Product Security Engineer

Why This Job Is Exciting

At Innovatrics, we equip you with the tools, context, and trust to thrive. Our opportunity-driven roadmap highlights how you can grow, contribute, and make a meaningful impact throughout your journey with us.

Security is foundational to our biometric solutions used in elections, border control, digital ID, and secure onboarding across 80+ countries. We hold ISO 27001 certification and continuously strengthen our security posture.

This role focuses on what matters most in our environment: security of software development, architecture, and deployments — across both SaaS and on-prem installations.

You will not inherit a large security department. You will shape how security is embedded into engineering.

In your first months, you’ll explore...

• Our biometric products and system architecture
• SaaS and on-prem deployment models (Kubernetes, cloud, CI/CD)
• Current secure development practices
• How ISO 27001 controls are implemented in the engineering scope

You’ll identify gaps in product and deployment security and define a pragmatic roadmap aligned with engineering reality.

As you settle into the role, you’ll start contributing by...

• Defining and evolving our solution security strategy
• Embedding secure SDLC practices across engineering teams
• Introducing structured threat modeling and security design reviews
• Strengthening Kubernetes, cloud, and CI/CD security
• Establishing vulnerability management and secure release processes
• Acting as the security authority for software and deployment-related risks, including the mandate to block releases if critical risks are identified
• Acting as a whitehat hacker and trying to bypass our injection attack detection

You will collaborate with ITO on ISO 27001 matters, but your core ownership will be security within software engineering and deployments.

Within your first year, you’ll have the opportunity to...

• Mature product security into a measurable engineering discipline
• Improve SaaS and on-prem hardening baselines
• Establish DevSecOps practices integrated into CI/CD
• Increase visibility of product security risks for leadership
• Prepare engineering scope for surveillance and recertification audits
• Potentially grow a focused product security capability

This is a high-impact role shaping how secure software is built and delivered.

What You’ll Help Build

At Innovatrics, we build biometric technologies used in elections, border control, digital ID, and secure onboarding in 80+ countries.

Security here protects sensitive biometric data and mission-critical systems.

Your work will directly influence how every engineering team designs, builds, and deploys software.

Join us if you're passionate about embedding security deeply into architecture and engineering — not just writing policies, but building secure systems.

Working Hours & Location

🌎 Hybrid or remote within the EU time zone with regular visits to HQ.

Required:

• Slovakia, Brno or EU- based
• Regular collaboration overlaps within the CET time zone

We offer flexibility while maintaining strong collaboration with engineering and leadership.

Requirements:
About You

You are a senior security professional with strong technical depth in software and cloud-native environments. You understand secure architecture, DevSecOps, and modern deployment models.

You are comfortable working with engineering teams on code-level and infrastructure-level security topics. You think in terms of threat models, attack surfaces, and defense-in-depth.

You are pragmatic, collaborative, and able to carry authority when necessary.

Qualifications

• Proven experience leading or significantly shaping product security in a software or SaaS company
• Strong knowledge of application security, secure SDLC, and threat modeling
• Experience securing Kubernetes environments, cloud infrastructure, and CI/CD pipelines
• Experience with vulnerability management and secure release processes
• Familiarity with ISO 27001 controls as they relate to software development and deployment
• Strong communication skills and ability to influence engineering teams

Certifications

Professional certifications demonstrating senior-level security expertise are strongly preferred. Examples include:

• CISSP
• ISO/IEC 27001 Lead Implementer or Lead Auditor
CISM

Certifications such as CCSP, CSSLP, or Certified Kubernetes Security Specialist (CKS) are considered a plus.

Equivalent senior-level practical experience is highly valued, even without formal certification.

Techstack

• Kubernetes (SaaS and on-prem deployments)
• Cloud environments
• CI/CD pipelines
• Java, Kotlin, Python, C++
• API-driven microservices architecture

Level

📊 This role is Medior- Senior.

Benefits:
Compensation

At Innovatrics, we offer highly competitive salaries because we value top talent who share our values and goals. Compensation is determined based on your level, skills, experience, qualifications, and location.

💶 Salary gross range: from €3767 up, tied to competency and technical evaluation.

📈 Beyond base pay, we provide an attractive benefits package.

You can learn more at careers.innovatrics.com.

Interview Process

Here is the typical interview process for this role:

👋 Introduction Stage (~30 min.)

• Recruiter Screen

🧑‍💻 Team Interview Stage (~180 min.)

We have a one single interview round that takes approximately 3 hours and is divided into three stages:

• Technical Interview [60 min.]: An interactive session with our technical team where we’ll explore your problem-solving approach, technical knowledge to the role
• Independent Task [60 min.]: You will work individually on a practical assignment designed to reflect real-world challenges.
• Evaluation & Feedback [60 min.]: We'll review your solution together with the team and discuss your approach in more detail.

🎯 Final Stage (~30 min.)

• CARES Interview: Final conversation with our CARES committee to ensure alignment with our core values—Collaboration, Accountability, Respect, Excellence, and Shared Mission.
• Reference checks and background verification

We encourage candidates to request additional conversations with anyone they would like to meet.

Learn more about our culture, values, and what it’s like to work at Innovatrics: https://careers.innovatrics.com/