Veeam Software at a glance
veeam.com- Founded 2006
- Employees 4400
SEC filings mentioning "Veeam Software": 120 — search EDGAR
Source: Wikipedia
Veeam Software
Veeam is the Data and AI Trust Company, specializing in helping organizations ensure their data and AI are fully understood, secured, and resilient to enable the acceleration of safe AI at scale. As the market leader in both data resilience and data security posture management, Veeam is built for the convergence of identity, data, security, and AI risk. Headquartered in Seattle with offices in more than 30 countries, Veeam protects over 550,000 customers worldwide, who trust Veeam to keep their businesses running. Join us as we go fearlessly forward together, growing, learning, and making a real impact for some of the world’s biggest brands.
About the Role
As an Application Security Engineer (Offensive Testing), you will lead and perform penetration testing and DAST for Veeam Data Cloud products. You’ll use Burp Suite and modern web/API testing techniques to find real, exploitable issues, help prioritize risk, and work with engineering teams to drive fixes to completion.
You will also improve testing tools and processes, make testing more repeatable, and help teams prevent recurring vulnerabilities—especially around authentication, authorization, session management, and tenant isolation.
What You’ll Do
- Own offensive testing: plan what to test, how deep to go, and how often; create clear, consistent reports and reusable playbooks
- Perform manual pentesting (main focus): test web apps and APIs, especially authentication/authorization, multi-tenant boundaries, and critical workflows; chain issues into realistic attack paths
- Use Burp Suite daily: validate and reproduce findings with advanced Burp features; build and maintain repeatable scopes, macros, and authenticated flows
- Run and improve DAST: execute and tune authenticated scans, reduce false positives, and work with CI/platform teams to scale scanning and manage credentials
- Drive remediation: deliver high-quality write-ups, partner with engineers to fix and retest, and help prevent regressions; ensure findings are tracked with the right severity and SLAs
- Improve security long-term: spot recurring patterns and help teams prevent them through standards, libraries, platform controls, and input to threat modeling/design reviews
What You’ll Bring
- Strong web and API pentesting experience, especially in authorization (IDOR/BOLA, privilege escalation, role/tenant boundaries), authentication/session flows (tokens, identity integrations), and common vulnerabilities (injection, SSRF, deserialization, misconfigurations) with practical exploitation skills
- Advanced Burp Suite skills: manual validation, targeted fuzzing, authenticated testing, and workflow automation (extensions/macros)
- Experience writing Semgrep rules to detect insecure patterns and improve secure-by-default development
- DAST experience at scale: running or supporting authenticated scans, tuning coverage, and reducing false positives
- Clear written communication: concise PoCs and actionable remediation guidance for engineers
Bonus Skills
- SaaS multi-tenant security testing experience; OAuth2/OIDC/SAML depth; bug bounty triage; writing custom tooling or Burp extensions
What You’ll Get
- 26 paid days off annually, plus 4 extra global VeeaMe Days for self-care and 24 paid volunteer hours annually through Veeam Cares
- Paid parental, maternity, and paternity leave
- Fully covered family medical plan, dental, rehab, and vaccinations
- Life, critical illness, and disability insurance
- Employer pension contribution via PPK
- Monthly Edenred allowance of 450 PLN for meals
- MultiSport card fully covered by Veeam, giving access to sports facilities nationwide
- Up to 12 free therapy sessions annually, plus legal and financial advice
- Opportunities to learn and grow through on-demand libraries (LinkedIn Learning, O’Reilly), mentoring, workshops and learning events like our annual Global Day of Learning
Please note: If the applicant is permanently present outside of Poland, Veeam reserves the right to refuse to consider the application for a job. Remote job is only possible in case the employee is located in Poland.
#LI-GD1
#Hybrid
Veeam Software is an equal opportunity employer and does not tolerate discrimination in any form on the basis of race, color, religion, gender, age, national origin, citizenship, disability, veteran status or any other classification protected by federal, state or local law. All your information will be kept confidential.
Personal data collected during the recruitment process will be processed in accordance with our Recruiting Privacy Notice, which explains how your information is collected, used, and handled in connection with hiring activities. By applying for this position, you consent to this processing.
By submitting your application, you confirm that the information provided, including any supporting documents, is complete and accurate to the best of your knowledge. Any misrepresentation, omission, or falsification may result in disqualification from consideration or, if discovered after employment begins, termination of employment.
To apply for this job please visit job-boards.eu.greenhouse.io.
Terms used in this posting
- hybrid
- A work arrangement combining both in-office and remote/at-home work, typically on a set schedule.
Explore Veeam Software online
What people say about Veeam Software
- Microsoft Makes Equity Investment in Veeam
- "I Contribute to the Windows Kernel. We Are Slower" (2013)
- VMware transition to subscription, end of sale of perpetual licenses
Recent news
- Veeam Appoints Michelle Graff as Senior Vice President of Global Partners and Channel - Business Wire
- Veeam Appoints Michelle Graff to Lead Global Partner and Channel Organization - citybiz
- Veeam expands beyond backup with DSCI partnership ahead of DPDP deadline - CRN Asia
- Veeam, Rubrik Lead Changing Backup/Data Protection Space - Virtualization Review
- Veeam Backup RCE Flaw Lets Low-Privileged Domain Users Gain SYSTEM Access - cyberpress.org
Aggregated from public discussions and news; opinions are the authors’ own.
Working in Warsaw, Poland
Weather right now in Warsaw, Poland: checking… · Local time: · Air quality: · Daylight: · UV index:
Warsaw, officially the Capital City of Warsaw, is the capital and most populous city of Poland. The metropolis stands on the River Vistula in east-central Poland. Its population is officially estimated at 1.86 million residents within a greater metropolitan area of 3.27 million residents, which makes Warsaw the 6th most populous city in the European Union. The city area measures 517 square kilometres and comprises 18 districts, while the metropolitan area covers 6,100 square kilometres. Warsaw is classified as an alpha global city, a major political, economic and cultural hub, and the country'
Masovian Voivodeship is a voivodeship in east-central Poland, containing Poland's capital Warsaw.
🇵🇱 Relocation safety for Poland: Very Safe — via Warnely, CC BY 4.0
National unemployment rate in Poland: 3.0% — via World Bank
- Elevation 133m (436 ft)
Source: Wikipedia (state)
Job details above are provided by the employer/source. The sections on this page are compiled from public data sources with AI assistance.
Accommodations: if you need a workplace accommodation to apply for or perform this job, see ADA.gov or EEOC.gov for guidance on your rights and how to request one.
Keep exploring on Get A Job.ai
Not quite the right fit? Your next opportunity is a click away.
- Browse all jobs
- More jobs by category
- Remote jobs you can do from anywhere
- Research typical pay for this role
- Set a job alert so new matches reach you first
- Upload your resume to apply faster
Hiring instead? Post a job and reach candidates searching right now.
