We are seeking a passionate and experienced Sr. Software Engineer I to join our Security Application Development team. In this role, the successful candidate will be instrumental in designing, building, and maintaining robust security features for our SaaS product that will delight our customer CIOs. This position involves working on challenging problems at the intersection of application development and security, directly contributing to the resilience and trustworthiness of our platform. This is an exciting opportunity to leverage software development expertise to create secure-by-design solutions that protect our customers and their data 24/7.

You will work remotely from Bulgaria.

You Will:

• Design, build, and implement security features and functionalities directly into our SaaS product using modern programming languages (e.g., Java, Kotlin, Go, TypeScript, Python) and associated frameworks, applying deep technical knowledge and sustained concentration to deliver secure-by-design solutions.
• Develop scalable back-end services and APIs with a security-first mindset, ensuring high availability and performance in our multi-cloud environment (primarily AWS), requiring careful planning and prioritisation across concurrent workstreams.
• a with product and engineering teams to embed security best practices throughout the entire software development lifecycle, from design to deployment, communicating clearly and engaging constructively with stakeholders across disciplines.
• Engineer and automate security controls, threat detection mechanisms, and vulnerability remediation processes within the application, exercising independent analytical judgement to identify and resolve complex problems.
• Participate actively in code reviews and architectural discussions, advocating for secure coding practices and robust security designs, and contributing to well-documented technical decisions.
• Tackle complex security challenges related to data protection, access control, authentication, authorisation, and secure communication within a distributed system, maintaining focus and rigour under pressure.
• Create and maintain API integrations between internal and external systems, implementing and testing API solutions to ensure they meet functionality, performance, and security standards, and monitoring integration health on an ongoing basis.
• Serve as a subject matter expert in application security, mentoring junior engineers and fostering a culture of security ownership across development teams, actively supporting the growth and capability of peers.
• Strategically apply and champion AI tools within the team's domain to improve project execution, system design, quality, and debugging, leading adoption of AI best practices and driving measurable productivity gains.
• Assist with security incident remediation in support of the globally operated 24/7 Security Operations Centre, contributing during daytime working hours and demonstrating resilience and composure when managing time-sensitive situations.
• Handle sensitive security-related data, documentation, and incident records with appropriate confidentiality and rigour, maintaining accurate reporting in line with internal standards.
• Perform all work using standard computer and keyboard use in a remote environment, with standard sedentary work involving extended screen use.

You Have:

• 5+ years of progressive software development experience, with at least 3 years focused on building security features or secure applications, demonstrating sustained growth in technical depth and professional knowledge.
• A Bachelor's or Master's degree in Computer Science, Engineering, or a related field, or equivalent industry experience providing the same level of knowledge and competency.
• Expert-level proficiency in at least one major programming language such as Java, Kotlin, Go, or Python, with a proven history of building scalable and secure applications.
• Deep experience with cloud technologies (AWS, Azure, etc.), particularly in securing cloud-native applications, and familiarity with the tools, platforms, and infrastructure involved in multi-cloud environments.
• Experience developing, documenting, and supporting secure REST APIs, with attention to detail in both implementation and written technical documentation.
• Strong understanding of common security vulnerabilities (e.g., OWASP Top 10) and mitigation techniques, with the ability to apply this knowledge independently and under pressure.
• Experience with containerisation and orchestration technologies (Kubernetes) in a secure development context.
• Proficiency with modern security tools and practices, including static application security testing (SAST), dynamic application security testing (DAST), and software composition analysis (SCA).
• Proven ability to troubleshoot complex security-related problems in high-pressure production environments, demonstrating critical thinking and sound independent judgement.
• Excellent verbal and written communication skills in English, and a collaborative approach to working with cross-functional teams and stakeholders at all levels.
• 1+ year of professional experience leveraging AI-based workflows to author, maintain, review, deploy, and maintain code.
• 1+ year of experience building AI features that incorporate generative AI or agentic workflows to solve customer problems with measurable business impact.
• Comfort working with ambiguity and shifting priorities in a fast-paced environment, with the psychosocial resilience to manage sustained cognitive effort and occasional incident-driven pressure.
• No direct financial responsibility is associated with this role, though awareness of cost implications in architectural and tooling decisions is expected.
• Ability to work independently in a remote setting within a psychologically safe and inclusive team environment, with standard flexible working hours aligned to the Bulgaria time zone and no travel requirements expected for this role.
• Legal eligibility to work in Bulgaria on an ongoing basis.
• Fluency in English is required.

Nice to Have:

• Advanced industry certifications such as CSSLP, OSCP, or cloud-specific security certifications.

Smartsheet provides a competitive base salary range for roles that may be hired in different geographic areas we are licensed to operate our business from. Actual compensation is determined by several factors including, but not limited to, level of professional, educational experience, skills, and specific candidate location. In addition, this role will be eligible for a market competitive incentive opportunity.

Bulgaria Base Salary Pay Range
€58,250 - €69,750 EUR