Product Security Engineer

About the role

We are seeking a Product Security Engineer to empower our engineering teams to design and build secure software across our diverse product portfolio. While this role includes integrating advanced security practices into cutting-edge technologies—such as Generative AI (GenAI), Large Language Models (LLM), and data governance systems - it also focuses on ensuring the security of our microservice architecture and mobile application.

What you'll do

• Apply your knowledge of security architecture to help software engineers build secure products and services across a diverse technology stack, including microservices, mobile applications, and cutting-edge AI-driven solutions
• Collaborate closely with engineering teams to understand their application security needs, including those related to emerging technologies like Generative AI (GenAI) and Large Language Models (LLM)
• Perform application security design reviews, threat modeling, and code reviews, ensuring security principles are embedded in every stage of the development lifecycle
• Use your penetration testing skills to assess and strengthen the security of internal and external applications and services, including AI-powered features and traditional systems
• Develop tooling to support the Secure Software Development Lifecycle (SSDLC) and other security initiatives across diverse product environments
• Build automation frameworks to enable engineering teams to deliver secure features efficiently, whether for AI solutions or traditional applications
• Educate engineering teams and security champions on secure coding and development practices, including security considerations unique to AI and data governance
• Enable engineering teams to identify and remediate vulnerabilities before they reach production, with a focus on both general application security and AI-specific risks

What you'll need

• Proficiency in software engineering with one or more general-purpose programming languages (e.g., Python, Go, or similar)
• Experience with threat modeling, security testing, and analyzing applications, including those involving emerging technologies like Generative AI (GenAI) and Large Language Models (LLM)
• Prior experience in building automation to support the Secure Software Development Lifecycle (SSDLC)
• Proven ability to collaborate closely with engineering teams, supporting them throughout the Software Development Lifecycle (SDLC)
• A passion for information security and an interest in staying ahead of evolving threats, particularly those targeting AI systems
• Deep technical knowledge in one or more areas: Cloud and networking security, Web application security, Mobile security, Security challenges unique to AI-driven products and data governance
• Strong understanding of microservice architectures and working with scalable software in the cloud
• Solid knowledge of secure coding best practices and security standards, including the OWASP Top 10

What they offer

• Competitive personal development budget, work from home budget, discounts to fitness & wellness memberships, language apps and public transportation
• Hybrid work model with dedicated team days in office plus flexible remote work
• Premium N26 subscription plus subscriptions for friends and family members
• Additional day of annual leave for each year of service
• High degree of autonomy and access to cutting edge technologies
• Relocation package with visa support for those who need it