Security Engineer (Product Security)
Мэтч & Сопровод
Для мэтча с этой вакансией нужен Plus
Описание вакансии
TL;DR
Security Engineer (Product Security) (SaaS/AI): Developing and optimizing security automation and product security pipelines with an accent on AI-driven vulnerability detection and remediation. Focus on enhancing security services with software engineering solutions and maintaining WAF rulesets to ensure a secure global SaaS environment.
Location: Hybrid in Berlin, Chemnitz, or Dresden, Germany
Company
is a unicorn company providing an AI-native Employee Experience Platform to help organizations unlock the power of inspirational communication.
What you will do
- Own tasks to improve security automation and strengthen product security pipelines.
- Proactively explore and implement the use of AI for vulnerability detection and remediation.
- Enhance internal security services using software engineering solutions.
- Maintain the Web Application Firewall (WAF) ruleset and a central HTML sanitization service written in TypeScript.
- Monitor and maintain outbound e-mail security metrics.
- Collaborate with cross-functional stakeholders across the product department.
Requirements
- Practical knowledge of penetration testing, secure software development, vulnerability management, SAST, and DAST.
- Programming proficiency in one of the following: TypeScript, JavaScript, Kotlin, Java, Go, or Python.
- Hands-on experience with Unix basics and Kubernetes infrastructure managed via Terraform and Kustomize.
- Strong communication skills in English.
- Ability to work in a hybrid model from Berlin, Chemnitz, or Dresden.
Nice to have
- Proficiency in German.
Culture & Benefits
- Competitive compensation including a unit-based Long Term Incentive Plan (LTIP).
- Flexible working time models and a yearly flex work allowance of €1560.
- 31 vacation days annually, including fully paid Fridays off during August.
- Company pension scheme.
- One paid Volunteers Day per year for supporting social projects.
Будьте осторожны: если работодатель просит войти в их систему, используя iCloud/Google, прислать код/пароль, запустить код/ПО, не делайте этого - это мошенники. Обязательно жмите "Пожаловаться" или пишите в поддержку. Подробнее в гайде →