Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Protect our applications and enhance security throughout the development lifecycle.
- Company: Join Trade Republic, Europe's largest savings platform with a mission to democratise wealth.
- Benefits: Competitive salary, dynamic work culture, and opportunities for professional growth.
- Why this job: Make a real impact on financial systems while working with cutting-edge technology.
- Qualifications: 5+ years in security engineering, with a focus on application security and strong programming skills.
- Other info: Collaborative environment that values diverse backgrounds and promotes career advancement.
The predicted salary is between 36000 - 60000 £ per year.
Please note that this position is based in Berlin or London.
THE BEST WORK OF YOUR CAREER
Trade Republic is the largest savings platform in Europe - we operate in 17 countries, serving +8 million customers who trusted us with over 100B in assets. But we're striving for more. We have a bold mission to empower everyone to build wealth with easy, safe, and free access to financial systems. You will have the opportunity to grow your career by collaborating with a team of outstanding talents and state of the art technology to build a lasting, positive future for millions.
What You'll Be Doing
- As a Senior Security Engineer in our Application Security team, you'll safeguard Trade Republic's applications and development lifecycle through proactive security integration and engineering excellence. Your responsibilities include:
- Partner with engineering teams to embed security into the software development lifecycle from design to deployment;
- Conduct security code reviews, threat modeling sessions, and architecture reviews for critical applications and services;
- Design and implement SAST, DAST, and SCA solutions to identify vulnerabilities early in the development process;
- Build and maintain application security testing automation within CI/CD pipelines;
- Develop secure coding standards, security libraries, and reusable security components for engineering teams;
- Perform penetration testing and vulnerability assessments of web applications, APIs, and mobile applications;
- Triage, prioritise, and remediate application vulnerabilities working closely with development teams;
- Create security champions program and provide security training to engineering teams;
- Research emerging application security threats and integrate defensive measures into the security architecture;
- Contribute to bug bounty program management and coordinate with external security researchers.
What We're Looking For
- Core Experience:
- 5+ years as a Security Engineer with 4+ years focused on application security;
- Deep understanding of web application security (OWASP Top 10, API security, authentication/authorization);
- Hands-on experience with security testing tools (Burp Suite, OWASP ZAP, Semgrep, etc.);
- Strong programming skills in modern languages (Python, Java, Kotlin, Go, or JavaScript);
- Experience integrating security tooling into CI/CD pipelines (GitHub Actions, GitLab CI, Jenkins);
- Expertise in secure architecture patterns for microservices, APIs, and distributed systems;
- Solid understanding of cryptography, secure session management, and identity/access management;
- Hands-on experience with security testing of cryptocurrency/blockchain infrastructure and applications is a major bonus;
- Experience with mobile application security (iOS/Android);
- Knowledge of compliance frameworks (PCI-DSS, GDPR, MaRisk) is advantageous;
- Excellent communication skills to translate security concepts for engineering audience.
Why You Should Apply Now
Our culture rewards ownership, excellence, and high energy. We care deeply about outcomes and hold each other accountable - we're here to win and fix one of the largest challenges Europeans face - closing the pension gap and democratising wealth. If this gets you fired up, reach out!
We believe it's our team's varied identities and backgrounds that make us sharper and stronger. We're committed to creating an environment where everyone feels respected and has equal opportunity to thrive in their careers. For any questions on DEI during the interview process, reach out to your recruitment partner.
Senior Security Engineer - Application Security employer: Trade Republic
Contact Detail:
Trade Republic Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Senior Security Engineer - Application Security
✨Tip Number 1
Network like a pro! Reach out to folks in the industry, especially those at Trade Republic. A friendly chat can open doors that applications alone can't.
✨Tip Number 2
Show off your skills! Prepare a portfolio or case studies showcasing your past projects and how you tackled security challenges. This will give you an edge during interviews.
✨Tip Number 3
Stay updated on trends! Keep an eye on the latest in application security and be ready to discuss them. It shows you're passionate and proactive about your field.
✨Tip Number 4
Apply through our website! It’s the best way to ensure your application gets seen by the right people. Plus, it shows you’re genuinely interested in joining our team.
We think you need these skills to ace Senior Security Engineer - Application Security
Some tips for your application 🫡
Tailor Your CV: Make sure your CV reflects the skills and experiences that align with the Senior Security Engineer role. Highlight your application security expertise and any relevant projects you've worked on. We want to see how you can contribute to our mission!
Craft a Compelling Cover Letter: Your cover letter is your chance to shine! Use it to explain why you're passionate about application security and how your background makes you a perfect fit for our team. Let us know what excites you about working at Trade Republic.
Showcase Your Technical Skills: Don’t forget to mention your hands-on experience with security testing tools and programming languages. We’re looking for someone who can hit the ground running, so be specific about your technical abilities and how they relate to the role.
Apply Through Our Website: We encourage you to apply directly through our website. It’s the best way for us to receive your application and ensures you don’t miss out on any important updates. Plus, we love seeing applications come in through our own platform!
How to prepare for a job interview at Trade Republic
✨Know Your Security Fundamentals
Make sure you brush up on your knowledge of web application security, especially the OWASP Top 10. Be ready to discuss how you've applied these principles in your previous roles, as this will show your depth of understanding and practical experience.
✨Showcase Your Technical Skills
Prepare to demonstrate your hands-on experience with security testing tools like Burp Suite or OWASP ZAP. You might be asked to solve a problem on the spot, so practice using these tools beforehand to ensure you're comfortable discussing your approach and findings.
✨Understand CI/CD Integration
Since integrating security into CI/CD pipelines is key for this role, be prepared to talk about your experience with tools like GitHub Actions or Jenkins. Share specific examples of how you've successfully embedded security practices into the development lifecycle.
✨Communicate Clearly
Your ability to translate complex security concepts into understandable terms for engineering teams is crucial. Practice explaining your past projects and security measures in a way that non-security professionals can grasp, as this will highlight your communication skills.
