Sr Product Security Engineer | Remote | Europe

About n8n

The AI orchestration of your wildest imagination.

n8n is the open workflow orchestration platform built for the new era of AI. We give technical teams the freedom of code with the speed of no-code, so they can automate faster, smarter, and without limits. Backed by a fiercely inventive community and 500+ builder-approved integrations, we’re changing the way people bring systems together and scale ideas for impact.

Since our founding in 2019, we’ve grown into a diverse team of over 220 - working across Europe and the US, connected by a shared builder spirit and with our centre of gravity in Berlin. Along the way, we’ve:

• Cultivated a community of more than 650,000 active developers and builders
• Earned 145k+ GitHub stars, making us one of the world’s Top 40 most popular projects
• Been ranked as one of Europe’s most promising privately held SaaS startups (4th in Sifted’s 2025 B2B SaaS Rising 100)
• Raised $240m to date, from Sequoia’s first German seed to our recent $180m Series C - bringing us to a $2.5bn valuation

That’s the company we’ve built. Now we’d love to see what you can build. If you’re applying, try n8n out - whether you’re technical or not - and share a screenshot of your first workflow with us. The easiest place to start is here: app.n8n.cloud/register.

We’re in a defining moment of an incredible journey. Come and build with us.

Your main goal

Your main goal will be to strengthen n8n’s product and platform security by driving hands-on security work that helps engineering teams reduce risk, ship securely, and build a growing security practice from an early stage.

To do so, you’ll partner closely with the Head of Security in a 50+ person engineering department to run key security workflows, improve security across the SDLC, and help lay the foundations of a small but growing security team.

Key Responsibilities

Vulnerability management and disclosure

• Own day-to-day vulnerability intake and triage workflows, including the security inbox and bug bounty submissions. Coordinate remediation with engineering teams and help track issues through to resolution with clear priorities and follow-through.
• Support coordinated disclosures, GitHub Security Advisories, and researcher communication in a timely and structured way.

Security tooling and technical assessments

• Operate and improve security tooling across the SDLC, including scanning, alert triage, and workflow tuning.
• Run practical security assessments such as targeted reviews, validation of findings, and remediation tracking from internal or external testing.
• Help improve visibility into product and platform risk through actionable findings, documentation, and technical recommendations.

Secure product development support

• Partner with engineers to embed security into design, development, and release processes in pragmatic ways.
• Support threat modeling, secure coding guidance, and lightweight security reviews across product and platform areas.
• Create clear, useful documentation that helps teams understand risks and apply secure development practices.

Security operations and team foundations

• Support the coordination of security incidents by helping with investigation, tracking, communication, and follow-up actions.
• Contribute to playbooks, runbooks, and internal processes that improve security readiness over time.
• Help shape how the security function works in practice as the team grows, together with the Head of Security and future hires.

Requirements

Must-haves

• Product security experience: 5+ years of experience in product security, application security, or a closely related security engineering role in a SaaS or cloud environment.
• Vulnerability management skills: Hands-on experience triaging, validating, and coordinating remediation for security findings.
• Web application security knowledge: Strong understanding of common web vulnerabilities and secure development principles.
• Security tooling experience: Experience with security tooling such as SAST, DAST, dependency scanning, container scanning, or similar technologies.
• Engineering partnership: Ability to work well with product and engineering teams and support them without becoming a blocker.
• Clear communication: Ability to document findings, explain risks, and communicate clearly with technical and non-technical stakeholders.
• Pragmatic execution: Ability to prioritize well, focus on the most meaningful risks, and make progress in fast-moving environments.
• Builder mindset: Excitement about joining a newly forming security team and helping shape its growth.

Nice-to-haves

• Cloud and platform security exposure: Experience securing cloud-native or multi-tenant SaaS platforms.
• JavaScript / TypeScript familiarity: Understanding of security considerations for modern JavaScript or TypeScript-based applications.
• DevSecOps mindset: Experience integrating security checks into CI/CD pipelines and developer workflows.
• Threat modeling experience: Experience supporting or facilitating threat modeling and design reviews.
• Researcher or bug bounty exposure: Experience working with external researchers, bug bounty platforms, or coordinated disclosure processes.
• High-growth or open-source context: Experience in fast-growing companies or open-source, developer, or technical user communities.

Why join us?

At n8n, you’ll join security at an early and exciting stage. You’ll work closely with the Head of Security to help build the foundations of a growing security function, shape how security works across engineering in practice, and tackle meaningful product security challenges in a platform that sits close to customers’ most critical systems and workflows. You’ll have visible impact, real ownership, and the opportunity to help grow the team over time in a remote-first environment that values autonomy, pragmatism, and collaboration.

Sound like a challenge you’re excited to take on?

Apply now — and help us build the future of automation.

Equal Opportunity Employer

n8n is an equal opportunity employer and does not discriminate on the basis of race, religion, colour, national origin, gender, sexual orientation, gender identity, age, marital status, veteran status, or disability status.

We can sponsor visas to Germany; for any other country, you need to have existing right to work.

Our company language is English.

You care about diversity and inclusion? We do too! Check out our Diversity, Inclusion and Belonging initiatives at n8n (https://www.notion.so/n8n/Diversity-inclusion-and-belonging-n8n-c1bec2fff536422d868b1a438d990e35).

Location disclaimer: If you see multiple job postings for the same role, it is most likely because we're hiring remotely for this role and posting in different locations to make sure every potential candidate can see the role. Please apply to the location you're the most likely to work from in the future.

Benefits

• Competitive compensation 💸 – We offer fair and attractive pay.
• Ownership 💪 – Our core value is to “empower others,” and we mean it—you’ll get a slice of n8n with equity.
• Work/life balance 🏖️ – We work hard but ensure you have time to recharge: Europe: 30 days of vacation, plus public holidays wherever you are. US: 20 vacation days, 8 sick days, plus public holidays wherever you are.
• Health & wellness 🩺 – Europe: We provide benefits according to local country norms.* US: Multiple low-premium, low-deductible medical plans with coverage for individuals and families—plus a no-cost premium HDHP option with a pre-seeded HSA—along with dental and vision coverage.
• Future planning 💰 – Europe: We provide pension contributions according to local country norms.* US: 401(k) retirement plan with a 4% employer match.
• Financial security 🛡️ – Europe: We provide benefits according to local country norms.* US: Company-paid short-term and long-term disability insurance, plus life insurance to support you and your loved ones.
• Career growth 📈 – We hire rising stars who grow with us! You’ll get €1K (or equivalent) per year to spend on courses, books, events, or coaching to level up your skills.
• A passionate team 🤩 – We love our product, and we prove it with regular hackathons where we see who can build the coolest thing with it!
• Remote-first 🌏 – Our team works remotely across Europe, with regular off-sites for team bonding. Some roles, like sales in the US, are hybrid—please check the job description.
• Giving back 🤝 – We're big fans of open source, and you'll get $100 per month to support projects you care about.
• AI enablement 🤖 – We believe in working smarter—everyone gets an unlimited AI budget to explore and use the best tools to boost productivity and creativity.
• Transparency 🙏 – We all know what everyone’s working on, how the company is doing—the whole shebang.
• An ambitious but kind culture 😍 – People love working here—our eNPS for 2024 is 94!

Country-specific details are provided in your contract.

Key skills/competency

• Product Security
• Vulnerability Management
• Web Application Security
• Security Tooling
• Secure SDLC
• Threat Modeling
• Security Operations
• Security Engineering
• SaaS Security
• Risk Management