Lead Security Engineer

At Pipedrive, we understand that exceptional products stem from exceptional people. Our team embodies our core values and we prioritize hiring individuals who resonate with them. Since 2010, Pipedrive has been dedicated to empowering sales and marketing teams with intuitive and robust tools that streamline their daily workflows. Today, our cloud-based platfo…

At Pipedrive, we understand that exceptional talent is essential in creating outstanding products. Our team embodies our company values, which guide our hiring process. Since our inception in 2010, we have been dedicated to empowering sales and marketing teams with intuitive, robust tools that streamline their daily operations. Our cloud-based software is now trusted by over 100,000 businesses across 179 countries. From a modest five-member team, we have grown to more than 850 professionals representing over 50 nationalities across ten offices in Europe and the US. In 2020, we proudly became the fifth unicorn from Estonia following a significant investment from Vista Equity Partners, a leading global investment firm focused on enterprise software, data, and technology-enabled businesses.We are seeking a Principal Security Engineer to join our team. This pivotal role involves designing and developing the security architecture for our SaaS platform and corporate operations, as well as establishing the tools and methodologies that our security team will utilize. This high-level engineering position focuses on creating systems that automate security at scale while proactively addressing potential threats. Additionally, you will collaborate closely across departments, providing advisory support to both technical and business stakeholders to help them achieve their objectives securely.If you find this opportunity intriguing, we would love to connect with you!

Join Affinidi as the Manager of Security Engineering and play a pivotal role in safeguarding our innovative technology solutions. As a leader in this domain, you will oversee a talented team of security engineers, driving the development and implementation of security strategies and frameworks that protect our systems and data.In this position, you will collaborate across departments to identify vulnerabilities, enhance security protocols, and ensure compliance with industry standards. Your expertise will be crucial in adapting to the ever-evolving security landscape, allowing us to maintain our commitment to quality and trust.

Role overview Superhuman Platform Inc. is hiring a Security Engineer to strengthen the protection of its systems and data. This position is located at the Berlin hub and focuses on defending against emerging security threats. What you will do Collaborate with teams throughout the company to design and maintain security protocols Monitor existing safeguards and identify ways to improve the safety of digital assets Address security risks as they are discovered

Join our dynamic team at dev2 as a Cloud Security Engineer. In this role, you will be responsible for safeguarding our cloud infrastructure and ensuring the highest standards of security are maintained. You will collaborate with cross-functional teams to design and implement robust security measures, conduct risk assessments, and respond to security incidents.We are looking for someone with a passion for cybersecurity and a proactive approach to problem-solving. If you thrive in a fast-paced environment and are eager to make a significant impact, we want to hear from you!

Role overview airapps is hiring a Security Engineer to strengthen system protection and support data integrity throughout the company. This full-time role is located in the Berlin Metropolitan Area. Key responsibilities Find and assess vulnerabilities within infrastructure and application layers Apply security controls and measures to lower risk Create and refine strategies to guard against cyber threats Support compliance efforts with industry standards Collaboration Security Engineers at airapps partner with both technical and operational teams. The group works together to sustain a secure environment and address new risks as they arise.

Enpal is building Europe’s largest renewable energy community. The company’s products include rental solar systems, electricity storage, wall boxes, and smart meters, all managed through the AI-powered Enpal One+ platform. Enpal’s mission: make clean, decentralized energy accessible and reliable. Role Overview The Cloud Security & Compliance Engineering Lead joins the CISO organization at Enpal. This role takes ownership of translating ISO 27001, NIS2, and KRITIS requirements into practical, prioritized tasks. Day-to-day work includes assessing existing systems, pinpointing gaps, collecting evidence, and ensuring remediation steps are followed through to completion. This is a hands-on position with direct involvement in implementation, not just governance. The role covers the full Enpal technology stack: cloud infrastructure, identity management, endpoints, applications, and a range of platforms. Collaboration is key, expect to work closely with IT engineers and the CTO center, reviewing configurations, challenging architectural choices, and using AI tools to streamline processes. Enpal offers a setting defined by agility and rapid growth, with strong opportunities for career progression. Security, engineering, and product teams work side by side to make sustainable solar energy available to more people. This role helps build the compliance foundation that keeps Enpal secure and trusted as it scales. Main Responsibilities Develop secure solutions: Deliver incremental improvements in every iteration, focusing on user experience and climate impact. Apply Shift-Left and Zero-Trust principles throughout all teams. Translate regulations into action: Break down ISO 27001, NIS2/BSIG, and KRITIS requirements into concrete, prioritized tasks. Develop solutions directly or partner with CTO and IT teams for implementation. Evaluate the technology stack for compliance: Take a hands-on approach across platforms such as Azure, Entra ID, M365, Intune, Defender XDR, AKS, Terraform, CI/CD pipelines, and Datawarehouse. Identify where current practices fall short of requirements and drive improvements. Location Berlin, Germany – Design Office

