Product Security Engineer

@ Tresorit | Part of Swiss Post

About Tresorit

Tresorit believes that every professional should collaborate securely with sensitive information. The platform serves departments, teams, and solo entrepreneurs with secure solutions for engaging efficiently with coworkers, customers, and other organizations.

About the Product Security Team

The Product Security Team empowers product development teams by providing a continuously improving ecosystem that enforces and strengthens software security at every stage of the development lifecycle. The team takes on both high-level and detailed challenges to keep Tresorit products secure and customer data safe.

About the Role

As a Product Security Engineer, you will work across the full stack with a focus on backend and infrastructure security tasks. Your responsibilities include web API security, threat modeling, server hardening, and improvements to CI/CD pipelines. You will collaborate with a small agile team to integrate security controls, evaluate technical feasibility of security solutions, and prototype new technology.

Responsibilities

• Improve the secure software development lifecycle with tools and processes.
• Review product source code and infrastructure for vulnerabilities and misconfigurations.
• Plan secure product features from customer and backend perspectives.
• Consult and mitigate risks with other development teams along with handling external vulnerability reports.
• Enhance cryptographic elements and ensure alignment with security objectives.
• Develop tools to continuously scan code, services, and infrastructure for vulnerabilities.
• Train engineers in security best practices and share insights via blog posts.

Desired Qualifications & Skills

Minimum 2+ years in software development. Proficiency in programming languages including .NET, TypeScript, C++, Kotlin, Swift, Python, or Rust is expected. A solid understanding of applied cryptography using libraries like Web Crypto API, OpenSSL, or Bouncy Castle is essential, along with vulnerability assessment abilities. Strong communication skills in English and a fast-learning, self-motivated attitude are required. Ability to work independently as well as in a team is crucial.

Preferred Qualifications

Experience with cloud platforms, particularly Microsoft Azure, and tools such as Git, Jenkins, or Azure DevOps is advantageous. Previous work with security-related tooling, static code analysis, fuzzing, reverse engineering, or front-end development (Angular/React with TypeScript) is a plus. Contributions to open-source projects are also valued.

Benefits

Competitive base salary with benefits including a cafeteria system, annual bonus, private health insurance, gym subsidies, free mobile subscription, learning opportunities, flexible hours, hybrid work conditions, paid parental leave, in-office snacks, beverages, and team building days. Tresorit encourages applications from motivated candidates even if not every qualification is met.

Key skills/competency

• Security
• Backend
• API
• Threat Modeling
• Cryptography
• CI/CD
• Vulnerability
• Risk Mitigation
• Infrastructure
• Tool Development