Product Security Engineer

Описание вакансии

About the opportunity

We are seeking a Product Security Engineer to empower our engineering teams to design and build secure software across our diverse product portfolio. While this role includes integrating advanced security practices into cutting-edge technologies—such as Generative AI (GenAI), Large Language Models (LLM), and data governance systems - it also focuses on ensuring the security of our microservice architecture and mobile application. Your work will help deliver robust security for every feature and service we provide to our customers.

The Product Security team is part of N26’s Security Engineering Segment, which also includes Infrastructure Security, Trust & Safety and Security Operations. Together, we uphold N26’s security standards by embedding security into every stage of the product lifecycle.

As we embrace emerging technologies like GenAI and LLMs, this role will play a key part in safeguarding sensitive data, aligning with data governance principles, and addressing risks unique to AI-driven products. At the same time, you’ll ensure our broader product ecosystem remains secure, scalable, and resilient. Additionally, you will contribute to the ongoing enhancement of our Product Security Programs, providing proactive guidance to engineering teams to anticipate and counter evolving threats.

In this role, you will:

• Apply your knowledge of security architecture to help software engineers build secure products and services across a diverse technology stack, including microservices, mobile applications, and cutting-edge AI-driven solutions.
• Collaborate closely with engineering teams to understand their application security needs, including those related to emerging technologies like Generative AI (GenAI) and Large Language Models (LLM).
• Perform application security design reviews, threat modeling, and code reviews, ensuring security principles are embedded in every stage of the development lifecycle.
• Use your penetration testing skills to assess and strengthen the security of internal and external applications and services, including AI-powered features and traditional systems.
• Develop tooling to support the Secure Software Development Lifecycle (SSDLC) and other security initiatives across diverse product environments.
• Build automation frameworks to enable engineering teams to deliver secure features efficiently, whether for AI solutions or traditional applications.
• Educate engineering teams and security champions on secure coding and development practices, including security considerations unique to AI and data governance.
• Enable engineering teams to identify and remediate vulnerabilities before they reach production, with a focus on both general application security and AI-specific risks.
• Perform reactive incident response if a security event occurs.
• Conduct proactive research to detect new attack vectors, including those targeting AI technologies, data pipelines, and LLM-based systems.

What you need to be successful:

Background and Skills:

• Proficiency in software engineering with one or more general-purpose programming languages (e.g., Python, Go, or similar).
• Experience with threat modeling, security testing, and analyzing applications, including those involving emerging technologies like Generative AI (GenAI) and Large Language Models (LLM).
• Prior experience in building automation to support the Secure Software Development Lifecycle (SSDLC).
• Proven ability to collaborate closely with engineering teams, supporting them throughout the Software Development Lifecycle (SDLC).
• A passion for information security and an interest in staying ahead of evolving threats, particularly those targeting AI systems.
• Deep technical knowledge in one or more areas:

+ Cloud and networking security

+ Web application security

+ Mobile security

+ Security challenges unique to AI-driven products and data governance.

• Strong understanding of microservice architectures and working with scalable software in the cloud.
• A keen ability to identify flaws in software and effectively communicate practical solutions.
• Familiarity with static/dynamic code analysis, fuzzing, and other techniques to identify security vulnerabilities.
• Solid knowledge of secure coding best practices and security standards, including the OWASP Top 10.
• The ability to balance security risks with the need for product innovation and advancement.

What’s in it for you:

• Accelerate your career growth by joining one of Europe’s most talked about disruptors.
• Employee benefits that range from a competitive personal development budget, work from home budget, discounts to fitness & wellness memberships, language apps and public transportation.
• Come together with your team in the office for a dedicated day of teamwork each week, plus another day of your choice, and enjoy the flexibility of remote work the rest of the time. Some roles may require additional in-office presence.
• As an N26 employee you will have access to a Premium subscription on your personal N26 bank account. As well as subscriptions for friends and family members.
• Additional day of annual leave for each year of service.
• A high degree of autonomy and access to cutting edge technologies - all while working with a friendly team of peers of diverse nationalities, life experiences and backgrounds.
• A relocation package with visa support for those who need it.

Who we are

N26 has reimagined banking for today’s digital world. Technology and design empowereverything we do and it’s how we are building the global banking platform the world loves to use.

We've eliminated physical branches, paperwork, and hidden fees for an elegant digital experience and supreme savings. Giving people the power to live and bank their way is what gets us out of bed in the morning and inspires the work that we do.

We are headquartered in Berlin with offices in multiple cities across Europe, including Vienna and Barcelona, and a 1,500-strong team of more than 80 nationalities.

Sounds good? Apply now for this position.

Equal Opportunities:

We recognize that our strength lies in our people and the varied perspectives they bring to our workforce. We strive to build talented and diverse teams to drive our business success and empower our people to reach their full potential.

We genuinely welcome and encourage applications from people of all backgrounds, cultures, genders, sexual orientations, abilities, neurodiversities, and ages. We're committed to creating an inclusive workspace where everyone feels valued and respected, free from harassment and discrimination. If there's anything you need to make the application process work for you, please let us know by reaching out to candidate.exp@n26.com.

Visit our website to learn more about Diversity, Equity, & Inclusion at N26.