Senior Security Engineer - Application Security

Please note that this position is based in Berlin or London.

Trade Republic is the largest savings platform in Europe - we operate in 17 countries, serving +8 million customers who trusted us with over 100B in assets. But we’re striving for more.

We have a bold mission to empower everyone to build wealth with easy, safe, and free access to financial systems. You will have the opportunity to grow your career by collaborating with a team of outstanding talents and state of the art technology to build a lasting, positive future for millions.

As a Security Engineer at Trade Republic, you'll build and implement comprehensive security across our entire technology stack. Your responsibilities include:

• Design security architectures, threat models, and Zero Trust frameworks
• Develop security automation, SOAR workflows, and AI-powered security tools
• Perform security assessments, penetration testing, and code reviews
• Build and optimise SIEM/EDR platforms, detection rules, and threat hunting capabilities
• Implement cloud security controls and Dev Sec Ops  pipelines with automated compliance
• Investigate and remediate security incidents with forensic analysis
• Integrate security testing into CI/CD pipelines and development workflows
  
  Create Infrastructure as Code security patterns and container/Kubernetes security strategies

Core Experience
:

• 5+ years hands‑on cybersecurity experience across multiple domains
• Strong proficiency in Python scripting and security automation
• Experience with cloud security services, SIEM/SOAR/EDR platforms, and threat intelligence tools
• Knowledge of application security testing (SAST/DAST/IAST) and secure coding practices
• Proficiency with Infrastructure as Code (Terraform, Cloud Formation) and container security
• Experience with incident response, threat hunting, and forensic analysis

Technical Areas (experience in several preferred):

• Security architecture frameworks (Zero Trust, SABSA, TOGAF)
• Dev Sec Ops  tools and CI/CD security integration
• Threat modelling and security design patterns
• Container and Kubernetes security implementation
• AI/LLM technologies for security applications

Nice to have
:

• Financial services or regulated industry experience
• Compliance frameworks (MaRisk, BAIT, ISO 27001, NIS 2, SOC 2, GDPR)
• Relevant certifications (OSCP, PNTP, PWPE, PWPP, PMPA, CRTE, RTO, AWS Security, CKA, CKS, etc.)

Our culture rewards ownership, excellence, and high energy. We care deeply about outcomes and hold each other accountable - we’re here to win and fix one of the largest challenges Europeans face - closing the pension gap and democratizing wealth. If this gets you fired up, reach out!

We believe it’s our team’s varied identities and backgrounds that make us sharper and stronger. We’re committed to creating an environment where everyone feels respected and has equal opportunity to thrive in their careers. For any questions on DEI during the interview process, reach out to your recruitment partner.