Product Security Engineer

Brno, Jihomoravský
Trvalý pracovní poměr
Plný úvazek

Před 3 dny
Snadno podejte žádost

Why This Job Is ExcitingAt Innovatrics, we equip you with the tools, context, and trust to thrive. Our opportunity-driven roadmap highlights how you can grow, contribute, and make a meaningful impact throughout your journey with us.Security is foundational to our biometric solutions used in elections, border control, digital ID, and secure onboarding across 80+ countries. We hold ISO 27001 certification and continuously strengthen our security posture.This role focuses on what matters most in our environment: security of software development, architecture, and deployments — across both SaaS and on-prem installations.You will not inherit a large security department. You will shape how security is embedded into engineering.In your first months, you’ll explore...

Our biometric products and system architecture
SaaS and on-prem deployment models (Kubernetes, cloud, CI/CD)
Current secure development practices
How ISO 27001 controls are implemented in the engineering scope

You’ll identify gaps in product and deployment security and define a pragmatic roadmap aligned with engineering reality.As you settle into the role, you’ll start contributing by...

Defining and evolving our solution security strategy
Embedding secure SDLC practices across engineering teams
Introducing structured threat modeling and security design reviews
Strengthening Kubernetes, cloud, and CI/CD security
Establishing vulnerability management and secure release processes
Acting as the security authority for software and deployment-related risks, including the mandate to block releases if critical risks are identified
Acting as a whitehat hacker and trying to bypass our injection attack detection

You will collaborate with ITO on ISO 27001 matters, but your core ownership will be security within software engineering and deployments.Within your first year, you’ll have the opportunity to...

Mature product security into a measurable engineering discipline
Improve SaaS and on-prem hardening baselines
Establish DevSecOps practices integrated into CI/CD
Increase visibility of product security risks for leadership
Prepare engineering scope for surveillance and recertification audits
Potentially grow a focused product security capability

This is a high-impact role shaping how secure software is built and delivered.What You’ll Help BuildAt Innovatrics, we build biometric technologies used in elections, border control, digital ID, and secure onboarding in 80+ countries.Security here protects sensitive biometric data and mission-critical systems.Your work will directly influence how every engineering team designs, builds, and deploys software.Join us if you're passionate about embedding security deeply into architecture and engineering — not just writing policies, but building secure systems.Working Hours & Location🌎 Hybrid or remote within the EU time zone with regular visits to HQ.Required:

Slovakia, Brno or EU- based
Regular collaboration overlaps within the CET time zone

We offer flexibility while maintaining strong collaboration with engineering and leadership.RequirementsAbout YouYou are a senior security professional with strong technical depth in software and cloud-native environments. You understand secure architecture, DevSecOps, and modern deployment models.You are comfortable working with engineering teams on code-level and infrastructure-level security topics. You think in terms of threat models, attack surfaces, and defense-in-depth.You are pragmatic, collaborative, and able to carry authority when necessary.Qualifications

Proven experience leading or significantly shaping product security in a software or SaaS company
Strong knowledge of application security, secure SDLC, and threat modeling
Experience securing Kubernetes environments, cloud infrastructure, and CI/CD pipelines
Experience with vulnerability management and secure release processes
Familiarity with ISO 27001 controls as they relate to software development and deployment
Strong communication skills and ability to influence engineering teams

CertificationsProfessional certifications demonstrating senior-level security expertise are strongly preferred. Examples include:

CISSP
ISO/IEC 27001 Lead Implementer or Lead Auditor

CISMCertifications such as CCSP, CSSLP, or Certified Kubernetes Security Specialist (CKS) are considered a plus.Equivalent senior-level practical experience is highly valued, even without formal certification.Techstack

Kubernetes (SaaS and on-prem deployments)
Cloud environments
CI/CD pipelines
Java, Kotlin, Python, C++
API-driven microservices architecture

Level📊 This role is Medior- Senior.BenefitsCompensationAt Innovatrics, we offer highly competitive salaries because we value top talent who share our values and goals. Compensation is determined based on your level, skills, experience, qualifications, and location.💶 Salary gross range starts at 4000€ up, tied to competency and technical evaluation.📈 Beyond base pay, we provide an attractive variable compensation as well as benefits package.You can learn more at .Interview ProcessHere is the typical interview process for this role:👋 Introduction Stage (~30 min.)

Recruiter Screen

🧑‍💻 Team Interview Stage (~120 min.)We have a one single interview round that takes approximately 2 hours and is divided into three stages:

Technical Interview [45-60 min.]: An interactive session with our technical team where we’ll explore your problem-solving approach, technical knowledge to the role
Independent Task [30-45 min.]: You will work individually on a practical assignment designed to reflect real-world challenges.
CARES Interview [~30 min.]: Final conversation with our CARES committee to ensure alignment with our core values—Collaboration, Accountability, Respect, Excellence, and Shared Mission.
Reference checks and background verification

We encourage candidates to request additional conversations with anyone they would like to meet.Learn more about our culture, values, and what it’s like to work at Innovatrics:

Innovatrics