Threat Modeling: Conduct code reviews and threat modeling on applications and relevant supporting services and tools.
Code: Write efficient, maintainable and testable code.
Services: Implement security services, automation, and monitoring tools to protect Personio services.
Mentoring: Mentor engineering team members on security best practices.
Stakeholder Management: Communicate to stakeholders, providing advice on vulnerability remediation and risk mitigation.
Tooling: Develop innovative and scalable tools, solutions, and processes to detect security threats and threats to data security.
Operations: Participate in security operations, responding to security incidents and providing security expertise for Personio customers and internal stakeholders.
Nice to Haves:
You have at least 5 years of experience in areas such as application security, offensive security, systems security, and/or incident response.
You understand security vulnerabilities, threat modeling, attacker exploit techniques, and methods for remediation.
You have the ability to drive technical, security and architectural reviews.
You know at least one programming language. Plus if you have experience with PHP (e.g: Go, Python, Kotlin, Ruby, etc.).
You have experience with the implementation of security tools and practices in modern, cloud-native environments for customer-facing web-based applications.
You have a clear understanding of the balance between security and user friction.
What You'll Be Doing:
Conducting threat modeling, writing code, implementing security services, mentoring team members, managing stakeholders, building security tools, participating in security operations.
Perks and Benefits:
Competitive reward package – reevaluated annually – including salary, benefits, and pre-IPO equity.
28 days of paid vacation, plus an additional day after 2 and 4 years.
2 Impact Days – one for an individual project and one for a company-wide initiative.
Generous family leave, child support, mental health support, and sabbatical opportunities with PersonioCares.
Office-led, remote-friendly working framework with PersonioFlex.
Annual personal development budget for professional growth.
Regular company and team events, including All Company Culture Week.
Engage in a high-impact working environment with flat hierarchies and short decision-making processes.