Nexthink seeks a Senior Corporate Security Engineer based in Berlin to support the protection of its digital infrastructure. This position centers on reinforcing systems to address emerging threats and vulnerabilities. Role overview The Senior Corporate Security Engineer will collaborate with teams throughout the company to implement effective security measures. The goal is to enhance Nexthink's overall security posture and ensure that best practices are consistently applied. Key responsibilities Work with multiple teams to establish and maintain strong security practices Identify and address new threats and vulnerabilities affecting company systems Contribute to ongoing improvements in security across the organization Location This role is based in Berlin.

Join cosuno as a Platform & Security Engineer, where you'll be pivotal in ensuring the security and robustness of our platform. As part of our dynamic team, you'll have the opportunity to work remotely or from our Berlin office, allowing for a flexible work environment. Your expertise will guide the development and implementation of security protocols, enhancing the overall integrity of our systems.

MissionAt Neko Health, our goal is to transform healthcare from a focus on treatment to a focus on prevention. We utilize cutting-edge, non-invasive technology combined with clinical expertise to provide early, actionable health insights.Role PurposeAs a Cloud Security Engineer at Neko Health, you will significantly contribute to safeguarding our Azure environment in a regulated healthcare framework. Your responsibilities include designing and implementing robust security measures, monitoring for potential threats, ensuring compliance, and empowering teams to securely develop and manage cloud infrastructure at scale.What You’ll Achieve in the First 6–12 Months• Define and enforce secure baselines across Azure infrastructure, enhancing our cloud security posture and risk visibility.• Deploy and optimize Microsoft Defender for Cloud and Sentinel for improved threat detection and response.• Introduce and refine policy-as-code methodologies for infrastructure deployments, ensuring consistent and auditable security enforcement.• Collaborate with engineering and DevOps teams to integrate security into infrastructure-as-code and architectural designs.• Assist in cloud-related incident responses and prepare audit-ready documentation that meets regulatory requirements.Key Responsibilities• Secure Azure resources, including virtual machines, storage, and databases.• Configure and oversee Microsoft Defender for Cloud and Microsoft Sentinel.• Create and enforce policy-as-code utilizing Terraform and ARM templates.• Conduct architecture assessments and threat modeling for cloud services.• Work closely with DevOps and engineering teams to embed security into infrastructure-as-code.• Support incident responses and maintain security documentation that is audit-ready.Minimum Qualifications• Proven experience with Azure security services, including Defender for Cloud and Sentinel.• Solid understanding of identity and access management principles, least privilege access, and identity protection strategies.• Familiarity with compliance standards such as ISO 27001, NIST CSF, and HIPAA is advantageous.• Proficient in Infrastructure-as-Code tools like Terraform and ARM templates.• Experience with integrating SIEM/SOAR platforms and cloud monitoring solutions.

