commercetools
Principal Engineer, Product Security(m/w/x)
Vollzeitmit HomeofficeSenior
München, Berlin
Neuer Job?Nejo!
Die KI-Suchmaschine für Jobs
N8
n8nSr Product Security Engineer(m/w/x)
Berlin
VollzeitRemoteSenior
AI/ML
Beschreibung
As the first dedicated security hire, you will shape the company's security culture by implementing pragmatic practices and managing everything from vulnerability disclosures to incident response.
Lass KI die perfekten Jobs für dich finden!
Lade deinen CV hoch und die Nejo-KI findet passende Stellenangebote für dich.
Anforderungen
- •Experience in product security or equivalent
- •Experience with vulnerability management workflows
- •Understanding of web application vulnerabilities
- •Experience operating security tooling
- •Familiarity with coordinated vulnerability disclosure
- •Ability to write security documentation
- •Experience with bug bounty programs
- •Experience securing cloud-native SaaS platforms
- •Familiarity with JavaScript and Node.js
- •Experience in high-growth companies
- •Knowledge of DevSecOps practices
- •Experience with threat modeling methodologies
- •Relevant security certifications
- •Prioritization of pragmatic risk reduction
- •Security as product velocity enabler
- •Comfort making high-impact risk trade-offs
- •Thriving in ambiguity and ownership
- •Right to work or visa eligibility
- •English language proficiency
Ausbildung
Bachelor-Abschluss
ODER
Master-Abschluss
ODER
Doktor / Ph.D.
Berufserfahrung
5 Jahre
Aufgaben
- •Own the vulnerability intake and triage process
- •Manage the security inbox and disclosure programs
- •Coordinate private fixes for high-severity issues
- •Manage GitHub Security Advisories and disclosure timelines
- •Oversee bug bounty payouts and researcher communication
- •Define patch and release processes for security fixes
- •Implement and maintain security tooling across the SDLC
- •Tune and manage triage workflows for security tools
- •Plan and manage third-party penetration tests
- •Conduct internal security assessments and tabletop exercises
- •Lead security incident coordination from detection to resolution
- •Drive incident tracking and remediation workflows
- •Author security advisories and post-incident reviews
- •Communicate with customers during security incidents
- •Maintain security policies and public disclosure documentation
- •Manage relationships with security researchers and platforms
- •Track industry trends and emerging vulnerabilities
- •Shape long-term security strategy and roadmaps
- •Embed security into the development lifecycle
- •Advise engineering teams on secure coding practices
- •Produce actionable security documentation for internal teams
- •Partner with product teams to build in security
Tools & Technologien
SASTDASTJavaScriptTypeScriptNode.jsCI/CD
Sprachen
Englisch – verhandlungssicher
Benefits
Attraktive Vergütung
- •Fair and attractive pay
- •Equity
Mehr Urlaubstage
- •30 days of vacation
Sonstige Vorteile
- •Public holidays
- •Short-term disability insurance
- •Life insurance
Gesundheits- & Fitnessangebote
- •Medical plans
- •Dental coverage
- •Vision coverage
Betriebliche Altersvorsorge
- •Pension contributions
- •401(k) with 4% match
Sicherer Arbeitsplatz
- •Long-term disability insurance
Weiterbildungsangebote
- •€1K annual learning budget
Team Events & Ausflüge
- •Regular hackathons
- •Regular team off-sites
Flexibles Arbeiten
- •Remote-first work
- •Hybrid work options
Sonstige Zulagen
- •$100 monthly open-source support
- •Unlimited AI budget
Lockere Unternehmenskultur
- •Transparent culture
- •Ambitious and kind culture
Die Originalanzeige dieses Stellenangebotes in der aktuellsten Version findest du hier. Nejo hat diesen Job automatisch von der Website des Unternehmens n8n erfasst und die Informationen auf Nejo mit Hilfe von KI für dich aufbereitet. Trotz sorgfältiger Analyse können einzelne Informationen unvollständig oder ungenau sein. Bitte prüfe immer alle Angaben in der Originalanzeige! Inhalte und Urheberrechte der Originalanzeige liegen beim ausschreibenden Unternehmen.
Noch nicht perfekt?
- Scalable GmbH
Product Security Engineer(m/w/x)
Vollzeitmit HomeofficeSeniorBerlin - commercetools
Principal Engineer, Product Security(m/w/x)
Vollzeitmit HomeofficeSeniorBerlin - SAP
Senior Product Security Engineer(m/w/x)
Vollzeitmit HomeofficeSeniorBonn, Walldorf, Berlin, Dresden, München - N26
Product Security Engineer(m/w/x)
Vollzeitmit HomeofficeBerufserfahrenBerlin
N8
n8nSr Product Security Engineer(m/w/x)
Berlin
VollzeitRemoteSenior
AI/ML
Neuer Job?Nejo!
