Your low-code automation tool for connecting anything to everything.
Senior Product Security Engineer
Location
Germany
Posted
53 days ago
Salary
0
Seniority
Senior
Job Description
Senior Product Security Engineer
n8n
• Your main goal will be to strengthen n8n’s product and platform security by driving hands-on security work that helps engineering teams reduce risk, ship securely, and build a growing security practice from an early stage. • Vulnerability management and disclosure • Own day-to-day vulnerability intake and triage workflows, including the security inbox and bug bounty submissions. • Coordinate remediation with engineering teams and help track issues through to resolution with clear priorities and follow-through. • Support coordinated disclosures, GitHub Security Advisories, and researcher communication in a timely and structured way. • Security tooling and technical assessments • Operate and improve security tooling across the SDLC, including scanning, alert triage, and workflow tuning. • Run practical security assessments such as targeted reviews, validation of findings, and remediation tracking from internal or external testing. • Help improve visibility into product and platform risk through actionable findings, documentation, and technical recommendations. • Secure product development support • Partner with engineers to embed security into design, development, and release processes in pragmatic ways. • Support threat modeling, secure coding guidance, and lightweight security reviews across product and platform areas. • Create clear, useful documentation that helps teams understand risks and apply secure development practices. • Security operations and team foundations • Support the coordination of security incidents by helping with investigation, tracking, communication, and follow-up actions. • Contribute to playbooks, runbooks, and internal processes that improve security readiness over time. • Help shape how the security function works in practice as the team grows, together with the Head of Security and future hires.
Job Requirements
- 🛡️ Product security experience: You have 5+ years of experience in product security, application security, or a closely related security engineering role in a SaaS or cloud environment.
- 🔍 Vulnerability management skills: You have hands-on experience triaging, validating, and coordinating remediation for security findings.
- 🌐 Web application security knowledge: You have a strong understanding of common web vulnerabilities and secure development principles.
- 🧰 Security tooling experience: You’ve worked with security tooling such as SAST, DAST, dependency scanning, container scanning, or similar technologies in practice.
- 🤝 Engineering partnership: You work well with product and engineering teams and know how to support them without becoming a blocker.
- ✍️ Clear communication: You can document findings, explain risks, and communicate clearly with both technical and non-technical stakeholders.
- ⚡ Pragmatic execution: You’re able to prioritize well, focus on the most meaningful risks, and make progress in fast-moving environments.
- 🏗️ Builder mindset: You’re excited by the idea of joining a newly forming security team and helping shape how the function grows over time.
Benefits
- Competitive compensation 💸 – We offer fair and attractive pay.
- Ownership 💪 – Our core value is to “empower others,” and we mean it—you’ll get a slice of n8n with equity.
- Work/life balance 🏖️ – We work hard but ensure you have time to recharge:
- Europe: 30 days of vacation, plus public holidays wherever you are.
- US: 20 vacation days, 8 sick days, plus public holidays wherever you are.
- Health & wellness 🩺 –
- Europe: We provide benefits according to local country norms.
- US: Multiple low-premium, low-deductible medical plans with coverage for individuals and families—plus a no-cost premium HDHP option with a pre-seeded HSA—along with dental and vision coverage.
- Future planning 💰 –
- Europe: We provide pension contributions according to local country norms.
- US: 401(k) retirement plan with a 4% employer match.
- Financial security 🛡️ –
- Europe: We provide benefits according to local country norms.
- US: Company-paid short-term and long-term disability insurance, plus life insurance to support you and your loved ones.
- Career growth 📈 – We hire rising stars who grow with us! You’ll get €1K (or equivalent) per year to spend on courses, books, events, or coaching to level up your skills.
- A passionate team 🤩 – We love our product, and we prove it with regular hackathons where we see who can build the coolest thing with it!
- Remote-first 🌏 – Our team works remotely across Europe, with regular off-sites for team bonding. Some roles, like sales in the US, are hybrid—please check the job description.
- Giving back 🤝 – We're big fans of open source, and you'll get $100 per month to support projects you care about.
- AI enablement 🤖 – We believe in working smarter—everyone gets an unlimited AI budget to explore and use the best tools to boost productivity and creativity.
- Transparency 🙏 – We all know what everyone’s working on, how the company is doing—the whole shebang.
- An ambitious but kind culture 😍 – People love working here—our eNPS for 2024 is 94!