This position can be located in either Berlin or London. JOIN US TO MAKE A DIFFRENCE IN FINANCE Trade Republic is Europe's largest savings platform, with a presence in 17 countries and over 8 million customers who trust us with more than €100 billion in assets. We are on a mission to empower individuals to accumulate wealth through straightforward, secure, and accessible financial systems. This role offers a unique opportunity to advance your career alongside a talented team using cutting-edge technology, as we shape a bright financial future for millions. YOUR ROLE AND IMPACT As a Senior Security Engineer within our Application Security team, you will play a critical role in securing Trade Republic's applications and development lifecycle by integrating proactive security measures and upholding engineering excellence. Your key responsibilities will include: Collaborating with engineering teams to embed security throughout the software development lifecycle from design to deployment. Conducting security code reviews, threat modeling sessions, and architecture evaluations for essential applications and services. Designing and implementing SAST, DAST, and SCA solutions to identify vulnerabilities early in the development process. Building and maintaining application security testing automation within CI/CD pipelines. Creating secure coding standards, security libraries, and reusable security components for engineering teams. Executing penetration testing and vulnerability assessments of web applications, APIs, and mobile applications. Triaging, prioritizing, and remediating application vulnerabilities in close collaboration with development teams. Establishing a security champions program and delivering security training to engineering teams. Researching emerging application security threats and integrating defensive measures into our security architecture. Contributing to the management of bug bounty programs and liaising with external security researchers. WHAT WE SEEK IN YOU Core Qualifications: 5+ years of experience as a Security Engineer, with a minimum of 4 years specializing in application security. A deep understanding of web application security principles and practices. Experience in implementing security measures and conducting security assessments. Strong communication skills and the ability to work collaboratively in a team-oriented environment.

Are you passionate about shaping the future of work with AI? At Cresta, we're on a transformative journey to enhance the efficiency and effectiveness of knowledge workers globally. Our mission is to empower teams to achieve 100x more productivity, 10x faster responses, and a significant improvement in quality. Our cutting-edge Expertise AI technology extracts valuable insights from every interaction, facilitating real-time coaching during customer engagements. Founded in 2020 and emerging from the Stanford AI lab, Cresta has seen remarkable growth, increasing our revenue and team size by 300%! Backed by renowned investors such as Andreessen Horowitz and Sequoia, we are proud to serve clients including Intuit, Porsche, Adobe, and Dropbox. Recognized by Business Insider, Forbes, and Gartner as a startup to watch, we seek dynamic and entrepreneurial-minded candidates eager to leverage advanced AI solutions for tangible business challenges. Cresta is on the lookout for a dedicated Software Security Engineer to join our security and compliance team. In this role, you will play a pivotal part in fortifying our global data protection and cybersecurity initiatives.

We are seeking an experienced and dynamic Team Lead to oversee our Application Security Team at moia. In this pivotal role, you will guide a talented group of security professionals dedicated to safeguarding our applications and ensuring the highest security standards are met. You will collaborate closely with development and product teams to integrate security practices into the software development lifecycle.As a Team Lead, you will be responsible for fostering a culture of security awareness and continuous improvement within the organization. Your leadership will empower the team to implement effective security measures, conduct threat assessments, and respond to security incidents.

About commercetoolsAt commercetools, we believe that true innovation is rooted in a solid foundation, achieved through the right synergy of our products and our talented people. Our team is made up of visionary builders, adventurous explorers, and creative problem-solvers. These are the individuals who have not only transformed commerce architecture with a more flexible approach but also fostered a culture of experimentation that drives our success. Together, we are the pulse of commerce innovation today. We empower the next generation of commerce solutions for our clients—whether it's AI-driven tools for informed decision-making, merging digital and physical shopping experiences, or creating new avenues for industries to engage with their customers. We enable the world’s most ambitious companies to experiment, scale, and thrive without limits. Here, the best ideas take precedence over the loudest voices, and you will have the resources, autonomy, and trust to not only redefine the future of commerce but to shape your own journey.Your ImpactAs a Principal Engineer in Product Security, you will play a pivotal role in supporting the Engineering team by addressing complex technical challenges and facilitating a 'shift left' approach to building secure services on a multi-cloud infrastructure.

About UsAt Helsing, we are pioneers in defense artificial intelligence. Our mission is to safeguard democratic values through cutting-edge technology, empowering societies to maintain their sovereignty and ethical standards.We recognize the profound responsibility that comes with developing and deploying powerful technologies such as AI. Our dedicated team of engineers, AI experts, and program managers is committed to addressing the most complex challenges in defense.We are seeking passionate individuals to join our European teams, where innovation is encouraged, and discussions on the ethical implications of technology are welcomed.Your RoleAs a Security Systems Engineer, you will spearhead the security architecture for our next-generation satellite constellations. You will oversee the mission's security strategy, ensuring secure integration across space systems, ground segments, external partners, and customers. Your mission is to establish a secure-by-design approach from inception, crafting a comprehensive security concept of operations and translating intricate security requirements into impactful engineering solutions.Daily ResponsibilitiesSecurity Architecture Leadership: Design, develop, and maintain the overarching security architecture and concept of operations (CONOPS) for the constellation program.Space Segment Security: Lead the integration of specialized satellite security units, including cryptographic and COMSEC hardware, into the satellite bus and payload design.Ground Segment Security: Manage the implementation of ground security units within the Ground Control Segment (GCS) and Mission Control Segment (MCS), ensuring secure command, control, and data downlinks.Primary Security Liaison: Act as the main contact point for government clients and industrial partners regarding security-related matters.

