Security Engineer (m/f/x)

FINN is an independent platform for car subscriptions from over 30 brands. Subscribe to a car with just a few clicks and it will be delivered directly to your doorstep in just a few days: FINN offers a carefree service and handles insurance, financing, registration, taxes and maintenance. FINN also funds climate action by supporting certified climate protection projects and thus offsets the carbon footprint of every vehicle of all drive types – from production to every mile driven. FINN was founded in Munich in 2019. The mission: to have a positive impact on people, organizations and the planet through frictionless mobility.More Information: www.finn.com/
Your Role As a Security Engineer, you will design, implement, and maintain robust security solutions to safeguard company assets, with a strong emphasis on protecting customer data and ensuring infrastructure resilience. You will collaborate closely with engineering teams to embed security best practices into their workflows, enabling informed decision-making that balances risk, efficiency, and business objectives. Additionally, you will play a critical role in developing incident detection and response capabilities, as well as leading security awareness training initiatives to foster a security-conscious culture across the organization.

Why FINN?

• Flexibility to work either in our Munich office or remotely ±3 hours of the CET/CEST.
• Visa and relocation support for you and your family.
• Possibility to work part-time instead of full-time and reduce a 40-hour-week to 80% (32 hours/week)
• Excellent fixed salary with equity participation of the company.
• Additional yearly development budget of 1,500€ and an enabling environment to enhance your skills.
• An open-minded community to be welcomed from day one and fun team events with amazing colleagues.
• Access to discounted gym memberships and attractive mobility options (e.g. discounts for FINN cars via JobAuto or tax benefits via JobRad).

Your Responsibilities

• Implement and maintain solutions to protect our current cloud assets, and improve visibility into their operations (e.g. security lake, detection writing etc.).
• Support Incident Response activities with your expertise.
• Develop and maintain BC/DR measures and plans for internal services.
• Implement, improve, and maintain solutions for access control for our vast SaaS tooling portfolio.
• Act as an advisor and trusted partner for IT and engineering teams to integrate security best practices into their daily operations.
• Improve current SDLC processes and workflows with cybersecurity best practices in mind.
• Conduct focused Security Awareness Training sessions for software engineers (e.g. Threat Modelling, Best Practices for CI/CD, etc.).

Your Profile

• Engineering or IT background with a strong interest in security.
• Profound knowledge of data and cloud security (AWS or GCP). 
• Experience with modern security data engineering practices such as security data lakes and detection engineering.
• Familiar with Governance, Risk and Compliance practices, or Data Privacy and Protection regulations. 
• Hands-on experience in Incident Response and the ability to create Threat Models for services
• Solid experience with coding in Python or Go. 
• Analytical mindset with the ability to navigate ambiguity and challenge existing processes to find the right balance between speed, efficiency, and security
• Strong communication skills and the ability to drive change in an organization.
• Fluent in English.

Interested in Joining Our Fast-Growing Startup? Please upload your CV and transcripts online. Frederik and Anna are looking forward to your application!
Equal Opportunities for EveryoneFINN is an equal opportunity employer. We embrace and celebrate diversity and are committed to creating an inclusive environment for all employees. We are open to all groups of people without regard to age, color, national origin, race, religion, gender, sex, sexual orientation, gender identity and/or expression, marital status, or any other legally protected characteristics.