Air Apps
Security Engineer(m/w/x)
Vollzeitnur vor OrtBerufserfahren
Berlin
Neuer Job?Nejo!
Dein persönlicher KI-Karriere-Agent
BABabbel
Senior Application & Product Security Engineer(m/w/x)
Berlin
VollzeitVor OrtSenior
AI/ML
Nejo KI-Zusammenfassung
Embedding security into the development lifecycle for a language learning platform, with threat modeling and cloud security posture improvement. Solid understanding of cloud-native architectures and platforms (AWS, GCP, Azure) required. 30 vacation days, Jobbatical up to 3 months in EU/UK.
Anforderungen
- Strong experience in application, product, or software security engineering roles
- Solid understanding of modern software development practices, cloud-native architectures, and cloud platforms (AWS, GCP, Azure)
- Hands-on experience with secure coding principles, common vulnerability classes (OWASP Top 10), and secure code reviews
- Proficiency with security tooling (SAST, DAST, SCA, CSPM, secrets scanning, CI/CD security automation)
- Experience performing threat modeling and delivering actionable recommendations
- Familiarity with securing AI/ML systems, LLM integrations, or agentic AI architectures
- Strong communication skills
- Ability to partner with engineers
- Ability to contribute to architectural discussions
- Ability to explain security concepts to non-technical stakeholders
- Background as a software engineer or developer
- Experience with Infrastructure as Code (Terraform) and CI/CD automation (GitHub Actions)
- Experience in a product-led or agile development environment
- Knowledge of regulatory or certification frameworks (ISO 27001)
- Ability to work in English
- Openness to learning
Aufgaben
- Build, maintain, and evolve the application and product security program.
- Embed security into the development lifecycle.
- Improve cloud security posture.
- Identify risks early with pragmatic solutions.
- Lead threat modeling throughout the development lifecycle.
- Identify risks in new features, architecture, and existing systems.
- Mitigate risks in new features, architecture, and existing systems.
- Define and implement secure coding standards.
- Conduct and guide secure code reviews.
- Deliver developer training and best practices.
- Design and manage security automation across the SDLC.
- Implement automated scanning.
- Implement security gates in CI/CD pipelines.
- Enforce policy-as-code.
- Manage software supply chain security.
- Manage vulnerability detection, triage, prioritization, and remediation.
- Monitor emerging threats.
- Monitor industry trends relevant to the technology stack.
- Lead application-layer incident response.
- Drive secure AI adoption across the organization.
- Establish a framework for responsible and secure AI use.
- Adapt security to evolving AI capabilities and integrations.
Berufserfahrung
- ca. 4 - 6 Jahre
Ausbildung
- Bachelor-AbschlussODER
- Master-Abschluss
Sprachen
- Englisch – verhandlungssicher
Tools & Technologien
- AWS
- GCP
- Azure
- APIs
- containers
- serverless
- OWASP Top 10
- SAST
- DAST
- SCA
- CSPM
- secrets scanning
- CI/CD security automation
- Terraform
- GitHub Actions
- LLM
- ISO 27001
Benefits
Flexibles Arbeiten
- Flexible working hours
Mehr Urlaubstage
- 30 vacation days
Familienfreundlichkeit
- Family and life situation counseling
Workation & Sabbatical
- Jobbatical (up to 3 months in EU/UK)
Modernes Büro
- Office with nap, faith, family rooms
Weiterbildungsangebote
- Internal learning opportunities
- Yearly L&D budget
Sonstige Vorteile
- Free Babbel language access
- DE&I Community Networks
Parkplatz & Pendelvorteile
- Mobility benefits
Mitarbeiterrabatte
- Discounted Urban Sports Club membership
Team Events & Ausflüge
- Cultural and social events
Die Originalanzeige dieses Stellenangebotes in der aktuellsten Version findest du hier. Nejo hat diesen Job automatisch von der Website des Unternehmens Babbel erfasst und die Informationen auf Nejo mit Hilfe von KI für dich aufbereitet. Trotz sorgfältiger Analyse können einzelne Informationen unvollständig oder ungenau sein. Bitte prüfe immer alle Angaben in der Originalanzeige! Inhalte und Urheberrechte der Originalanzeige liegen beim ausschreibenden Unternehmen.
Gefällt dir diese Stelle?
BetaDein Career Agent findet täglich ähnliche Jobs für dich.
Noch nicht perfekt?
- Trade Republic
Senior Security Engineer - Application Security(m/w/x)
Vollzeitnur vor OrtSeniorBerlin - Trade Republic
Senior Security Engineer - Cloud Security(m/w/x)
Vollzeitnur vor OrtSeniorBerlin - 1GLOBAL
Senior DevSecOps / Cloud Security Engineer(m/w/x)
Vollzeitnur vor OrtSeniorBerlin - Trade Republic
Senior Security Engineer - Purple Teaming(m/w/x)
Vollzeitnur vor OrtSeniorBerlin
BABabbel
Senior Application & Product Security Engineer(m/w/x)
Berlin
VollzeitVor OrtSenior
AI/ML
Nejo KI-Zusammenfassung
Embedding security into the development lifecycle for a language learning platform, with threat modeling and cloud security posture improvement. Solid understanding of cloud-native architectures and platforms (AWS, GCP, Azure) required. 30 vacation days, Jobbatical up to 3 months in EU/UK.
