Product Security Engineer (d/f/m)

Full Time
Barcelona, Spain
4 months ago
The Role: How you'll make an impact at Personio

This position can be based in any of our European offices: Munich, Berlin, London, Dublin, Amsterdam, Madrid or Barcelona.

At Personio, your work transforms the way millions of people experience work every day. Join our Product & Technology team, where we drive our customers’ outcomes by designing, developing and delivering innovative and high quality products. Be empowered to take ownership of your areas and make an impact on your team, our product, and our customers. 

Personio is constantly striving to deliver first class security, and we are looking for an experienced Security Engineer to join us on the mission to implement best in class security controls and automation practices. Personio processes highly sensitive data for thousands of customers, and security is a cornerstone of all processes, empowering us to build a fortified foundation for our customer success. You will partner with the engineering teams in a hands-on fashion to ensure that Personio platforms are designed and built securely by building security or advising on it.

Role Responsibilities: What you'll do

  • Threat Modeling: Conduct code reviews and threat modeling on applications and relevant supporting services and tools. 

  • Code: Write efficient, maintainable and testable code.

  • Services: Implement security services, automation, and monitoring tools to protect Personio services.

  • Mentoring: Mentor engineering team members on security best practices.

  • Stakeholder Management: Communicate to stakeholders, providing advice on vulnerability remediation and risk mitigation.


  • Tooling: Develop innovative and scalable tools, solutions, and processes to detect security threats and threats to data security.

  • Operations: Participate in security operations, responding to security incidents and providing security expertise for Personio customers and internal stakeholders. 

Role Requirements: What you need to succeed

  • You have at least 5 years of experience in areas such as application security, offensive security, systems security, and/or incident response.


  • You understand security vulnerabilities, threat modeling, attacker exploit techniques, and methods for remediation.


  • You have the ability to drive technical, security and architectural reviews. 

  • You know at least one programming language. Plus if you have experience with PHP (e.g: Go, Python, Kotlin, Ruby, etc.).

  • You have experience with the implementation of security tools and practices in modern, cloud-native environments for customer-facing web-based applications.

  • You have a clear understanding of the balance between security and user friction.

Why Personio

Personio is an equal opportunities employer, committed to building an integrative culture where everyone feels welcomed and supported. We embrace uniqueness and understand that our diverse, values-driven culture makes us stronger. We are proud to have an inclusive workplace environment that will foster your development no matter your gender, civil status, family status, sexual orientation, religion, age, disability, education level, or race.Aside from our people, culture, and mission, check out some of the other benefits that make Personio a great place to work:

  • Receive a competitive reward package – reevaluated each year – that includes salary, benefits, and pre-IPO equity

  • Enjoy 28 days of paid vacation, plus an additional day after 2 and 4 years (because we love what we do, but we also love vacation!)

  • Make an impact on the environment and society with 2 (fully paid) Impact Days –  one for an individual project of your choice and one for a company-wide initiative

  • Receive generous family leave, child support, mental health support, and sabbatical opportunities with PersonioCares

  • Find your best way to work with our office-led, remote-friendly PersonioFlex! Most teams offer a roughly 50% remote, 50% in-office working framework

  • Invest in your development with an annual personal development budget to use on professional memberships, external certifications, conferences, and more

  • Connect with your fellow Personios at regular company and team events like All Company Culture Week and local year-end celebrations and onsite and offsite events with the Security Organisation.

  • Engage in a high-impact working environment with flat hierarchies and short decision-making processes