About ParloaAt Parloa, we are dedicated to creating an iconic AI platform company that empowers Fortune 2000 enterprises with top-tier conversational AI solutions. Our flagship Agent Management Platform (AMP) is already trusted by industry giants such as Booking.com, Allianz, and American Express. As we rapidly scale, our goal is to establish Parloa as Europe’s premier engineering organization.With aspirations to rank among the top three vendors in a Gartner Magic Quadrant category and to quadruple our annual revenue between 2025 and 2028, we are intentionally cultivating an engineering culture that prioritizes speed, quality, and innovation.To meet our ambitious goals, we are investing in delivery excellence: aligning strategy with execution, enhancing quarterly and capacity planning, and ensuring consistent, high-quality delivery across our roadmap.The RoleAs we build the AI platform that enterprises rely on for their critical conversations, we recognize that security is paramount. We are seeking a dedicated individual to take full ownership of our security practices.In the role of Director of Security Engineering, you will not merely manage a team; you will redefine security within a rapidly evolving AI company from the ground up. You will establish the security strategy, cultivate a security-focused culture, and implement systems to safeguard our platform, customers, and their data. You will lead our SecOps team within the Tech Platform, collaborate across IS&T and Internal IT, and serve as the trusted advisor for our customers, assuring them that Parloa is as committed to security as they are.This is a builder role. If you aspire to define what security means in an AI-native company rather than follow an existing playbook, this opportunity is for you.What You’ll DoDefine and execute the product and platform security strategy by building scalable programs, tools, and practices for our fast-growing AI platform.Lead and expand the security team by hiring exceptional talent, nurturing senior leaders, and fostering a culture where security is a shared responsibility among all engineers.Oversee application security throughout the SDLC, integrating secure coding practices, SAST/DAST/SCA tooling, threat modeling, and architectural security reviews into engineering workflows to maintain velocity without compromising safety.Design and implement robust security architectures for cloud-native applications, Kubernetes workloads, and CI/CD pipelines.Establish and manage the detection and response program, developing threat detection capabilities and optimizing alerting and telemetry to ensure swift incident response.

This position is available in Berlin or London. UNLOCK YOUR POTENTIALTrade Republic is Europe's premier savings platform, operating across 17 countries and entrusted with over €100 billion in assets by more than 8 million customers. We are on a relentless pursuit to innovate and expand.Our mission is bold: we aim to empower individuals to build wealth through seamless, secure, and no-cost access to financial systems. Join us and elevate your career by collaborating with exceptional talents and cutting-edge technology to create a positive legacy for millions. ROLE RESPONSIBILITIESAs a Senior Security Engineer within our Cloud Security team, you will design and maintain secure cloud infrastructures that safeguard Trade Republic's essential systems and customer data. Your key responsibilities will include:Creating and enforcing security controls for cloud infrastructure across AWS environments;Establishing and upholding Infrastructure as Code (IaC) security standards along with automated compliance validation;Developing cloud security automation utilizing Terraform, CloudFormation, and Python to enforce security policies;Implementing and refining Cloud Security Posture Management (CSPM) solutions and remediation workflows;Architecting secure network segmentation, VPCs, security groups, and zero-trust network access frameworks;Managing identity and access management (IAM) policies, service control policies, and least privilege frameworks;Monitoring and responding to cloud security incidents using CloudTrail, GuardDuty, Security Hub, and SIEM integration;Conducting security assessments of Kubernetes clusters, container registries, and serverless architectures;Collaborating with platform and infrastructure teams to enhance cloud security and address vulnerabilities;Championing cloud security initiatives, including encryption strategies, secrets management, and data protection measures;Evaluating and integrating cloud-native security tools for runtime protection and threat detection.QUALIFICATIONSRequired Experience:5+ years as a Security Engineer with at least 4 years focused on cloud security;Expertise in AWS, Terraform, and Python;Strong understanding of cloud security frameworks and best practices;Proficient in security automation and compliance tools.

