Senior Product Security Engineer

Vulnerability Management:

• Own and operate n8n’s vulnerability intake and triage process
• Design, improve, and run a robust Vulnerability Disclosure Program (VDP)
• Coordinate bug bounty payouts and researcher communication for validated findings

Security Tooling & Assessment:

• Evaluate, implement, and maintain security tooling across the SDLC (SAST, DAST, dependency scanning, container scanning, SBOMs)
• Own configuration, tuning, and triage workflows for existing tools
• Manage third-party penetration tests, including scoping, vendor coordination, and remediation tracking

Secure SDLC Integration:

• Embed security into the software development lifecycle through threat modeling, design reviews, and pragmatic guardrails
• Advise engineering teams on secure coding practices and common vulnerability patterns
• Partner closely with product and engineering teams across Nodes, AI Core, Cloud, and other areas