logo
See all jobs

Product Security Engineer (m/f/d)

Permanent employee, Full-time · Germering / Germany
Why should you join?
DocuWare stands for globally distributed, international teams and an open corporate culture that invites you to help shape it. Mobile Work and flexible working hours are part of our everyday life. Would you like to be part of an innovative company whose solutions are digitizing everyday work in a wide range of industries? In that case, we are happy to welcome you to the team.
Your Responsibilities
The Product Security Engineer (m/f/d) within the global Cloud Security team is responsible for securing DocuWare applications and software products. 
This is a central role in our global R&D department, where you will work closely with engineers, architects, and product managers to ensure the secure development of new features for our DocuWare products. 

Your responsibilities will include
  • Collaborating with product teams to integrate security into the software development lifecycle (SDLC). This includes threat modelling sessions and secure design principles. 
  • Work with the Cloud Security team to plan and make progress with our application security program in a structured and effective approach. 
  • Creating comprehensive documentation containing standard mitigation strategies for vulnerabilities, including security defaults and good practices.
  • Conducting internal security audits on prototypes and existing applications for vulnerabilities.
  • Assist in impact estimation of vulnerabilities within different applications. 
What you need to succeed
  • You hold a Bachelor's degree in Computer Science, Cyber Security, Software Engineering, or a related field, and have several years of experience in application security. 
  • Your knowledge spans both core security concepts and good secure coding practices, especially within the .NET stack. Angular security knowledge is a bonus. 
  • You understand the concept around application security maturity models, i.e. OWASP SAMM.
  • Communication is one of your strengths, enabling you to explain security issues in an understandable way.
  • You are familiar with Security analysis tools, such as SCA, SAST and DAST.
  • You are capable of conducting Threat Modelling sessions enabling product teams to build secure products.
  • You are also familiar with related frameworks and methodologies, such as STRIDE and MITRE ATT&CK.
  • Experience with automating security with Powershell, Python or GoLang is a bonus.
  • Container, Azure and Kubernetes Security is a bonus.
  • You enjoy working in an international team.
  • You are fluent in communicating technical matters in English. (German communication skills are a plus).
What we can offer
There are many great reasons to join DocuWare - our company culture is only one of them.
 As part of the DocuWare team, you will benefit from many advantages:
  • Globally distributed, international teams: You will find our teams working in Germering, New York, Sofia or other worldwide locations
  • Flexible work location and hours: You can work on the road or in our modern office - and you have the flexibility to arrange your own working hours
  • Individual support: After an intensive induction, you will receive regular training tailored to your needs (e.g. conferences internal team building measures)
  • Well-earned rest: 35 vacation days per year, sport offerings, massages, a football table and a relaxing lounge area
  • Healthy food: Together we enjoy Fairtrade coffee with organic milk or oat milk, snacks and fresh fruit - all free of charge - as well as subsidized lunch from the Foodji fridge
  • Good accessibility: Choose how you would like to come to the office with a leased e-bike, by train or via highways A96/A99 (you can charge your e-car on site for free)
  • Team spirit: Regular employee and team events (virtual or on-site) ensure excellent collaboration with colleagues around the world
  • Sustainability and social commitment: DocuWare stands for paperless work and supports volunteer organizations and local sports clubs
  • Your health matters: DocuWare subsidizes your company pension plan!
  • Lastly, and most importantly, we offer a stable job with a well established and growing company
  • Unique benefits: Choose one of three great options (Bonago, E-Gym or subsidized Deutschlandticket) to suit your needs. 
  • We only use the latest technologies - find out more on Stackshare 
For better insights, check us out on Instagram!
Our Values
We are…
  • Customer-Centric: We keep close to the customer and innovate in every aspect of our customer experience to ensure their success with our product and company.
  • Decent: We are respectful, helpful and reliable when working with customer, partners and colleagues.
  • Dynamic: We seek to constantly improve by measuring and sharing our work, inviting ideas from all colleagues, and responding quickly to new opportunities.
  • Passionate: We love what we do and confidently strive for ambitious goals through focus, collaboration and having fun together.
Our application process
  1. (Optional) PreScreening with a Recruiter to get to know each other and clarify general questions.
  2. Interview with the Recruiter and Hiring Manager.
  3. Use case presentation, getting to know the team & office tour
Your hiring partner
Chiara Drechsel
Team Leader Recruiting & Employer Branding
Apply for this job
Apply for this job
We are looking forward to hearing from you!
Thank you for your interest in DocuWare. Please fill out the following short form. Should you have difficulties with the upload of your data, please send an email to job@docuware.com.
Uploading document. Please wait.
Please add all mandatory information with a * to send your application.