Die KI-Suchmaschine für Jobs
Beschreibung
As the first dedicated security hire, you will shape the company's security culture by implementing pragmatic practices and managing everything from vulnerability disclosures to incident response.
Lass KI die perfekten Jobs für dich finden!
Lade deinen CV hoch und die Nejo-KI findet passende Stellenangebote für dich.
Anforderungen
- •Experience in product security or equivalent
- •Experience with vulnerability management workflows
- •Understanding of web application vulnerabilities
- •Experience operating security tooling
- •Familiarity with coordinated vulnerability disclosure
- •Ability to write security documentation
- •Experience with bug bounty programs
- •Experience securing cloud-native SaaS platforms
- •Familiarity with JavaScript and Node.js
- •Experience in high-growth companies
- •Knowledge of DevSecOps practices
- •Experience with threat modeling methodologies
- •Relevant security certifications
- •Prioritization of pragmatic risk reduction
- •Security as product velocity enabler
- •Comfort making high-impact risk trade-offs
- •Thriving in ambiguity and ownership
- •Right to work or visa eligibility
- •English language proficiency
Ausbildung
Bachelor-Abschluss
ODER
Master-Abschluss
ODER
Doktor / Ph.D.
Berufserfahrung
5 Jahre
Aufgaben
- •Own the vulnerability intake and triage process
- •Manage the security inbox and disclosure programs
- •Coordinate private fixes for high-severity issues
- •Manage GitHub Security Advisories and disclosure timelines
- •Oversee bug bounty payouts and researcher communication
- •Define patch and release processes for security fixes
- •Implement and maintain security tooling across the SDLC
- •Tune and manage triage workflows for security tools
- •Plan and manage third-party penetration tests
- •Conduct internal security assessments and tabletop exercises
- •Lead security incident coordination from detection to resolution
- •Drive incident tracking and remediation workflows
- •Author security advisories and post-incident reviews
- •Communicate with customers during security incidents
- •Maintain security policies and public disclosure documentation
- •Manage relationships with security researchers and platforms
- •Track industry trends and emerging vulnerabilities
- •Shape long-term security strategy and roadmaps
- •Embed security into the development lifecycle
- •Advise engineering teams on secure coding practices
- •Produce actionable security documentation for internal teams
- •Partner with product teams to build in security
Tools & Technologien
SASTDASTJavaScriptTypeScriptNode.jsCI/CD
Sprachen
Englisch – verhandlungssicher
Benefits
Attraktive Vergütung
- •Fair and attractive pay
- •Equity
Mehr Urlaubstage
- •30 days of vacation
Sonstige Vorteile
- •Public holidays
- •Short-term disability insurance
- •Life insurance
Gesundheits- & Fitnessangebote
- •Medical plans
- •Dental coverage
- •Vision coverage
Betriebliche Altersvorsorge
- •Pension contributions
- •401(k) with 4% match
Sicherer Arbeitsplatz
- •Long-term disability insurance
Weiterbildungsangebote
- •€1K annual learning budget
Team Events & Ausflüge
- •Regular hackathons
- •Regular team off-sites
Flexibles Arbeiten
- •Remote-first work
- •Hybrid work options
Sonstige Zulagen
- •$100 monthly open-source support
- •Unlimited AI budget
Lockere Unternehmenskultur
- •Transparent culture
- •Ambitious and kind culture
Die Originalanzeige dieses Stellenangebotes in der aktuellsten Version findest du hier. Nejo hat diesen Job automatisch von der Website des Unternehmens n8n erfasst und die Informationen auf Nejo mit Hilfe von KI für dich aufbereitet. Trotz sorgfältiger Analyse können einzelne Informationen unvollständig oder ungenau sein. Bitte prüfe immer alle Angaben in der Originalanzeige! Inhalte und Urheberrechte der Originalanzeige liegen beim ausschreibenden Unternehmen.
Über das Unternehmen
n8n
Branche
IT
Beschreibung
n8n is an open AI workflow orchestration platform that empowers technical teams to automate faster and smarter.
Noch nicht perfekt?
- commercetools
Principal Engineer, Product Security(m/w/x)
Vollzeitmit HomeofficeSeniorMünchen, Berlin - Scalable GmbH
Product Security Engineer(m/w/x)
Vollzeitmit HomeofficeSeniorBerlin - commercetools
Principal Engineer, Product Security(m/w/x)
Vollzeitmit HomeofficeSeniorBerlin - SAP
Senior Product Security Engineer(m/w/x)
Vollzeitmit HomeofficeSeniorBonn, Walldorf, Berlin, Dresden, München - N26
Product Security Engineer(m/w/x)
Vollzeitmit HomeofficeBerufserfahrenBerlin