Staffbase develops AI-native solutions for employee communication and engagement, serving clients worldwide through products like intranet, employee apps, and email platforms. With offices in Berlin, Chemnitz, New York City, and several other global locations, Staffbase supports over 2,000 clients and reaches more than 16 million employees. Role overview The Security Engineer position is based in Berlin, Brandenburg. Security plays a crucial role at Staffbase, and the Product Security team works closely with engineering groups to protect software and customer data. The team values diverse backgrounds and believes that a range of perspectives strengthens security strategies. What you will do Provide developers with tools, guidance, and insights to embed security throughout the development lifecycle Partner with engineering teams to help them integrate security measures without blocking progress Work directly with current security practices and technologies Receive mentorship from experienced security engineers Support security efforts within a global SaaS environment Team culture The Product Security team encourages curiosity, humility, and ongoing learning. Team members support each other, take responsibility for their work, and celebrate achievements together. New ideas are welcomed, and everyone can help shape how Staffbase approaches product security.

KAYAK, a proud member of Booking Holdings (NASDAQ: BKNG), stands as the premier travel search engine globally. With an immense volume of queries across our diverse platforms, we assist travelers in discovering their ideal flights, accommodations, rental vehicles, and vacation packages. Our innovative corporate travel solution, KAYAK for Business, is revolutionizing the business travel landscape.As part of KAYAK, you will join a travel enterprise that encompasses a range of renowned metasearch brands, including momondo, Cheapflights, and HotelsCombined. From our humble beginnings to our current status as an industry leader, we thrive on innovation, encouraging every team member to leave their mark. Our mission centers on creating the most effective travel search engine, simplifying global exploration for everyone.In the role of Security Engineer at KAYAK, you will leverage cutting-edge technologies to execute top-tier security protocols. We value innovative thought as a key driver in safeguarding both our corporate and customer data. We are eager to welcome inventive and driven individuals who are passionate about engineering to propel these efforts forward! More details about our security program can be found at KAYAK Security.This position requires working from our Berlin, Germany office three days a week.Key Responsibilities:Enhance security measures in our endpoint, on-premises, and cloud IT environments.Monitor and investigate potential security threats.Conduct routine scanning and auditing of critical systems.Contribute to the development of security incident response protocols.Assist in managing and deploying state-of-the-art security tools.

Enpal is working to build Europe's largest renewable energy community. The company offers rental services for solar systems, electricity storage, wall boxes, and smart meters, all managed through the Enpal One+ platform. With a focus on digital, decentralized, and fully renewable solutions, Enpal aims to scale quickly and address climate change head-on. Role Overview The Senior Cloud Security Engineer joins the CISO organization in Berlin (Design Office). This role focuses on translating ISO 27001, NIS2, and KRITIS requirements into practical steps, assessing systems, identifying compliance gaps, collecting evidence, and ensuring issues are resolved. The work spans Enpal's entire technology stack, including cloud infrastructure, identity management, endpoints, applications, and various platforms. This is a hands-on position. The engineer will collaborate with IT and CTO teams, review configurations, challenge architectural choices, and use AI tools to improve efficiency. The role is deeply involved in implementation, not just governance. Enpal values agility and offers opportunities for career growth. Security, engineering, and product teams work closely to support the mission of making solar energy accessible and sustainable. The Senior Cloud Security Engineer will help build the compliance framework that keeps Enpal resilient and trusted. What You Will Do Create Secure Solutions: Deliver incremental improvements with each iteration, focusing on user experience and climate goals. Apply Shift-Left and Zero-Trust principles across all units. Translate Regulations into Action: Break down ISO 27001, NIS2/BSIG, and KRITIS requirements into prioritized tasks. Develop solutions or coordinate with CTO and IT teams to implement them. Evaluate Technology Stack for Compliance: Conduct hands-on assessments of Azure, Entra ID, M365, Intune, Defender XDR, AKS, Terraform, CI/CD pipelines, Datawarehouse, and other platforms. Identify where current practices differ from regulatory standards. Build Resilience Against Threats: Strengthen Enpal's ability to mitigate and respond to security threats, keeping systems secure and reliable.