As our Security Engineer, you make sure our platform, infrastructure and data stay secure as we grow. You identify vulnerabilities before they become problems, and you build the processes and safeguards that keep security top of mind across the entire Product team.
You're on the Product team, contributing your security expertise. This role is for someone who stays sharp on emerging threats and knows how to get engineers to build securely without slowing them down.
The iOS application is built 100% with Swift, with a mix of SwiftUI and UIKit. We use REST APIs to connect to our backend. The CI/CD pipelines run using Bitrise.
Android is built natively with Kotlin. Next to the customer application, we have two internally facing applications. One mobile React Native application and one web-based, built in Typescript and Next.JS.
Our backend stack is heavily based around Python, with our main API written in that language, as well as several microservices. For updating our fleet in real-time, we use a microservice which is written in Rust. This is all hosted and managed in-house, by running two Kubernetes clusters with Helm as our package manager.
Make sure our APIs are secure and that no data is exposed where it shouldn't be.
Keep our infrastructure secure, including how we deploy and run software on Kubernetes.
Run security audits, penetration tests, and vulnerability assessments across our platform.
Work day-to-day with our software engineers, picking up your own tickets and improving security together with the people building the product.
Own data governance and make sure we stay GDPR and are legally compliant.
Define and maintain security policies and training that apply company-wide.
Respond to and lead investigations on security incidents when they occur.
Stay on top of emerging threats and vulnerabilities relevant to our stack and industry.
HBO or higher in software engineering, computer science, security, or a related field.
2+ years of experience in a security engineering or similar role.
Hands-on experience with Kubernetes and securing modern cloud infrastructure.
Basic knowledge of Python and TypeScript - you don't need to be an expert, but you should be able to read and understand code.
Experience with GitHub Actions or similar CI/CD tooling.
Experience with databases and SQL.
Fluent English; Dutch is a plus.
If you're excited about staying one step ahead and keeping our platform secure, we'd love to hear from you.