Conteúdo da vaga extraído em seções para revisão mais rápida.
Details
Cultivated a community of more than 650,000 active developers and builders
Earned 190K+ GitHub stars, making us one of the world’s Top 40 most popular projects
Backed by top investors, from Sequoia’s first German seed to our SAP's recent strategic investment - bringing us to a $5.2bn valuation
Europe: 30 days of vacation, plus public holidays wherever you are.
US: 20 vacation days, 8 sick days, plus public holidays wherever you are.
Europe: We provide benefits according to local country norms.*
US: Multiple low-premium, low-deductible medical plans with coverage for individuals and families—plus a no-cost premium HDHP option with a pre-seeded HSA—along with dental and vision coverage.
Europe: We provide pension contributions according to local country norms.*
US: 401(k) retirement plan with a 4% employer match.
Europe: We provide benefits according to local country norms.*
US: Company-paid short-term and long-term disability insurance, plus life insurance to support you and your loved ones.
Vulnerability management and disclosure
Own day-to-day vulnerability intake and triage workflows, including the security inbox and bug bounty submissions.
Coordinate remediation with engineering teams and help track issues through to resolution with clear priorities and follow-through.
Support coordinated disclosures, GitHub Security Advisories, and researcher communication in a timely and structured way.
Security tooling and technical assessments
Operate and improve security tooling across the SDLC, including scanning, alert triage, and workflow tuning.
Run practical security assessments such as targeted reviews, validation of findings, and remediation tracking from internal or external testing.
Help improve visibility into product and platform risk through actionable findings, documentation, and technical recommendations.
Secure product development support
Partner with engineers to embed security into design, development, and release processes in pragmatic ways.
Support threat modeling, secure coding guidance, and lightweight security reviews across product and platform areas.
Create clear, useful documentation that helps teams understand risks and apply secure development practices.
Security operations and team foundations
Support the coordination of security incidents by helping with investigation, tracking, communication, and follow-up actions.
Contribute to playbooks, runbooks, and internal processes that improve security readiness over time.
Help shape how the security function works in practice as the team grows, together with the Head of Security and future hires.
Must-haves
🛡️ Product security experience: You have 5+ years of experience in product security, application security, or a closely related security engineering role in a SaaS or cloud environment.
🔍 Vulnerability management skills: You have hands-on experience triaging, validating, and coordinating remediation for security findings.
🌐 Web application security knowledge: You have a strong understanding of common web vulnerabilities and secure development principles.
🧰 Security tooling experience: You’ve worked with security tooling such as SAST, DAST, dependency scanning, container scanning, or similar technologies in practice.
🤝 Engineering partnership: You work well with product and engineering teams and know how to support them without becoming a blocker.
✍️ Clear communication: You can document findings, explain risks, and communicate clearly with both technical and non-technical stakeholders.
⚡ Pragmatic execution: You’re able to prioritize well, focus on the most meaningful risks, and make progress in fast-moving environments.
🏗️ Builder mindset: You’re excited by the idea of joining a newly forming security team and helping shape how the function grows over time.
Nice-to-haves
☁️ Cloud and platform security exposure: You have experience securing cloud-native or multi-tenant SaaS platforms.
🧑💻 JavaScript / TypeScript familiarity: You understand the security considerations of modern JavaScript or TypeScript-based application environments.
🔄 DevSecOps mindset: You’ve helped integrate security checks and practices into CI/CD pipelines and developer workflows.
🎯 Threat modeling experience: You’ve supported or facilitated threat modeling and design reviews in product teams.
🐞 Researcher or bug bounty exposure: You’ve worked with external researchers, bug bounty platforms, or coordinated disclosure processes before.
🌍 High-growth or open-source context: You’ve worked in fast-growing companies or environments with open-source, developer, or technical user communities.
Benefits
Competitive compensation 💸 – We offer fair and attractive pay.
Ownership 💪 – Our core value is to “empower others,” and we mean it—you’ll get a slice of n8n with equity.
Work/life balance 🏖️ – We work hard but ensure you have time to recharge:Europe: 30 days of vacation, plus public holidays wherever you are.US: 20 vacation days, 8 sick days, plus public holidays wherever you are.
Europe: 30 days of vacation, plus public holidays wherever you are.
US: 20 vacation days, 8 sick days, plus public holidays wherever you are.
Health & wellness 🩺 –Europe: We provide benefits according to local country norms.*US: Multiple low-premium, low-deductible medical plans with coverage for individuals and families—plus a no-cost premium HDHP option with a pre-seeded HSA—along with dental and vision coverage.
Europe: We provide benefits according to local country norms.*
US: Multiple low-premium, low-deductible medical plans with coverage for individuals and families—plus a no-cost premium HDHP option with a pre-seeded HSA—along with dental and vision coverage.
Future planning 💰 –Europe: We provide pension contributions according to local country norms.*US: 401(k) retirement plan with a 4% employer match.
Europe: We provide pension contributions according to local country norms.*
US: 401(k) retirement plan with a 4% employer match.
Financial security 🛡️ –Europe: We provide benefits according to local country norms.*US: Company-paid short-term and long-term disability insurance, plus life insurance to support you and your loved ones.
FocoDevXP + SecurityÁrea da vagaSinal de senioridadeSeniorNível do candidatoStackCI/CD, JavaScript, TypeScriptSkills principaisLocalização37 países aceitosElegibilidade
Stack
Use estas tags para comparar vagas remotas similares.
Europe: We provide benefits according to local country norms.*
US: Company-paid short-term and long-term disability insurance, plus life insurance to support you and your loved ones.
Career growth 📈 – We hire rising stars who grow with us! You’ll get €1K (or equivalent) per year to spend on courses, books, events, or coaching to level up your skills.
A passionate team 🤩 – We love our product, and we prove it with regular hackathons where we see who can build the coolest thing with it!
Remote-first 🌏 – Our team works remotely across Europe, with regular off-sites for team bonding. Some roles, like sales in the US, are hybrid—please check the job description.
Giving back 🤝 – We're big fans of open source, and you'll get $100 per month to support projects you care about.
AI enablement 🤖 – We believe in working smarter—everyone gets an unlimited AI budget to explore and use the best tools to boost productivity and creativity.
Transparency 🙏 – We all know what everyone’s working on, how the company is doing—the whole shebang.