Security Engineer, Principal (m/f/d)
Berlin, Germany
Affinidi
The concept of Holistic Identity houses the entire spectrum of discovering, collecting, sharing, storing, and even monetising personal data in the digital realm.Affinidi focuses on changing data ownership for good, empowering communities with control and ownership of their data. We do that through enabling the creation, sharing and verification of Verifiable Credentials – a secure and cryptographically verifiable way of sharing sensitive data.
Headquartered in Singapore, with offices in India, Germany and Ukraine, Affinidi offers a myriad of solutions deploying decentralized technology and verifiable credentials that create a delightful experience for different groups of customers. These include industries such as health, travel, finance, education and employment. Affinidi, along with Trustana and GoodWorker, are businesses under LemmaTree.
We’re more than just a workplace. In our company, you’ll discover a world of passionate people guided by an inclusive purpose. We love the journey as much as the destination, and belonging to a team that prides itself on mutual respect.
If you're passionate about decentralised technologies, we’d love to speak with you.
Equal Opportunity
We believe in hiring different and diverse talent and providing a safe space where everyone can share their views without fear, where differences are celebrated, and where no one is left out. Inclusive cultures are the foundation for collaboration and innovation within our team.
About the role
As a Principal Security Engineer at Affinidi, you will take on a significant role by driving security initiatives that are larger in scope, impact, and value, leveraging your influence.
We are looking for people with the following skills:
- Security is Job-Zero: Security is your top priority, and you are the type of leader that drives other people to care about security as a top priority as well
- Data-Driven and Analytical: Analyzing and drawing actions based on data and risk analysis
- Strong communicator: You are exceptional at articulating security concepts to all levels of internal and external audiences. You are resourceful, even with tight schedule and limited resources available to you.
- Superior Problem-Solving Skills: Identifying and solving complex problems in a methodological manner. You can dive deep into challenges and can come up with workable solutions for any problem
- Intellectual Curiosity: Possessing innate desire for learning, you understand broad security concepts and ask thoughtful, deliberate questions
- ‘Get job done’ mentality: You are prepared to work with the ambiguity of a start-up environment. You thrive in a fast-paced, high-growth and ambitious organisation. You can get things done and think about the big picture, while keeping security at the forefront of everything you do
- Influence: Ability to influence without authority, through persuasion, negotiation, and data-driven consensus-building, both inside your domain specialty, and cross-functionally
What you’ll do:
- Own and drive security strategy and influence change across all the organization and products
- Represent Affinidi Security outside the organization as a subject matter expert
- Drive difficult or highly complex security reviews and threat modeling. Assist and direct other team members on challenging security reviews
- Own documentation and procedures for security reviews as well as lead by example for what successful security reviews look like
- Provide technical leadership and subject matter expertise as a security expert to our teams
- Enable automated security testing at scale for our entire platform to identify and proactively resolve vulnerabilities
- Design, architect and develop tooling that helps ship secure code faster
- Drive security issues through the incident response process to ensure risks and compliances are managed
- Be excited and curious, as you define what good looks like for security in a decentralized world
- Work in an exciting startup environment where you can be autonomous and try new things
You should apply if you
- Have 13+ years of experience of relevant experience for the role
- You have vast experience in Security Engineering, Secure architecture design
- You have experience driving roadmaps and building security effective teams
- You are strongly automation driven and a shift–left advocate
- Have strong development or scripting experience and skills
- Have worked with Distributed Systems and Microservices before
- Have strong cryptography knowledge
Our Stack is
- Javascript/Typescript/node.js
- AWS
- Gitlab
- Containers
- IOS/Android
Bonus points if:
- You have experience with applied cryptography
- You have experience with data privacy & data security implementations on blockchain & distributed storage platforms for individuals & organizations
What can you expect from us:
- Unlimited vacation policy
- Competitive compensation package
- Work within international environment
- Hybrid working model
- Flexible working hours
- Educational Budget
- Urban Sport Membership
- Mobile Allowance
- Home Office Allowance
Interview stages:
- Recruiter call
- Technical Assessment
- Cross-functional interview
- Cultural & leadership round
Equal Opportunity Statement
Our company embraces diversity in all of its forms and fosters an inclusive environment for all people to do the best work of their lives with us.
We're an equal opportunity employer. All applicants will be considered for employment without attention to ethnicity, religion, sexual orientation, gender identity, family or parental status, national origin, veteran, neurodiversity status or disability status.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Android Automation AWS Blockchain Cryptography Finance GitLab Incident response iOS JavaScript Microservices Node.js Privacy Risk analysis Scripting Security strategy Strategy TypeScript Vulnerabilities
Perks/benefits: Career development Competitive pay Flex hours Flex vacation Home office stipend Salary bonus Startup environment Travel Unlimited paid time off
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Security Operations Engineer jobs
- Open Information Security Specialist jobs
- Open Staff Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Manager Pentest H/F jobs
- Open Senior Information Security Analyst jobs
- Open Senior Cyber Security Engineer jobs
- Open Cyber Security Specialist jobs
- Open Principal Security Engineer jobs
- Open Product Security Engineer jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Cybersecurity Analyst jobs
- Open IT Security Analyst jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Chief Information Security Officer jobs
- Open Cybersecurity Consultant jobs
- Open Senior Information Security Engineer jobs
- Open Consultant SOC / CERT H/F jobs
- Open Security Specialist jobs
- Open Cybersecurity Specialist jobs
- Open Senior Penetration Tester jobs
- Open Security Researcher jobs
- Open Sr. Security Engineer jobs
- Open Senior Security Architect jobs
- Open IT Security Engineer jobs
- Open Clearance-related jobs
- Open ISO 27001-related jobs
- Open Network security-related jobs
- Open Application security-related jobs
- Open Agile-related jobs
- Open Windows-related jobs
- Open Pentesting-related jobs
- Open Vulnerability management-related jobs
- Open GCP-related jobs
- Open Analytics-related jobs
- Open SaaS-related jobs
- Open CISA-related jobs
- Open IAM-related jobs
- Open Threat intelligence-related jobs
- Open APIs-related jobs
- Open Java-related jobs
- Open Security assessment-related jobs
- Open DevOps-related jobs
- Open Kubernetes-related jobs
- Open Malware-related jobs
- Open Security Clearance-related jobs
- Open CI/CD-related jobs
- Open IDS-related jobs
- Open DevSecOps-related jobs
- Open EDR-related jobs