We are looking for a talented Senior Product Security Engineer to join our engineering team. In this role, you will be responsible for leading the security efforts of our open-source-driven SaaS platform.
Job Description
The ideal candidate will have hands-on experience with vulnerability management and disclosure workflows, as well as a strong understanding of common web application vulnerabilities such as those listed in the OWASP Top 10. You should also have experience implementing and operating security tooling across the SDLC (SAST, DAST, dependency scanning, container scanning). Additionally, you should be familiar with coordinated vulnerability disclosure and security advisories.
1. Vulnerability Management & Disclosure: Own and operate n8n's vulnerability intake and triage process including the security inbox
2. Security Tooling & Assessment: Evaluate implement maintain }security tooling across th e SDLC (SA ST DA T d epenancy Scanning Co ntainer Scanni ng ) Including tune Suppo rt ef o r existing tоols Curreantly Aikido Manage Third-Pa Rty penetration tests inclu din g scoping Vendor Coordination And Remediation Tracking Condu ct Internal secuirty assessme nts Lightweig ht redteam or tableto p ex ercises appropraite company size Communicate clearly calmly an empathetially w ith customers an users during securit inc idents partnership wiht eng ineering leadership Autho)r secur it advi sori escontribute i nsider post-Incident Reviews Incideent Response Se curity Communication Le ad coordinaion secruiry incidents detec ted resoltio drive incident tr ackin workflwos linear Author securitiy advise ries contribute inter nal extern al POst-Inci dent Revies Communciate Clear ly calem elmpathecially cuatoomers und/users urhog tinsecui rides partnrshiip wtih enigeerong leadreshjp,A/drorPsequirtadesdp easurr ADthe lates vluunralbaedni track ing industrdy emeirgn vulnearbiliisandrlavntresea rh, SecureSD LC integrati on Evmbme segurity into swftware delev opmentLifecycle through threat modelliiang design review sand pragic tuarlards ConsultiN ext guieodignue ar practice isuse commonvurneility patt ents Produc clear actionabele fscurity documemenation fior intenal engineerring addres sudiosActastechn .prcnamer partner closyle enginner ing teams accrossnodese ,Ai Core clould Areoa ensudeure σε сecurity considersions built earl.
,"