Senior Security Engineer

Wrike • Prague • 1m ago

Why This Job is Featured on The SaaS Jobs

Wrike operates a mature, cloud-delivered SaaS platform where customer trust depends on dependable security controls across production infrastructure. This role sits at the intersection of cloud security and platform engineering, with direct ownership over how security is implemented in Kubernetes and GCP environments that underpin a multi-tenant service.

From a SaaS career perspective, the work builds durable expertise in designing “secure by default” systems that enable frequent change without compromising risk posture. Hands-on responsibility for IAM, network segmentation, vulnerability management, and SIEM strategy maps closely to the security challenges seen across subscription software companies running modern cloud stacks. The emphasis on partnering with DevOps and engineering teams also strengthens the cross-functional communication skills that often differentiate senior security practitioners in SaaS.

The position suits an experienced engineer who prefers accountable ownership over discrete components and enjoys translating security principles into practical architecture. It will fit someone comfortable leading through influence, mentoring peers, and making trade-offs visible to both technical and non-technical stakeholders. Candidates motivated by infrastructure security, detection engineering, and operational rigor in cloud-native environments should find the scope aligned.

The section above is editorial commentary from The SaaS Jobs, provided to help SaaS professionals understand the role in a broader industry context.

Job Description

About the Role:

Wrike’s Security team is the frontline defense ensuring the integrity and credibility of the data stored within our platform. In this senior position, you will own and evolve the security posture for Wrike’s production, Kubernetes, and GCP environments. You aren't just maintaining systems; you are architecting a "secure by default" infrastructure that allows our engineering and other teams to move fast without compromising safety.

Your Impact:

Own Infrastructure Security: Design, implement, and improve security controls- including hardening, network segmentation, IAM, and endpoint security - across our entire fleet.
Strategic Defense: Lead the technical direction for cyber security defense, covering enterprise posture management, threat detection, and vulnerability management.
Collaborative Architecture: Partner with ITOps, SysOps, DevOps and XOps to embed security into the core of our architecture and change management processes.
SIEM Evolution: Develop and maintain our SIEM strategy and the surrounding infrastructure to ensure proactive visibility.
Mentorship: Educate and coach engineering teams on secure system design, providing guidance that elevates the security IQ of the entire organization.

Your Qualifications:

Cloud & Container Mastery: Extensive experience with GCP permissions and security configurations within Kubernetes, Azure, and on-prem environments.
Technical Depth: High proficiency in Intrusion Detection, Exploit Dev, Linux Operations and Security Understanding
Security Architecture: Proven ability to identify gaps in cloud designs and recommend enhancements for authentication, authorization, and bastion host setups.
Communication: Ability to distill complex security risks into actionable insights for both technical peers and non-technical stakeholders.
Autonomy: Proven track record of managing large projects with complex deliverables and foreseeing potential roadblocks before they manifest.

Standout Qualities:

Certifications: Possession of industry-recognized credentials such as CISSP, Google Security Engineer or GIAC.
Operational Excellence: Deep hands-on experience with (Open Source) SIEM solutions and Google Security Operations or Google Security Command Center
Philosophy: You view security not just as a job, but as a craft; you balance strict security principles with the pragmatic needs of the business.

Team Dynamics:

Leadership: You will report to Swen Groeneveld, Head of Security Operations
The Squad: You will join a high-performing 14-member team consisting of AppSec and Compliance specialists.
Role Level: This is a Senior level role, requiring you to lead people you do not directly manage.

Our Work Style:

Tech Stack: GCP, Kubernetes (k8s), Terraform, Linux, Rapid7, Tenable, and SIEM platforms.
Methodology: Performance-driven environment utilizing Scrum-based processes, including biweekly and quarterly planning.
Environment: Hybrid work mode.

Why Join Wrike?

5 Weeks of paid vacation
Sick Leave Compensation
- 5 Paid Uncertified Sick Days
- 2 weeks fully paid w/ medical certificate, additional
- 4 weeks paid at 80% salary rate
Parental Leave (fully paid): 18 Weeks Maternity / 4 Week Paternity
2 Volunteer Days
Meal Vouchers (CZK 220 per working day)
Annual Prague Travel Card (Lítačka)
Hybrid Working Model
Benefit budget with flexible options, including a MultiSport card, Canadian Medical membership, contributions to a pension savings plan and additional choices available through Benefit Plus