Skills

Required

5+ years of progressive software development experience
at least 3 years focused on building security features or secure applications
Expert-level proficiency in at least one major programming language such as Java, Kotlin, Go, or Python
proven history of building scalable and secure applications
Deep experience with cloud technologies (AWS, Azure, etc.)
securing cloud-native applications
developing, documenting, and supporting secure REST APIs
Strong understanding of common security vulnerabilities (e.g., OWASP Top 10) and mitigation techniques
Experience with containerization and orchestration technologies (Kubernetes) in a secure development context
Proficiency with modern security tools and practices, including static application security testing (SAST), dynamic application security testing (DAST), and software composition analysis (SCA)
critical thinker with a proven ability to troubleshoot complex security-related problems in high-pressure production environments
Excellent verbal and written communication skills
collaborative spirit
1 year professional experience leveraging AI-based workflows to author, maintain, review, deploy, and maintain code
1+ years building AI features that incorporate generative AI or agentic workflows to solve customer problems with measurable business impact
Legally eligible to work in Bulgaria on an ongoing basis
Fluency in English

Nice to have

Advanced industry certifications such as CSSLP, OSCP, or cloud-specific security certifications

For over 20 years, Smartsheet has helped people and teams achieve–well, anything. From seamless work management to smart, scalable solutions, we’ve always worked with flow. We’re building tools that empower teams to automate the manual, uncover insights, and scale smarter. But more than that, we’re creating space– space to think big, take action, and unlock the kind of work that truly matters. Because when challenge meets purpose, and passion turns into progress, that’s magic at work, and it’s what we show up for everyday.

We are seeking a passionate and experienced Senior Software Engineer to join our Security Application Development team. In this role, you will be instrumental in designing, building, and maintaining robust security features for our SaaS product that will delight our customer CIOs. You will work on challenging problems at the intersection of application development and security, directly contributing to the resilience and trustworthiness of our platform. This is an exciting opportunity to leverage your software development expertise to create secure-by-design solutions that protect our customers and their data 24/7.

You will work remotely from Bulgaria.

What You Will Do

Develop Secure Product Features: Design, build, and implement security features and functionalities directly into our SaaS product using modern programming languages (e.g., Java, Kotlin, Go, TypeScript, Python) and associated frameworks.
Build Scalable and Secure Services: Develop scalable back-end services and APIs with a security-first mindset, ensuring high availability and performance in our multi-cloud environment (primarily AWS).
Integrate Security into SDLC: Collaborate with product and engineering teams to embed security best practices throughout the entire software development lifecycle, from design to deployment.
Automate Security Controls: Engineer and automate security controls, threat detection mechanisms, and vulnerability remediation processes within the application.
Conduct Code Reviews and Architectural Discussions: Participate actively in code reviews and architectural discussions, advocating for secure coding practices and robust security designs.
Solve Challenging Security Problems: Tackle complex security challenges related to data protection, access control, authentication, authorization, and secure communication within a distributed system.
Create and maintain API integrations between internal and external systems. Implement and test API solutions to ensure they meet functionality, performance, and security standards. Monitor API performance and address any integration challenges or issues.
Mentor and Lead: Serve as a subject matter expert in application security, mentoring junior engineers and fostering a culture of security ownership across development teams.
Strategically Apply AI Tools: Strategically apply and champion AI tools within your team's domain to improve project execution, system design, quality, and debugging, leading adoption of AI best practices and driving measurable productivity gains.

Assist with Security Incident Remediation: We manage a SOC on a global 24/7 basis. This role will assist in that effort during daytime working hours.

**What You Have **

5+ years of progressive software development experience, with at least 3 years focused on building security features or secure applications.
A BS or MS in Computer Science, Engineering, or a related field, or equivalent industry experience.
Expert-level proficiency in at least one major programming language such as Java, Kotlin, Go, or Python with a proven history of building scalable and secure applications.
Deep experience with cloud technologies (AWS, Azure, etc.), particularly in securing cloud-native applications.
Experience developing, documenting, and supporting secure REST APIs.
Strong understanding of common security vulnerabilities (e.g., OWASP Top 10) and mitigation techniques.
Experience with containerization and orchestration technologies (Kubernetes) in a secure development context.
Proficiency with modern security tools and practices, including static application security testing (SAST), dynamic application security testing (DAST), and software composition analysis (SCA).
A critical thinker with a proven ability to troubleshoot complex security-related problems in high-pressure production environments.
Excellent verbal and written communication skills and a collaborative spirit. This will include fluency in English.
1 year professional experience leveraging AI-based workflows to author, maintain, review, deploy, and maintain code.
1+ years building AI features that incorporate generative AI or agentic workflows to solve customer problems with measurable business impact.
Legally eligible to work in Bulgaria on an ongoing basis.
Fluency in English is required.

Nice to Have

Advanced industry certifications such as CSSLP, OSCP, or cloud-specific security certifications.

Get to Know Us:

At Smartsheet, your ideas are heard, your potential is supported, and your contributions have real impact. You’ll have the freedom to explore, push boundaries, and grow beyond your role. We welcome diverse perspectives and nontraditional paths—because we know that impact comes from individuals who care deeply and challenge thoughtfully. When you’re doing work that stretches you, excites you, and connects you to something bigger, that’s magic at work. Let’s build what’s next, together.

Equal Opportunity Employer:

Smartsheet is an Equal Opportunity (EEO) employer committed to fostering an inclusive environment with the best employees. It is our policy to provide equal employment opportunities to all qualified applicants in accordance with applicable laws in the US, UK, Australia, Germany, Costa Rica, Japan, Bulgaria, and India. All qualified applicants will receive consideration without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, protected veteran or disabled status, or genetic information.

If there are preparations we can make to help ensure you have a comfortable and positive interview experience, please let us know.

#LI-Remote