Senior Security Engineer
Senior Security Engineer
At AirHelp, we are scaling fast - expanding our products, investing in AI-powered capabilities, and redefining how millions of passengers experience air travel. But speed without security creates friction. That’s why we’re looking for a Senior Security Engineer who sees security as a growth enabler, not a blocker.
Role Overview
This is a role for someone who wants real ownership: shaping how AI is used securely, embedding defense into developer workflows, and building modern guardrails that let Product and Engineering move fast with confidence. If you are driven by impact, enjoy solving complex problems, and want to design security for the next generation of travel tech, you’ll feel at home here.
Details
- Location: Kraków, Gdańsk or Warsaw
- Work type: Hybrid, 2 days per week in the office
Responsibilities
You will drive one or several domains from below:
- Secure AI Adoption - Design and implement the governance framework for AI agents and LLM-powered tools. Establish identity controls, access boundaries, and automated guardrails that allow autonomous systems to operate safely.
- Security Built Into Engineering - Partner deeply with engineers to embed automated security checks directly into CI/CD pipelines, creating a security-by-default environment without slowing delivery.
- Cloud & Edge Protection - Own security controls across AWS infrastructure and optimize Cloudflare (WAF, rate limiting, and bot mitigation) to safeguard users and systems at scale.
- Developer Enablement - Secure the entire developer ecosystem - from AI coding assistants to internal tooling, ensuring the inner development loop remains both fast and protected.
- Threat Modeling That Drives Action - Run assessments and vulnerability reviews that drive real change, prioritizing risks and delivering fixes that matter, especially for new AI-driven product features.
- Incident Leadership - Strengthen detection and response capabilities, reduce reaction times, and continuously elevate automated defense tooling.
First 12 Months
You’ll deliver:
- Optimized Cloud Posture: Measurably strengthen our AWS security controls and infrastructure hardening.
- Advanced AI Guardrails: Successfully deploy automated security gates specifically designed to monitor and secure our internal and external AI tool usage (e.g., preventing prompt injection or data leakage).