Back to Jobs
Saarbrücker Str. 37, 10405 Berlin, Germany Hybrid Full-time

Scalable Capital is hiring a Product Security Engineer (m/f/x)

Responsibilities

  • Perform security assessments and code reviews on our web apps, mobile apps, and APIs. You will combine manual testing with automated tooling to validate security controls against industry standards.
  • Triage incoming reports from bug bounties, vulnerability disclosures, and external penetration tests. You will help manage the intake process and work towards establishing a formal Bug Bounty program in the future.
  • Assist in integrating security tooling (SAST, DAST, SCA) into our CI/CD pipelines (AWS/GitHub). You will help tune these tools to ensure high-fidelity alerts for our developers.
  • Partner with senior security engineers and product teams to participate in threat modeling sessions. You will learn to identify architectural flaws and logic vulnerabilities in the design phase.
  • Collaborate with engineering teams to advocate for secure coding practices. You will help build "paved roads"—secure defaults and libraries—that make it easier for developers to write secure code in Kotlin and Python.
  • Gain exposure to securing infrastructure-as-code and AWS environments, helping ensure our microservices architecture remains resilient.

Requirements

  • Strong foundation in application security
  • Eagerness to learn and grow in security engineering

Work Arrangement

Hybrid

About company
Scalable Capital
A leading digital investment platform in Europe that provides online investment and brokerage services, enabling clients to invest in stocks, ETFs, and other financial products through a digital platform.
All jobs at Scalable Capital Visit website
Job Details
Category security
Posted 11 days ago