Stuttgart, Munich, Hamburg
Remote
About the Team This is a secure, AI-driven B2B SaaS platform that helps organizations build customized systems to access and use knowledge faster, automate knowledge work, and protect sensitive data. Security is part of the foundation, with a strong emphasis on compliance, data protection, and responsible AI practices. The team brings long-standing experience across AI, SaaS, big data, automation, and data security.
The Role They are looking for a highly motivated and entrepreneurial Senior Security Full Stack Engineer to join the team. This is a hands-on position focused on embedding security directly into full-stack development processes. The role covers protection for TypeScript-based backends (Hono, Node.js, Nest.js), Python services (FastAPI), and Next.js/React frontends. Responsibilities also extend to DevSecOps, infrastructure security, databases (SQL/NoSQL/Graph), and securing AI/knowledge graph solutions.
Key Responsibilities Secure full-stack development
- Design, implement, and test secure backend services with TypeScript (Hono, Node.js, Nest.js) and Python (FastAPI), plus frontend apps with Next.js, React, and web components.
- Integrate authentication, encryption, and input validation directly into code.
- Apply secure software engineering principles (e.g., OWASP, least privilege, secure-by-design).
- Conduct threat modeling, code reviews, and vulnerability assessments.
- Ensure systems are scalable, modular, and compliant with security standards.
- Secure and optimize Kubernetes-based infrastructure, container runtimes (Docker), ArgoCD, and cloud deployments.
- Implement security in CI/CD pipelines with Terraform, automate scans (SAST/DAST), and manage monitoring, incident response, and secrets management.
- Protect SQL (PostgreSQL, SQLite), NoSQL (MongoDB), and graph databases (Dgraph).
- Implement encryption, access controls, and secure queries.
- Build secure REST APIs and GraphQL endpoints.
- Defend against common threats (injection, XSS, CSRF).
- Contribute to securing AI models, vector search, and graph-based queries.
- Protect knowledge graph approaches from risks such as data leaks or adversarial attacks.
Profile
- 4–7 years of experience in security engineering or full-stack development with a security focus.
- Proficient in TypeScript across the stack; backend with Hono, Node.js, Nest.js; Python with FastAPI; frontend with Next.js, React, Web Components.
- Knowledge of secure coding best practices (OWASP Top 10, secure design), threat modeling, and zero-trust architectures.
- Experience securing SQL, NoSQL, and graph databases, with emphasis on secure queries and semantic data protection.
- Skilled in securing REST APIs and GraphQL (OAuth, JWT, API-specific vulnerabilities).
- Hands-on with Kubernetes security (RBAC, pod policies), ArgoCD, cloud security (IAM, monitoring), Terraform, and automated security testing/logging.
- Familiarity with securing LLMs, vector embeddings, and graph-based search against AI-specific threats.
Soft Skills
- Entrepreneurial mindset: Independent problem-solver, eager to drive security initiatives.
- Resilient & goal-oriented: Sets and achieves ambitious security goals in fast-moving environments.
- Innovative: Proposes new ideas, experiments with tools, and learns from incidents.
- Pragmatic executor: Integrates security quickly without slowing development.
- Communicative: Able to address risks confidently, collaborate across teams, and explain security concepts clearly.