Staff Security Engineer

  • HelloFresh
  • Berlin
  • Hybrid
  • Included
Back to Job Overview

“`html

About HelloFresh

At HelloFresh, our mission is simple: to change the way people eat, forever.

As a global digital-native FMCG company and the world’s leading meal kit provider, HelloFresh is transforming the traditional food supply chain through a data-driven, on-demand model that enables scalable and more sustainable food delivery.

The HelloFresh Group includes multiple brands serving customers across various meal occasions, including HelloFresh, Green Chef, EveryPlate, Chefs Plate, Factor, YouFoodz, Good Chop, and The Pets Table. Through technology, data, and culinary innovation, we deliver personalized food experiences to millions of households worldwide.

About the Role

HelloFresh is seeking a Staff Security Engineer to join the Security Tribe and help shape the next generation of security capabilities across the organization.

This is a senior individual contributor role designed for a deeply technical, pragmatic, and builder-minded security professional. You will work across multiple security domains, including Cloud Security, Application & Product Security, Offensive Security, and GenAI Security.

Your focus will be on creating scalable internal security products, automation, guardrails, and self-service capabilities that enable engineering teams to build secure systems efficiently and at scale.

What You’ll Do

  • Lead Security-by-Design Initiatives:
    Define and drive secure architecture patterns, reference designs, and guardrails that enable teams to build secure systems by default.
  • Own Cloud Security Architecture:
    Design and implement security controls across AWS environments, Kubernetes platforms, IAM, networking, workload protection, secrets management, and cloud infrastructure.
  • Build Security Guardrails:
    Develop scalable security controls using automation, Policy-as-Code, Infrastructure as Code (IaC), and cloud-native security capabilities.
  • Embed Security into the SDLC:
    Partner with engineering and product teams to conduct threat modeling, architecture reviews, security testing, and developer-friendly remediation processes.
  • Create Internal Security Products:
    Build self-service security tools and platforms that empower engineers and employees to securely operate at scale.
  • Improve Security Tooling:
    Lead initiatives across SAST, DAST, SCA, IaC scanning, secret detection, vulnerability management, and software supply chain security.
  • Drive Offensive Security Programs:
    Conduct penetration testing, adversary simulations, purple team exercises, and security control validation activities.
  • Secure AI & GenAI Systems:
    Establish security controls for LLM applications, AI agents, RAG systems, model integrations, AI governance, prompt injection protection, and data leakage prevention.
  • Manage External Security Engagements:
    Coordinate security assessments, audits, and engagements with external consultants and partners.
  • Leverage AI for Security Operations:
    Utilize GenAI technologies to automate workflows, reduce operational overhead, improve analysis, and accelerate security capabilities.
  • Provide Technical Leadership:
    Mentor engineers, influence technical strategy, and act as a trusted advisor to engineering, platform, data, product, and leadership teams.

What You’ll Bring

  • 8+ years of experience in security engineering, software engineering, cloud security, application security, or offensive security.
  • Deep hands-on expertise securing cloud-native environments, preferably AWS.
  • Strong understanding of IAM, Kubernetes, networking, logging, monitoring, threat detection, and infrastructure security.
  • Extensive application and product security experience, including threat modeling, architecture reviews, API security, SDLC security, and OWASP best practices.
  • Practical offensive security experience, including penetration testing, vulnerability research, exploitability analysis, and red or purple team exercises.
  • Strong software engineering skills in one or more programming languages such as Python, Go, Java, or TypeScript.
  • Experience building production-grade automation, internal security platforms, developer tools, and self-service security solutions.
  • Hands-on experience securing GenAI, LLM, AI Agent, RAG, or machine learning systems.
  • Familiarity with frameworks and standards such as:
    • OWASP Top 10 for LLMs
    • MITRE ATLAS
    • NIST AI Risk Management Framework (AI RMF)
    • AI Gateways and Guardrails
    • Prompt Evaluation and AI Red Teaming
  • Experience with modern security technologies including:
    • CNAPP / CSPM
    • SAST, DAST, and SCA platforms
    • Infrastructure-as-Code scanning
    • Secret scanning solutions
    • Web Application Firewalls (WAF)
    • SIEM platforms
    • EDR solutions
    • Vulnerability management platforms
  • Strong communication skills with the ability to influence stakeholders and translate complex security challenges into scalable engineering solutions.

What We Offer

  • Work at Scale:
    Join one of Europe’s fastest-growing technology companies during a dynamic period of global expansion.
  • Global Environment:
    Collaborate with colleagues representing more than 90 nationalities worldwide.
  • Competitive Compensation:
    Comprehensive salary package with additional benefits and long-term incentives.
  • Pension Benefits:
    Access to a HelloFresh-subsidized pension scheme.
  • Relocation Support:
    Assistance for employees relocating to Berlin.
  • Hybrid Working Model:
    Flexible working arrangements that balance office collaboration and remote work.
  • Food Discounts:
    Exclusive discounts on HelloFresh meal boxes and office meals.
  • Learning & Development:
    German language learning budget and access to the HelloFresh Academy.
  • Mental Health & Wellbeing:
    Access to wellbeing platforms including Headspace and Spill.
  • Transportation Benefits:
    Support for commuting and transportation expenses.
  • Family-Friendly Benefits:
    Programs designed to support working parents.
  • Fitness & Wellness:
    24/7 gym access and additional wellness resources.
  • Sabbatical Opportunities:
    Long-term leave options to support personal growth and wellbeing.

Why Join HelloFresh?

At HelloFresh, you’ll have the opportunity to build security capabilities that protect products used by millions of customers worldwide while helping shape the future of food technology.

We value diverse experiences, perspectives, and backgrounds. If you’re passionate about building secure systems at scale and making a meaningful impact, we’d love to hear from you.

“`

Apply now
CareerBee Logo

Don't miss out on new jobs!

Signup for weekly updates on new jobs so you can be the first to apply

Subscribe to our
Weekly Job Board Updates!

Signup for weekly updates on new jobs
so you can be the first to apply

Contact form for Companies

Are you a talented professional seeking a new opportunity?
Visit our Talents Page.

💻 Career Services

Book our professional career services to help you in your job search

🏛️ Resource Library

Check our blog and videos to get tips for your job search

📬 Job Newsletter

Register with us today to stay up to date with the latest English-speaking jobs.

❔ FAQ

We answer the most common questions

Are you hiring?
Book a consultation
Contact us