Staff Security Engineer (m,f,x)
HelloFreshabout 14 hours ago
Responsibilities
- Own and elevate secure design and architecture at scale across HelloFresh.
- Define and drive security architecture across cloud environments, focusing on AWS and Kubernetes.
- Build and scale cloud security guardrails using automation and policy-as-code.
- Partner with engineering teams to embed security into the SDLC.
- Build internal security products that enable self-service for employees.
- Lead initiatives in vulnerability management and software supply chain security.
- Drive offensive security activities including penetration testing and adversary simulation.
- Establish security patterns for GenAI and AI/ML systems.
- Coordinate with external security partners for security engagements.
- Use GenAI to improve security workflows and automate analysis.
Requirements
- 8+ years of experience in security engineering or related fields.
- Deep hands-on experience securing cloud-native environments, preferably AWS.
- Strong application and product security experience, including threat modeling.
- Practical offensive security experience, including penetration testing.
- Strong engineering skills in programming languages like Python or Go.
- Experience building automation and self-service security capabilities.
- Familiarity with modern security tooling such as CNAPP/CSPM and SAST.
- Ability to influence without authority and communicate complex risks.
Benefits
- Competitive compensation package with additional perks.
- HelloFresh-subsidized Pension Scheme and Berlin relocation support.
- Exclusive discounts on HelloFresh boxes and office meals.
- German language learning budget and access to the HelloFresh Academy.
- Mental health support, transportation perks, and working-parent-friendly benefits.
- 24/7 gym access and wellbeing platforms like Headspace.