Senior SecOps Engineer

Mission Statement:

We help businesses deploy resources and processes efficiently and make their customers and staff feel seen and valued.

Kontakt.io is a leader in IoT. Our mission is to simplify the delivery of location and sensor data insights. We create the data foundation that drastically improves and automates decision-making in resource planning, operations, and customer experience workflows.

Our portfolio of complete IoT and location solutions combines hardware, software, and cloud to bring real-time visibility, analytics, and AI to operations. Today, we serve over 2,000 customers across diverse sizes and industries, from transportation and logistics to manufacturing, healthcare, airports, governments, and public spaces. They use Kontakt.io to reduce emergency incident time, decrease asset search times, introduce activity-based-costing, automate manual processes, digitize physical order traceability, or prevent machine downtimes.

As the first Senior Security Operations (SecOps) Engineer in the organization, you will play a pivotal role in building and leading the company's security operations from the ground up. Your primary responsibility will be to design, implement, and manage a comprehensive security operations framework that ensures the protection of the Kontakt.io systems, infrastructure, and data. This is a high-impact position, requiring hands-on technical expertise, strategic thinking, and the ability to collaborate across multiple departments to establish a security-first culture. You will act as the primary security leader in Kontakt.io, working closely with engineering teams to identify security risks, mitigate threats, and create long-term strategies to protect the organization from cyber threats.

Responsibilities:

• Conduct a comprehensive risk assessment to identify vulnerabilities, gaps, and key security challenges in the current infrastructure.

• Create a multi-phase security roadmap, with short-term and long-term goals to improve the security posture of the company

• Design and implement security strategies for cloud environments to protect against sophisticated threats. Architect and implement security solutions that safeguard the company’s network, data, and cloud AWS infrastructure.

• Design and implement security operations framework, including incident response, threat detection, and vulnerability management processes.

• Establish monitoring and logging solutions for real-time detection of security events using SIEM tools

• Establish a DevSecOps culture by integrating security into the software development lifecycle and drive the adoption of secure coding practices and participate in DevSecOps initiatives, integrating security into CI/CD pipelines.

• Collaborate with engineering, DevOps, and IT teams to ensure secure design, implementation, and operations of systems and applications.

• Lead the investigation, containment, and remediation of the security incidents.

• Continuously evaluate the security infrastructure and recommend improvements or new tools as threats evolve.

• Perform regular security assessments, penetration tests, and red team exercises to measure and improve defenses.

• Developing and conducting training programs for employees on information security and data protection policies.

• Raising awareness about threats related to cyberattacks, phishing, social engineering, and other risks.

Expectations:

• Experience in cybersecurity, with proven experience in security operations and incident response.
• Hands-on experience with security tools, including firewalls, SIEM, IDS/IPS, endpoint protection, and cloud security solutions (AWS)
• Experience building security policies and frameworks from scratch in fast-paced or startup environments.
• Deep expertise in cybersecurity principles, threat hunting, and incident response.
• Advanced knowledge of networking, encryption, and authentication protocols.
• Excellent communication and interpersonal skills, capable of working with both technical and non-technical teams to drive security initiatives.
• Strong strategic thinking skills to anticipate threats and design proactive solutions.

We offer:

• fast-paced and dynamic startup environment, flat structure
• B2B contract or a permanent agreement
• 20 days of fully paid holidays on the B2B contract
• competitive salary and stock option plan
• work with our IoT experts and trending technologies
• remote or hybrid work (office in Krakow)
• collaborative and self-organized environment
• flexible working hours
• private medical care, cafeteria system

180 zł - 200 zł an hour

Why Kontakt.io:

We Make Things Easy:

- Easy to Use. Simplicity is harder than complexity. Each of our apps focuses on a single user and a specific problem. We create solutions for everyone to help them get things done.

**- Easy to Buy.**We simplify pricing with a single, per-bed or per-room model that encompasses all the necessary products and services to achieve your desired outcomes.

- Easy to Deploy. Using AI, cloud, and mobile technologies, our equipment autonomously communicates and validates itself without the need for human intervention, cutting deployment time from months to weeks or even days.

We Deliver Fast Outcomes:

- Industry’s #1 Time To Value. We accelerate your ROI and deliver positive outcomes to users faster than anyone else, thanks to how easy things work with our AI- and cloud-based platform.

- Delivered As A Service. Delivering everything from devices to apps to support, our as-a-service model allows you to add new use cases with a simple click. Gain agility and speed like never before.

- Outcome Driven. We deliver outcomes, not boxed equipment. From on-site installation to monitoring, all the way to service-level agreements, our approach is uniquely designed to ensure the outcomes you need.

We Ensure Unmatched Scalability:

- Priced for Scaling. We offer scalable pricing, regardless of your project size. Enabling our customers to create value cost-effectively is a key element of our success.

- A Platform for Scaling. Lower TCO, quicker adoption of new use cases, extensive cloud scalability, and future-proofing your IT investments are among the many reasons why Kontakt.io is right for you.

- Managed for Scaling. SOC-2 and HIPAA compliant, our platform integrates with your wireless and security infrastructure, allowing you to use your current IT network with confidence and uninterrupted functionality.