Cyber Security / Product Security Engineer

TravelPerk is a hyper-growth SaaS business travel platform and a pioneer in the future of travel for work. Its all-in-one platform gives travelers the freedom they want whilst providing companies with the control they need. TravelPerk has industry-leading travel inventory alongside powerful management features, 24 / 7 customer support, state-of-the-art technology, and consumer-grade design.

About Us

Founded in 2015 and headquartered in Barcelona, we've grown to over 1,400 people across Europe and North America. Since 2023, we've been voted one of the best places to work, one of the fastest-growing apps and tech companies, and a leading pioneer of business travel.

Global brands like Wise, Red Bull, GetYourGuide, and Aesop trust us to optimize their travel experiences.

Role Overview

We are seeking a Product Security Engineer to join our expanding security team. You will collaborate closely with product development and DevOps teams to integrate security into the software development lifecycle and implement measures to minimize vulnerabilities.

Responsibilities

• Vulnerability Management : Maintain and enhance our vulnerability management program by identifying vulnerabilities through various tools, external penetration tests, and bug bounty submissions. Educate and collaborate with developers on secure coding best practices. Conduct security design reviews, threat modelling, and risk assessments to ensure secure software architectures.
• Security Automation : Develop and maintain security and data protection features within our products, infrastructure, and development workflows.
• Cloud Security : Ensure the security of our cloud environments, primarily AWS, by implementing best practices in cloud and container orchestration technologies.

Qualifications

• Proven experience in cyber and information security, with hands-on experience in web and mobile security for critical 24 / 7 applications.
• Comprehensive knowledge of mobile, web, API application security, cloud, and container orchestration technology.
• Experience in penetration testing and security tooling.
• Good communication skills in English.
• Operational experience with AWS, GCP.
• Proficiency in at least one programming language such as Python or Golang.
• 25 days annual leave plus bank holidays.
• Private medical insurance from Bupa.
• Access to voluntary dental insurance through Bupa.
• Tax-efficient schemes such as Cycle2Work & electric car leasing via Octopus.

We take an IRL-first approach to work, where our team works together in person 3 days a week. For roles in Customer Care, this can be up to 5 days per week in the office. TravelPerk is a global company with a diverse customer base, and we want our team to reflect that diversity. All official communication from TravelPerk comes from @travelperk.com email addresses, our verified social media channels, or recruiters listed on our official LinkedIn page. Please be cautious of any unexpected messages claiming to be from TravelPerk and forward them to us for verification.

J-18808-Ljbffr