We’re looking for a Cloud & Application Security Engineer to join an expert team working at the heart of modern digital development. If you enjoy combining hands-on security work with coaching, collaboration, and enabling teams to build secure solutions from the start, this role offers the opportunity to make a real impact.

About the Role

As a Security Engineer, you will be part of a central expert team supporting development and platform teams across the organization.

You’ll work closely with engineers, platform teams, and stakeholders to strengthen security practices in a decentralized environment. The role combines operational support, advisory work, and hands-on security implementation, making it ideal for someone who enjoys both technical depth and cross-team collaboration.

This is not just a governance role. You’ll actively support teams in their daily work, contribute to secure development practices, and help evolve how security is integrated into modern software delivery.

What You’ll Do

Provide hands-on support to development and platform teams on security-related topics

Support risk assessments, incident handling, and vulnerability management

Enable “shift-left” security by integrating controls into development workflows and CI/CD pipelines

Contribute to secure design across cloud environments, applications, and platforms

Support supply chain security, including dependency and vulnerability management

Collaborate closely with teams to increase security awareness and maturity

Coach and guide teams in DevSecOps practices

Contribute to improving standards, processes, and ways of working within the security team

Help drive consistent and scalable security practices across the organization

What We’re Looking For

Strong experience in application, cloud, or infrastructure security

Hands-on experience with modern development practices and CI/CD pipelines

Experience working with one or more major cloud platforms

Solid understanding of secure development principles and vulnerability management

Experience with Infrastructure as Code tools such as Terraform, CloudFormation, or similar

Engineering mindset with the ability to work close to development teams

Strong communication skills and ability to collaborate across teams

Ability to work independently while contributing to a larger team

Nice to Have

Experience with container platforms and cloud-native environments

Background in DevSecOps or security within development teams

Experience with security automation and scanning tools

Knowledge of software supply chain security and dependency governance

Familiarity with security frameworks and compliance standards

Experience supporting organizations in cloud or platform transformations

About Yora

We’re a forward-thinking team redefining how specialists and organizations collaborate. By leaving behind traditional consulting structures, we create environments where experienced professionals can take ownership, influence decisions, and contribute with real impact.

At Yora, curiosity, collaboration, and long-term thinking are part of how we build both teams and technology.