What you will do

About SpotOn

We’re not just building restaurant tech—we’re giving independent restaurants the tools to compete and win. From our award-winning point-of-sale to AI-powered profit tools, everything we do helps operators boost profit, work smarter, and keep their best people. And every solution is backed by real humans who actually give a sh*t about helping restaurants succeed.

• Named the #1 Restaurant POS by G2 (Fall 2025), based on ratings from real users
• Rated the top-rated point-of-sale (POS) for restaurants, bars, retail, and small businesses by Capterra users
• Awarded Great Places to Work and Built In’s Best Workplaces for multiple years running

We move fast, care hard, and fight for independent restaurant operators to do what they love, and love doing it. If you’re looking to make an impact with heart and hustle, SpotOn is the place for you.

On a daily basis you will:

• Design, implement, and maintain AWS security controls and infrastructure using Terraform.
• Manage AWS Identity & Access Management (IAM) policies, roles, and permissions for least privilege.
• Configure and monitor AWS-native security services (GuardDuty, Security Hub, WAF, CloudTrail).
• Build and manage Zscaler configurations as code to enforce Zero Trust principles.
• Build and manage Okta configurations as code for policies, groups, and application integrations.
• Detect and remediate cloud misconfigurations, ensuring compliance with frameworks such as SOC 2 and PCI DSS.
• Support incident response by providing visibility into AWS resources and logs.

What we offer

Here’s a bit about what we have to offer:

• Competitive pay: 19 500 - 24 400 PLN net on B2B; 16 500 - 20 000 PLN gross on CoE.
• Training budget 3500 PLN gross per year.
• Access to e-learning platforms (O’Reilly).
• Fully paid private healthcare in LuxMed.
• Access to the Worksmile platform with a monthly top-up.
• Subsidized access to breakfast and lunch through the vending machine in Kraków office, and lunches in Gdańsk office once a week.
• Group English classes with a native speaker.
• New Macbook Pro, 4K monitors or whatever tools you need.
• Flexible working hours.
• New, modern, bright and comfortable office space in the city centre.
• A lot of free parking spots around the office.
• Access to the company’s library.
• Great working atmosphere.
• Chill out room with a PlayStation and games.
• Free snacks and beverages in a kitchen.
• Company parties and social activities.
• Employee referral program.
• Relocation Package within Poland.

Requirements

What skill are we looking for?

• Strong experience with AWS services (IAM, VPC, EC2, S3, Lambda, WAF).
• Willing to come into our Kraków or Gdańsk office 2-3 times per week.
• Experience writing and maintaining infrastructure-as-code for AWS and Okta (Terraform Okta provider or similar).
• Knowledge of cloud security best practices and compliance frameworks (SOC 2 and PCI).
• Familiarity with monitoring/logging (CloudWatch, Grafana, SIEM).
• Experience managing Zscaler policies as part of enterprise security architecture.
• Strong problem-solving skills and ability to collaborate with cross-functional teams.
• Experience with automation and scripting (Python, Go, or similar).