Application Security Engineer 

Application Security Engineer 

Stuttgart, Munich, Hamburg 
Remote 
 

About the Team

This is a secure, AI-driven B2B SaaS platform that helps organizations build customized systems to access and use knowledge faster, automate knowledge work, and protect sensitive data. Security is part of the foundation, with a strong emphasis on compliance, data protection, and responsible AI practices. The team brings long-standing experience across AI, SaaS, big data, automation, and data security.

The Role

They are looking for a highly motivated and entrepreneurial Senior Security Full Stack Engineer to join the team. This is a hands-on position focused on embedding security directly into full-stack development processes. The role covers protection for TypeScript-based backends (Hono, Node.js, Nest.js), Python services (FastAPI), and Next.js/React frontends. Responsibilities also extend to DevSecOps, infrastructure security, databases (SQL/NoSQL/Graph), and securing AI/knowledge graph solutions.

Key Responsibilities

Secure full-stack development

• Design, implement, and test secure backend services with TypeScript (Hono, Node.js, Nest.js) and Python (FastAPI), plus frontend apps with Next.js, React, and web components.

• Integrate authentication, encryption, and input validation directly into code.

Security policies and architecture

• Apply secure software engineering principles (e.g., OWASP, least privilege, secure-by-design).

• Conduct threat modeling, code reviews, and vulnerability assessments.

• Ensure systems are scalable, modular, and compliant with security standards.

DevSecOps & infrastructure security

• Secure and optimize Kubernetes-based infrastructure, container runtimes (Docker), ArgoCD, and cloud deployments.

• Implement security in CI/CD pipelines with Terraform, automate scans (SAST/DAST), and manage monitoring, incident response, and secrets management.

Database & data security

• Protect SQL (PostgreSQL, SQLite), NoSQL (MongoDB), and graph databases (Dgraph).

• Implement encryption, access controls, and secure queries.

Secure API development

• Build secure REST APIs and GraphQL endpoints.

• Defend against common threats (injection, XSS, CSRF).

AI & knowledge graph security

• Contribute to securing AI models, vector search, and graph-based queries.

• Protect knowledge graph approaches from risks such as data leaks or adversarial attacks.

Profile

• 4–7 years of experience in security engineering or full-stack development with a security focus.

• Proficient in TypeScript across the stack; backend with Hono, Node.js, Nest.js; Python with FastAPI; frontend with Next.js, React, Web Components.

• Knowledge of secure coding best practices (OWASP Top 10, secure design), threat modeling, and zero-trust architectures.

• Experience securing SQL, NoSQL, and graph databases, with emphasis on secure queries and semantic data protection.

• Skilled in securing REST APIs and GraphQL (OAuth, JWT, API-specific vulnerabilities).

• Hands-on with Kubernetes security (RBAC, pod policies), ArgoCD, cloud security (IAM, monitoring), Terraform, and automated security testing/logging.

• Familiarity with securing LLMs, vector embeddings, and graph-based search against AI-specific threats.

Soft Skills

• Entrepreneurial mindset: Independent problem-solver, eager to drive security initiatives.

• Resilient & goal-oriented: Sets and achieves ambitious security goals in fast-moving environments.

• Innovative: Proposes new ideas, experiments with tools, and learns from incidents.

• Pragmatic executor: Integrates security quickly without slowing development.

• Communicative: Able to address risks confidently, collaborate across teams, and explain security concepts clearly.