We are looking for an R&D Security Specialist to join one of our teams - the IT Security team.

YOUR DAILY CHALLENGES

• Collaborate with developers and product teams to prioritise security issues and tasks within Agile development lifecycles;
• Analyse results from security tools like Snyk (SAST), Wiz (CNAPP), and Bright (DAST) to assess risks and recommend remediation priorities;
• Define and maintain security practices, including secure code reviews, source code protection, and internal security awareness initiatives;
• Conduct risk assessments and establish treatment plans for missing or partially implemented security controls;
• Act as the primary liaison between R&D, IT, and Product Management teams to coordinate security initiatives and align on priorities;
• Support security awareness among development teams through Security Champions programs and knowledge-sharing initiatives;
• Monitor the effectiveness of security controls, participate in internal audits, and maintain security documentation and evidence for compliance.

OUR EXPECTATIONS

• 2+ years of professional experience as a software developer, DevOps engineer, QA engineer with a security focus, or Application Security specialist;
• Understanding of R&D and software development environments, including Agile methodologies, backlog management, Jira, and CI/CD pipelines;
• Solid knowledge of core security concepts, including OWASP Top 10, dependency management, and secure coding practices;
• Familiarity with security tools such as Snyk, Checkmarx, SonarQube, or similar (or strong willingness to learn);
• Ability to analyse vulnerabilities and communicate priorities effectively to technical and non-technical stakeholders;
• Understanding of security frameworks and regulations such as GDPR, CVSS, and secure SDLC principles;
• Strong collaboration and communication skills with the ability to work across interdisciplinary teams;
• Excellent English proficiency (written and verbal);
• Bachelor's degree in Computer Science, Software Engineering, Cybersecurity, or related field preferred.

CONSIDERED A PLUS

• Experience with web application firewalls (WAFs), XDR, cloud monitoring, or API security tools;
• Hands-on experience with penetration testing tools or workflows;
• Previous involvement in Security Champions programs, internal training, or peer knowledge-sharing initiatives;
• Security certifications such as CISSP, CSSLP, CompTIA Security+, CEH, or similar;
• Experience with DevSecOps practices and security automation in CI/CD pipelines;
• Knowledge of container security (Docker, Kubernetes security scanning);
• Background in threat modelling or security architecture.

WHAT YOU WILL GET

• Protect software innovation and secure development processes for products used by millions of professionals worldwide;
• Choose when and how often you work from our Sofia, Varna, or Plovdiv offices;
• Access to conferences, security training programs, certifications, and self-learning platforms;
• Supportive environment where your security expertise matters and proactive ideas are valued;
• Shape your role and grow within a 450+ person organisation with 25+ years of software excellence;
• Diverse internal events and activities to build relationships across teams;
• Comprehensive benefits and financial compensation.

We're looking for people with creative minds and enthusiasm to join us in developing what's new, what's next, and what best serves our customers' needs.

Ready to make an impact in software development? We'd be happy to welcome you to our team.