Senior Product Security Engineer

📋 Description

• Own vulnerability intake/triage and inbox (security@n8n.io)
• Design/run Vulnerability Disclosure Program with SLAs
• Coordinate private fixes and disclosure timelines
• Create and manage GitHub Security Advisories (GHSA)
• Coordinate bug bounty payouts and researcher comms
• Define patch/release processes for security fixes and timelines

🎯 Requirements

• 5+ years in product security or related role
• Hands-on vulnerability management and disclosure workflows
• Strong understanding of OWASP Top 10
• Experience with SAST, DAST, dependency and container scanning
• Familiarity with coordinated vulnerability disclosure and advisories
• Proven ability to write security docs and engage with researchers/bug bounty

🎁 Benefits

• Competitive compensation and equity
• Remote-first across Europe
• Europe: 30 days vacation; US holidays included
• Health and wellness benefits
• Pension contributions/401(k) and financial security
• Career growth budget and open-source support