All positions
Principal Security Engineer
Department:Security
Location:Berlin
About the opportunity
We are seeking a Principal Security Engineer with a hands-on approach to lead our Security Engineering teams technical roadmap, particularly focusing on cloud and product security. You will not only set the strategic direction but also exemplify excellence in driving solutions from inception to fruition across the tech and security segments. Your leadership will serve as a guiding roadmap, inspiring and motivating the team to achieve outstanding results.
In this role, you will:
- AWS Security Architecture: Design and ensure the implementation of AWS security Best Practices and controls, leveraging AWS native services and 3rd party solutions, like CNAPP, DSPM, IPS. Define and enforce security standards, policies, and procedures. Collaborate with development teams to integrate security into the software development lifecycle (SDLC). Conduct security risk assessments and threat modeling. Stay up-to-date with emerging security threats and vulnerabilities specific to AWS.
- Infrastructure Security: Secure infrastructure components, including networks, servers, and containers on AWS. Define network security controls, such as security groups, network ACLs, and VPC endpoints. Harden operating systems and applications. Conduct vulnerability assessments and penetration testing.
- Product Security: Collaborate with product teams to develop secure solution architectures and build Security as Code solutions that can be leveraged by developers, ensuring seamless, consistent controls which enable robust, high-velocity delivery. Implement secure coding practices and secure software design principles. Respond to security vulnerabilities and incidents related to products.
- Team Leadership: Mentor and guide junior security engineers. Foster a culture of security awareness and best practices. Collaborate with other teams to ensure security is a top priority.
- Security Engagement: Engage with N26’s Principal Engineering community as a security representative, advocating for security-first approaches and increasing organizational awareness.
What you need to be successful:
- Strong understanding of cloud security principles and best practices, with a focus on AWS.
- Proficiency in AWS services, including IAM, VPC, Security Groups, WAF, Shield, GuardDuty, Inspector, Macie, Bedrock and EKS.
- Experience with service mesh technologies on AWS.
- Knowledge of data lakehouse architectures and data security on AWS.
- Experience with cloud native infrastructure security tools and techniques on AWS.
- Strong understanding of security frameworks and standards (NIST, CIS, OWASP).
- Excellent problem-solving and analytical skills.
- Strong communication and collaboration skills.
- Experience with scripting languages (Python, Go, etc.) and automation tools.
- Security certifications (CISSP, CISM, CCSK, AWS Security Specialty) are a plus.
Bonus Points
- Experience with GCP and Azure security.
- Knowledge of emerging technologies like GenAI, LLMs, and serverless computing and container orchestration.
- Experience with security incident response and digital forensics.
- Knowledge of relevant regulatory compliance requirements (e.g., DORA, GDPR, PCI DSS, PSD3).
What’s in it for you:
- Accelerate your career growth by joining one of Europe’s most talked about disruptors 🚀.
- Employee benefits that range from a competitive personal development budget, work from home budget, discounts to fitness & wellness memberships, language apps and public transportation.
- Come together in the office with your team for a dedicated day of teamwork each week, plus another day of your choice, and enjoy the flexibility of remote work the rest of the time. Some roles may require additional in-office presence.
- As an N26 employee you will have access to a Premium subscription on your personal N26 bank account. As well as subscriptions for friends and family members.
- Additional day of annual leave for each year of service.
- A high degree of autonomy and access to cutting edge technologies - all while working with a friendly team of peers of diverse nationalities, life experiences and family statuses.
- A relocation package with visa support for those who need it.