Senior Platform Engineer (Security & Compliance)

Northmill Bank AB S.A Oddział w Polsce is a Swedish bank with a technical focus, operating with 2,500 merchants and 600,000 end users. The company has 260 employees across four countries, including an Engineering Center in Katowice with about 80 experienced engineers. Their goal is to improve financial life by being digital yet personal.

• 5+ years of commercial experience in platform engineering, cloud security, security engineering, DevSecOps, or similar roles.
• Strong hands-on experience with AWS security services and security controls in cloud environments.
• Practical experience with vulnerability management, security alerting, and cloud security monitoring tools and processes.
• Experience with security incident response and operational handling of security-related issues.
• Experience with web application security and secure design practices.
• Experience collaborating with product or engineering teams to improve security of applications and platform solutions.
• Experience supporting technical audits, compliance activities, or security control reviews in production environments.
• Experience working with technical security controls in regulated or highly controlled production environments.
• Strong understanding of cloud security practices, auditability, and operational security requirements.
• Willingness and interest to collaborate and work in a team.
• Poland as country of residence and Polish or EU citizenship.

Nice to have:

• Experience with production systems requiring strong security, auditability, and operational controls.
• Experience in regulated environments or financial sector.
• Experience with PCI DSS or similar regulatory or industry security frameworks.
• Experience collaborating with penetration testers and supporting remediation activities.
• Experience with cloud security, vulnerability management, CNAPP, SIEM, or incident management tooling.
• Experience with AWS services such as AWS WAF, Amazon GuardDuty, AWS Network Firewall, AWS CloudTrail, AWS KMS, and AWS Shield.
• Experience with Wiz, Microsoft Sentinel, or similar security platforms.
• Exposure to Infrastructure as Code and platform engineering practices.
• Exposure to Agile development methodologies.

• Design, develop, and improve security-related platform capabilities used across modern financial systems.
• Strengthen security posture of AWS-based environments through cloud security controls, threat detection, vulnerability management, incident response, and operational security processes.
• Partner with development teams, Security team, and external partners such as penetration testers and auditors to impact platform and engineering standards.
• Support product and engineering teams in designing secure solutions and improving security of applications and platform components in regulated environments.
• Participate in internal security reviews and technical auditing activities to identify risks and improve security posture.
• Act as a main technical owner for security, compliance, and audit-related activities on the Platform side.
• Drive vulnerability remediation efforts by helping engineering teams identify, prioritize, and address security findings.
• Work with AWS security services and tools including AWS WAF, Amazon GuardDuty, AWS Network Firewall, AWS CloudTrail, AWS KMS, AWS Shield, Wiz, Microsoft Sentinel, incident.io, Jira, Confluence, and Git.
• Use modern AI development tools in daily work.

Poland as country of residence and Polish citizenship or EU country citizenship required.