Job Drop BerlinYOUR WAY INTO BERLIN TECH
POST A JOBSAVED JOBSMEET A STARTUPREADSUBSCRIBE
NewsletterLinkedIn
AboutTermsImpressumPrivacy

Sr Product Security Engineer | Remote | Europe

nn8n
Seniority
Midweight
Model
Remote
Sector
Developer Tools
Salary
Undisclosed
Contract
Full-Time

About the role

Your main goal will be to strengthen n8n's product and platform security by driving hands-on security work that helps engineering teams reduce risk, ship securely, and build a growing security practice from an early stage. You'll partner closely with the Head of Security in a 50+ person engineering department to run key security workflows, improve security across the SDLC, and help lay the foundations of a small but growing security team.

What you'll do

  • Own day-to-day vulnerability intake and triage workflows, including the security inbox and bug bounty submissions.
  • Coordinate remediation with engineering teams and help track issues through to resolution with clear priorities and follow-through.
  • Support coordinated disclosures, GitHub Security Advisories, and researcher communication in a timely and structured way.
  • Operate and improve security tooling across the SDLC, including scanning, alert triage, and workflow tuning.
  • Run practical security assessments such as targeted reviews, validation of findings, and remediation tracking from internal or external testing.
  • Partner with engineers to embed security into design, development, and release processes in pragmatic ways.
  • Support threat modeling, secure coding guidance, and lightweight security reviews across product and platform areas.
  • Support the coordination of security incidents by helping with investigation, tracking, communication, and follow-up actions.

What you'll need

  • 5+ years of experience in product security, application security, or a closely related security engineering role in a SaaS or cloud environment.
  • Hands-on experience triaging, validating, and coordinating remediation for security findings.
  • A strong understanding of common web vulnerabilities and secure development principles.
  • Experience with security tooling such as SAST, DAST, dependency scanning, container scanning, or similar technologies.
  • Ability to work well with product and engineering teams without becoming a blocker.
  • Ability to document findings, explain risks, and communicate clearly with both technical and non-technical stakeholders.
  • Able to prioritize well, focus on the most meaningful risks, and make progress in fast-moving environments.

Nice to have

  • Experience securing cloud-native or multi-tenant SaaS platforms.
  • Familiarity with security considerations of modern JavaScript or TypeScript-based application environments.
  • Experience integrating security checks and practices into CI/CD pipelines and developer workflows.
  • Experience supporting or facilitating threat modeling and design reviews in product teams.
  • Prior work with external researchers, bug bounty platforms, or coordinated disclosure processes.

What they offer

  • Competitive compensation
  • Equity ownership
APPLY →