Job Drop BerlinYOUR WAY INTO BERLIN TECH
NewsletterLinkedIn
AboutTermsImpressumPrivacy

Senior Security Engineer - Product

WWire
Seniority
Senior
Model
In-Office
Sector
B2B SaaS
Salary
Undisclosed
Contract
Full-Time

Drive product security improvements across the SSDLC and support compliance efforts. You'll perform threat modeling, security reviews, and security architecture assessments while acting as a trusted advisor to Engineering and Product, enabling secure-by-design decisions without becoming a delivery bottleneck.

What you'll do

  • Drive product security improvements across the SSDLC and support our compliance efforts
  • Perform threat modeling, security reviews, and security architecture assessments
  • Support vulnerability management and remediation of product and platform security issues
  • Help implement and improve security controls in areas such as application security, cloud security, CI/CD, containers, secrets handling, and infrastructure-as-code
  • Act as a trusted advisor to Engineering and Product, enabling secure-by-design decisions without becoming a delivery bottleneck
  • Monitor and analyze security events and incidents, responding promptly and appropriately to mitigate threats and minimize impact
  • Advise our engineers regarding concepts and implementation of security requirements
  • Support technical due-diligence to ensure compliance with our internal and external security requirements

What you'll need

  • Minimum 5+ years in Software Security
  • Work experience in application security, product security, or secure software development
  • Proven expertise in threat modeling, secure architecture design and cryptographic protocols
  • In-depth knowledge and expertise in Platform Security practices and methodologies, with hands-on experience implementing security in a DevOps environment
  • Very good understanding of modern environments such as web, backend, mobile, APIs, cloud, containers, and CI/CD
  • Hands-on experience supporting and training developers on secure coding practices and application security best practices
  • Ability to work pragmatically with engineering teams and explain security risks in a clear, actionable way
  • English C1; German is a plus

Nice to have

  • Experience with telecommunications or messaging security
  • Basic understanding of information security frameworks, standards, and regulations (e.g., ISO 27001, SOC2, CIS, NIST, GDPR)

What they offer

  • Yearly education budget of 1000 EUR
  • Urban Sports Club subscription
  • Remote/Berlin office with flexible hybrid arrangement
  • Fresh breakfast, daily fruits, snacks, free soft drinks, and coffee in the office
APPLY →