Related Guides
Related Categories
Related Job Pages
More Security Engineer Jobs
• Support development and documentation of physical security, technical security, life safety, and guard force program elements. • Assist with onsite risk assessments, gap analyses, security audits, and facility reviews at offices, retail branches, campuses, and data centers. • Help analyze security risks and prepare mitigation recommendations. • Participate in client meetings to gather information and understand requirements. • Build working relationships with client security teams, property management, and law enforcement under senior guidance. • Assist with preparing reports, executive summaries, presentations, and status updates. • Collect and organize security-related data to support program improvements. • Support internal and external security training activities. • Stay informed on emerging security technologies and industry trends.
• Provide expert-level technical guidance and analysis to support cybersecurity and risk assessment initiatives, including supply chain risk management. • Develop, enhance, and maintain standard operating procedures (SOPs) to support assessment execution and implementation. • Conduct security assessments and hands-on testing, analyze results, document risks, and recommend appropriate countermeasures. • Identify, evaluate, and report on system vulnerabilities, threats, and security gaps. • Review and provide recommendations on program-level documentation, including: o Requirements specifications o System architecture and design documents o Test plans and security plans • Develop and document security evaluation test plans and procedures. • Support the development and implementation of information security policies, standards, and guidance. • Ensure compliance with applicable frameworks and regulations (e.g., FISMA, NIST, OMB). • Perform risk assessments, including analyzing threats, vulnerabilities, and potential impacts. • Coordinate with cross-functional teams and stakeholders to support security testing and program objectives. • Lead or participate in technical exchange meetings, documenting outcomes and action items. • Prepare and deliver briefings to leadership on project status, risks, and key findings. • Analyze and synthesize data from multiple sources to produce clear, actionable insights for both technical and non-technical audiences. • Provide oversight for the design, development, and implementation of security support systems. • Collaborate with stakeholders to map system functionality to security controls and compliance requirements.
• Provide expert-level technical guidance and analysis to support cybersecurity and risk assessment initiatives, including supply chain risk management. • Develop, enhance, and maintain standard operating procedures (SOPs) to support assessment execution and implementation. • Conduct security assessments and hands-on testing, analyze results, document risks, and recommend appropriate countermeasures. • Identify, evaluate, and report on system vulnerabilities, threats, and security gaps. • Review and provide recommendations on program-level documentation, including: o Requirements specifications o System architecture and design documents o Test plans and security plans • Develop and document security evaluation test plans and procedures. • Support the development and implementation of information security policies, standards, and guidance. • Ensure compliance with applicable frameworks and regulations (e.g., FISMA, NIST, OMB). • Perform risk assessments, including analyzing threats, vulnerabilities, and potential impacts. • Coordinate with cross-functional teams and stakeholders to support security testing and program objectives. • Lead or participate in technical exchange meetings, documenting outcomes and action items. • Prepare and deliver briefings to leadership on project status, risks, and key findings. • Analyze and synthesize data from multiple sources to produce clear, actionable insights for both technical and non-technical audiences. • Provide oversight for the design, development, and implementation of security support systems. • Collaborate with stakeholders to map system functionality to security controls and compliance requirements.
• Provide expert-level technical guidance and analysis to support cybersecurity and risk assessment initiatives, including supply chain risk management. • Develop, enhance, and maintain standard operating procedures (SOPs) to support assessment execution and implementation. • Conduct security assessments and hands-on testing, analyze results, document risks, and recommend appropriate countermeasures. • Identify, evaluate, and report on system vulnerabilities, threats, and security gaps. • Review and provide recommendations on program-level documentation, including: o Requirements specifications o System architecture and design documents o Test plans and security plans • Develop and document security evaluation test plans and procedures. • Support the development and implementation of information security policies, standards, and guidance. • Ensure compliance with applicable frameworks and regulations (e.g., FISMA, NIST, OMB). • Perform risk assessments, including analyzing threats, vulnerabilities, and potential impacts. • Coordinate with cross-functional teams and stakeholders to support security testing and program objectives. • Lead or participate in technical exchange meetings, documenting outcomes and action items. • Prepare and deliver briefings to leadership on project status, risks, and key findings. • Analyze and synthesize data from multiple sources to produce clear, actionable insights for both technical and non-technical audiences. • Provide oversight for the design, development, and implementation of security support systems. • Collaborate with stakeholders to map system functionality to security controls and compliance requirements.
