ability to manage multiple patching cycles and projects under strict timelines in a dynamic environment.

Nice to have

• Certifications relevant to CompTIA Security+, CompTIA Linux+, Microsoft Certified: Azure Security Engineer, Red Hat Certified System Administrator (RHCSA), or equivalent.

• Experience working in Agile, DevSecOps, or ITIL-aligned environments.

Responsibilities

• Own and manage the end-to-end server patching lifecycle, including planning, scheduling, testing, and validation of patches across Windows and Linux server environments.

• Coordinate patching activities with infrastructure, operations, and application teams to minimize disruption while ensuring timely remediation of vulnerabilities.

• Maintain a patching calendar and track patch compliance metrics, reporting status, and risk exposure to leadership and relevant stakeholders.

• Evaluate patches and security advisories from vendors (Microsoft, Red Hat, CentOS, etc.) and third-party sources to assess risk and prioritize remediation efforts.

• Perform server hardening in accordance with industry benchmarks such as CIS Benchmarks and DISA STIGs.

• Support vulnerability scanning of server and infrastructure environments and drive remediation of identified findings.

• Assist in the development and maintenance of baseline security configurations for servers, hypervisors, and related infrastructure.

• Collaborate with the Security Operations Center (SOC) to investigate and respond to server-related security incidents.

• Support and consult with infrastructure and operations teams on server security best practices.

• Assist in the creation of security policies, procedures, and training related to server and infrastructure security.

• Assist in the development of automated patching and compliance validation processes.

• Support integration of server security tooling, including vulnerability scanners, endpoint detection and response (EDR) solutions, and configuration management platforms.

We offer

• US and EU projects based on advanced technologies.

• Competitive compensation based on skills and experience.

• Regular performance appraisals to support your growth.

• Flexibility in the workspace, either remote or in our welcoming office.

• Comprehensive medical insurance after one month.

• MultiSport card with access to 2500 sports facilities all over Poland

• Bonuses for recommendations of new employees.

• Bonuses for article writing, public talks, and other activities.

• 15 vacation days, 10 national holidays, 10 sick leaves, and family days off.

• Personalized learning program tailored to your interests and skill development.

• Free tech webinars and meetups organized by Svitla.

• Welcome and anniversary presents, gifts for children, and more.

• Regular corporate events and meetups.

• Awesome team, friendly and supportive community!