Match score not available

Senior Product Security Engineer

Remote:

Full Remote

Contract:

Full time

Experience:

Senior (5-10 years)

Work from:

Germany

Offer summary

Qualifications:

Experience deploying and managing security tooling., Strong understanding of secure coding and cryptography., Hands-on experience with vulnerability assessments., Certifications such as OSCP or AWS Security are a plus..

Key responsabilities:

Integrate secure practices in the development lifecycle.
Conduct security assessments and provide recommendations.

Finoa Financial Services Scaleup https://finoa.io/

51 - 200 Employees

See all jobs

Job description

Your mission

We are looking for a Product Security Engineer to ensure the confidentiality, integrity, and availability of our systems and applications. You will work closely with development teams to identify and mitigate security vulnerabilities throughout the software development lifecycle. This includes performing security assessments, implementing secure coding practices, and driving the adoption of best-in-class security technologies. Your work will span traditional applications as well as Web3 technologies.

We can offer you an exciting and fast-paced environment with some very unique security challenges. Security is Finoaâs business, and you will have an important and impactful voice within the organization.

In this role, you will:

You will work closely with Product and Infrastructure teams across the organization to integrate secure practices into all stages of the software development lifecycle, from product inception to operations.
You will conduct code reviews and penetration tests for Finoa applications, as well as manage the delivery of external assessments.
Conduct threat modelling to identify potential risks as early as possible in the development lifecycle.
Conduct security assessments and provide security recommendations for new libraries, integrations, and vendors.
You are open to working on adjacent security functions as needed, such as infrastructure security and threat detection, and have an always learning mindset.Â
Deploy and manage secrets management solutions to enhance security controls.
Deploy and manage SAST, DAST, and SCA tools to automate security testing. Tune and tailor this tooling for Finoaâs stack.
Perform threat modeling, vulnerability assessments, and cryptographic security reviews.
Provide security guidance to development teams on secure coding practice and secure software architecture.
Ensure compliance with industry security standards and best practices.
Collaborate with cross-functional teams to improve security posture across the organization.

What you need to be successful:

Experience deploying and managing SAST, DAST, and SCA tooling.
Strong understanding of secure coding, threat modeling, cryptography, and blockchain security.
Hands-on experience with vulnerability assessments, penetration testing, security monitoring, and incident response.
Knowledge of security best practices in AWS.
Familiarity with key management solutions and PAM systems.
Certifications such as OSCP, OSWE, or AWS Security are a plus.
Excellent communication and collaboration skills to work with development and security teams.
Experience with scripting and automation of security related tasks.
Experience working with HSMs or other secure computational technologies is a big plus.
Previous experience working with crypto or crypto related technologies is also a plus.

Whatâs in it for you:

Accelerate your career growth by joining one of Europe's leading cryptocurrency management platforms
25 vacation days per year, with an additional day for each year of service - up to 30 days
Access to cutting-edge technologies, high levels of autonomy, and international working environment
Flexible working hours, hybrid work setup from both our Berlin and Porto offices
Fitness (Urban Sports Club) and mental health (Likeminded) memberships
Hot/cold drinks and snacks in the office, and All Hands meetings once a month with pizza

Apply for this job

About us

Finoa is a regulated crypto asset platform for institutional investors co-founded in 2018 by Christopher May and Henrik Gebbing. The company came to life through the shared aspiration to make institutional interactions with crypto assets simple and secure, and is backed by prominent investors, including Balderton Capital, Coparion, Maven11, Signature Ventures, and Venture Stars.

Finoa has since then grown into a truly international company, powered by a diverse team and serving high-profile clients from around the world. Reference clients include renowned venture capital firms, crypto hedge funds, corporates, Web3 companies, and high-net-worth individuals.

If you want to join one of Europeâs most exciting crypto start-ups, be part of the next wave of innovation disrupting finance, and grow together with us, then this is your chance to apply.

Finoa is an equal opportunity employer devoted to diversity and inclusion in the workplace. We do not discriminate on the basis of race, religion, color, national origin, gender, sexual orientation, age, marital status, or disability status.