All positions
Senior Product Security Engineer
Department:Security
Location:Barcelona
We are seeking a
Senior Product Security Engineer
to drive the product security strategy and empower our engineering teams to design and build secure software across our diverse product portfolio. This role involves leading the integration of advanced security practices into cutting-edge technologies—such asGenerative AI (GenAI), Large Language Models (LLM), and data governance systems
—while also ensuring the security of ourmicroservice architecture
andmobile application
. You will beindependently
responsible
for delivering robust security for every feature and service we provide to our customers. TheProduct Security
team is part of N26’sSecurity Engineering Segment
. In this role, you will serve as akey mentor
and
contributor
, actively promoting N26’s security standards by integrating security practices throughout the product lifecycle. You will provide guidance and support to other engineers, sharing your expertise and helping to elevate the overall security posture of our products. As we embrace emerging technologies like GenAI and LLMs, this role willindependently
lead efforts to safeguard sensitive data, align with data governance principles, and address risks unique to AI-driven products. You will also ensure our broader product ecosystem remains secure, scalable, and resilient. Additionally, you willproactively
drive the enhancement of ourProduct Security Program
, providing strategic guidance to engineering teams to anticipate and counter evolving threats.In this role, you will:
-
Independently apply advanced knowledge of security architecture
to guide software engineers in building secure products and services across a diverse technology stack, including microservices, mobile applications, and cutting-edge AI-driven solutions. -
Serve as a technical leader and mentor
, collaborating closely with engineering teams to understand and address their complex application security needs, including those related to emerging technologies like Generative AI (GenAI) and Large Language Models (LLM). -
Perform application security design reviews, threat modeling, and code reviews
, ensuring security principles are embedded in every stage of the development lifecycle. -
Utilize
expert penetration testing skills
to assess and strengthen the security of internal and external applications and services, including AI-powered features and traditional systems. -
Independently develop advanced tooling
to support the Secure Software Development Lifecycle (SSDLC) and other security initiatives across diverse product environments. -
Build
automation frameworks
to enable engineering teams to deliver secure features efficiently, whether for AI solutions or traditional applications. -
Mentor and educate engineering teams
and security champions on secure coding and development practices, including security considerations unique to AI and data governance. -
Empower engineering teams to independently identify and remediate vulnerabilities
before they reach production, with a focus on both general application security and AI-specific risks. -
Lead reactive incident response
if a security event occurs. -
Conduct
proactive and in-depth research
to detect new attack vectors, including those targeting AI technologies, data pipelines, and LLM-based systems.
What you need to be successful:
Background and Skills:-
Expertise in software engineering
with one or more general-purpose programming languages (e.g., Python, Go, or similar). -
Extensive experience with
threat modeling
, security testing, and analyzing applications, including those involving emerging technologies likeGenerative AI (GenAI) and Large Language Models (LLM)
. -
Prior experience in
building automation
to support the Secure Software Development Lifecycle (SSDLC). -
Proven ability to
lead and mentor
engineering teams
, supporting them throughout the Software Development Lifecycle (SDLC). -
A
passion for information security
and an interest in staying ahead of evolving threats, particularly those targeting AI systems. -
Deep technical knowledge in multiple areas:
- Cloud and networking security
- Web application security
- Mobile security
- Security challenges unique to AI-driven products and data governance.
- Strong understanding of microservice architectures and working with scalable software in the cloud.
-
A
highly developed ability to identify flaws
in software and effectively communicate and implement practical solutions. - Expertise in static/dynamic code analysis, fuzzing, and other techniques to identify security vulnerabilities.
-
Solid knowledge of
secure coding best practices
and security standards, including the OWASP Top 10. -
The ability to
strategically balance security risks
with the need for product innovation and advancement.
What’s in it for you:
- Accelerate your career growth by joining one of Europe’s most talked about disruptors 🚀.
- Employee benefits that range from a competitive personal development budget, work from home budget, discounts to fitness & wellness memberships, language apps and public transportation.
- As an N26 employee you will have access to a Premium subscription on your personal N26 bank account. As well as subscriptions for friends and family members.
- Vacation days vary depending on your location of work. Additional day of annual leave for each year of service.
- A high degree of autonomy and access to cutting edge technologies - all while working with a friendly team of peers of diverse nationalities, life experiences and family statuses.
- A relocation package with visa support for those who need it.