Senior Security Engineer, Application & Platform Security

Sentry
Vienna, Austria
4 days ago

Role details

Contract type
Permanent contract
Employment type
Full-time (> 32 hours)
Working hours
Regular working hours
Languages
English
Experience level
Senior
Compensation
€ 146K

Job location

Vienna, Austria

Tech stack

Artificial Intelligence
Amazon Web Services (AWS)
Software System Penetration Testing
Azure
Cloud Computing
Software Quality
Encodings
Continuous Integration
Identity and Access Management
Python
Systems Development Life Cycle
Secure Coding
TypeScript
Software Vulnerability Management
Rust
Google Cloud Platform
Cloud Platform System
Software Security
Kubernetes
Information Technology
Sentry
Build Process
Terraform
Docker
Go

Job description

The Security Team is responsible for securing all things Sentry: our customers, our code, and everything in between. We are a small but growing team with broad scope, high trust, and the autonomy to tackle hard security problems with creativity and an engineering mindset. We work at a company with a strong developer culture, building a product that millions of developers genuinely love and rely on. That context shapes everything about how we operate.

As a Senior Security Engineer on this team, you'll work across application and platform security domains. You'll own and shape the practices that keep Sentry secure as we grow: security reviews, threat modeling, vulnerability management, and embedding secure coding practices into an engineering organization that cares about doing things right. You'll partner closely with product and engineering teams to influence how features are designed and built from the start. You will work as a technical collaborator who helps make the secure path the obvious one. As Sentry expands our agentic product capabilities and development practices, you'll also find yourself at the frontier of a new set of security challenges.

In this role, you will

  • Own and mature Sentry's security review program. From secure code review, to architecture review, and threat modeling. You will build processes, tooling, and culture which makes security a natural part of how we ship and operate.
  • Influence mature vulnerability management practices. Intake, triage, prioritization, remediation tracking, and management of our bug bounty and responsible disclosure program.
  • Champion secure-by-design principles. Partner with engineering and product teams to embed security early in the development lifecycle and integrate security tooling into developer and CI/CD workflows.
  • Validate and reproduce application and infrastructure security findings. Scanning, manual testing, coordinate penetration testing and vulnerability validation across Sentry's application, SDKs and cloud-based platform.
  • Evaluate and respond to emerging threats relevant to application security Sentry. We build and operate a complex application and cloud environment, including the novel attack surface introduced by Sentry's agentic product features and AI-assisted engineering practices.

You'll thrive in this role if you

  • Enjoy operating cross-functionally, building relationships, and influencing with technical expertise, and shaping how security gets done across a fast-moving engineering organization.
  • Get excited when something new lands on your desk, be it an interesting vulnerability, a sweet exploit, a novel agentic architecture, an unfamiliar cloud primitive, or a bug class you haven't seen before.
  • Love working in an developer-forward culture where your colleagues are builders who care deeply about code quality and customer satisfaction.
  • Reach for automation first, you'd rather build a scalable, systematic solution to a security problem than solve it manually a hundred times.
  • Thrive with real ownership, you prefer to build and drive work end-to-end, you're energized by the autonomy that comes with being on a small, high-trust team.

Requirements

  • 5+ years of industry experience designing, building, securing complex applications and large-scale distributed cloud systems
  • Degree in Computer Science or a related field, equivalent training, or professional experience
  • Direct experience with security reviews, SDLC practices, secure CI/CD, architecture reviews, threat modeling, vulnerability management, bug bounty and responsible disclosure programs
  • Experienced and comfortable programming in at least one language, must be comfortable reviewing Python, Typescript, Go, Rust applications
  • Familiarity with using distributed cloud technology (AWS, GCP, Azure, Kubernetes, Docker, Terraform, etc.) and securing those technologies (cloud networking, IAM, etc.)
  • A collaborative approach to problem solving paired with strong written and verbal communication

Benefits & conditions

We are obliged by law to quote the minimum wage of EUR 74,144,-- gross per year for this position, in accordance with the respective collective agreement (IT-KV).The base salary range (or hourly wage range, if applicable) that Sentry reasonably expects to pay for this position is €112,000 - 146,000 EUR.

A successful candidate's actual base salary (or hourly wage) amount will be determined by a variety of relevant factors including, without limitation, the candidate's work location, education, work and other relevant experience, skills, and job-related knowledge. A successful candidate will be eligible to participate in Sentry's employee benefit plans/programs applicable to the candidate's position (including incentive compensation, equity grants, paid time off, and group health insurance coverage). See Sentry Benefits for more details about the Company's benefit plans/programs.

About the company

Sentry helps every developer detect, understand, and fix broken code, fast. Using Sentry’s debugging platform–that favors action over dashboards–decreases resolution time from days to minutes, resulting in freed up dev cycles and happier customers. Founded in 2008 by David Cramer and Chris Jennings as an Open Source side project, Sentry is used by over 4 million developers and 100,000 organizations, including Disney, Cloudflare, GitHub, Slack, Instacart, Atlassian, and Riot Games. Learn more at Sentry or follow Sentry on Bluesky, GitHub, Twitter,  or LinkedIn.

Apply for this position