Anforderungen
- Strong experience in application, product, or software security engineering roles
- Solid understanding of modern software development practices, cloud-native architectures, and cloud platforms (AWS, GCP, Azure)
- Hands-on experience with secure coding principles, common vulnerability classes (OWASP Top 10), and secure code reviews
- Proficiency with security tooling (SAST, DAST, SCA, CSPM, secrets scanning, CI/CD security automation)
- Experience performing threat modeling and delivering actionable recommendations
- Familiarity with securing AI/ML systems, LLM integrations, or agentic AI architectures
- Strong communication skills
- Ability to partner with engineers
- Ability to contribute to architectural discussions
- Ability to explain security concepts to non-technical stakeholders
- Background as a software engineer or developer
- Experience with Infrastructure as Code (Terraform) and CI/CD automation (GitHub Actions)
- Experience in a product-led or agile development environment
- Knowledge of regulatory or certification frameworks (ISO 27001)
- Ability to work in English
- Openness to learning
Aufgaben
- Build, maintain, and evolve the application and product security program.
- Embed security into the development lifecycle.
- Improve cloud security posture.
- Identify risks early with pragmatic solutions.
- Lead threat modeling throughout the development lifecycle.
- Identify risks in new features, architecture, and existing systems.
- Mitigate risks in new features, architecture, and existing systems.
- Define and implement secure coding standards.
- Conduct and guide secure code reviews.
- Deliver developer training and best practices.
- Design and manage security automation across the SDLC.
- Implement automated scanning.
- Implement security gates in CI/CD pipelines.
- Enforce policy-as-code.
- Manage software supply chain security.
- Manage vulnerability detection, triage, prioritization, and remediation.
- Monitor emerging threats.
- Monitor industry trends relevant to the technology stack.
- Lead application-layer incident response.
- Drive secure AI adoption across the organization.
- Establish a framework for responsible and secure AI use.
- Adapt security to evolving AI capabilities and integrations.
Berufserfahrung
- ca. 4 - 6 Jahre
Ausbildung
- Bachelor-AbschlussODER
- Master-Abschluss
Sprachen
- Englisch – verhandlungssicher
Tools & Technologien
- AWS
- GCP
- Azure
- APIs
- containers
- serverless
- OWASP Top 10
- SAST
- DAST
- SCA
- CSPM
- secrets scanning
- CI/CD security automation
- Terraform
- GitHub Actions
- LLM
- ISO 27001
Benefits
Flexibles Arbeiten
- Flexible working hours
Mehr Urlaubstage
- 30 vacation days
Familienfreundlichkeit
- Family and life situation counseling
Workation & Sabbatical
- Jobbatical (up to 3 months in EU/UK)
Modernes Büro
- Office with nap, faith, family rooms
Weiterbildungsangebote
- Internal learning opportunities
- Yearly L&D budget
Sonstige Vorteile
- Free Babbel language access
- DE&I Community Networks
Parkplatz & Pendelvorteile
- Mobility benefits
Mitarbeiterrabatte
- Discounted Urban Sports Club membership
Team Events & Ausflüge
- Cultural and social events
Die Originalanzeige dieses Stellenangebotes in der aktuellsten Version findest du hier. Nejo hat diesen Job automatisch von der Website des Unternehmens Babbel erfasst und die Informationen auf Nejo mit Hilfe von KI für dich aufbereitet. Trotz sorgfältiger Analyse können einzelne Informationen unvollständig oder ungenau sein. Bitte prüfe immer alle Angaben in der Originalanzeige! Inhalte und Urheberrechte der Originalanzeige liegen beim ausschreibenden Unternehmen.
Gefällt dir diese Stelle?
BetaDein Career Agent findet täglich ähnliche Jobs für dich.
Über das Unternehmen
Babbel
Branche
Education
Beschreibung
The company is one of the fastest-growing education technology companies, committed to creating diverse learning experiences.
Noch nicht perfekt?
- Air Apps
Security Engineer(m/w/x)
Vollzeitnur vor OrtBerufserfahrenBerlin - Trade Republic
Senior Security Engineer - Application Security(m/w/x)
Vollzeitnur vor OrtSeniorBerlin - Trade Republic
Senior Security Engineer - Cloud Security(m/w/x)
Vollzeitnur vor OrtSeniorBerlin - 1GLOBAL
Senior DevSecOps / Cloud Security Engineer(m/w/x)
Vollzeitnur vor OrtSeniorBerlin - Trade Republic
Senior Security Engineer - Purple Teaming(m/w/x)
Vollzeitnur vor OrtSeniorBerlin