Senior Product Security Engineer
Secure our applications, improve our security posture, and integrate security into the software development lifecycle.
Location
London Office
Salary
£95,000 - £125,000
What is Attio?
Attio is the CRM for the next generation of businesses. We're transforming the world’s largest software category from the ground up, building the new foundation that will define how companies operate in the AI era. Thousands of ambitious companies are already building their future on Attio, and we’re just getting started. Working with us, you'll have the unique opportunity to help shape the next era of business software while doing the most important work of your career.
Whose team will you join?
You will join the Security, Infrastructure, and Performance (SIP) team as Attio’s first dedicated Product Security Engineer, shaping the security of our SaaS platform.
Internally, we work around two fundamental principles: Curiosity and Ownership. These values transcend the way we work and how our teams are structured.
We embrace Curiosity with a culture of open discussion and open access — making everything from financial metrics and customer conversation through to code and tooling open to every member of the team. Everyone on the team is welcome to question any aspect of the business and build greater understanding and input.
Through Ownership, teams are responsible not just for the technical aspects of their work but also their own product and roadmap decisions. Everything from technical debt decisions through to feature planning is carried out at the team level.
Our engineers are empowered as Product Engineers, with work extending beyond code to full ownership of product impact.
Why is this role important?
As a Senior Product Security Engineer at Attio you will focus on securing our applications, improving our security posture, and integrating security into the software development lifecycle. This role requires strong security engineering skills and a deep understanding of modern application security challenges.
This is an excellent opportunity to define security at Attio from the ground up in a fast-moving, engineering-driven environment.
What are the role requirements?
We believe the right person will have the following attributes:
Experience securing Web applications, REST APIs, and cloud-native architectures
Proficiency in threat modelling and finding security flaws in source code
Experience with vulnerability management and supply chain security
Practical understanding of cryptography, key management, and data protection
Strong coding and automation skills, especially in building security into CI/CD pipelines
Experience with TypeScript, Node.js, or Pulumi is a nice to have
Hiring Process
We aim to invite successful applicants to interview within 1 week and provide interview feedback quickly after each stage.
An introductory call with a member of Attio's SIP team to discuss your experience and aspirations ~ 30 minutes
A meeting with Attio’s CTO to discuss your technical experience ~ 45 minutes
Technical Interviews
A final call with Attio’s CEO to discuss our culture and values
Offer stage
What will an offer consist of?
Competitive salary in line with levelling framework
E3 [Senior]: £95,000 to £125,000
Equity in an early-stage tech company on an incredible trajectory
Remote working and flexibility
Apple hardware and a budget for desk amenities
25 days plus local holidays
Team events in London
Team off-site in fun places! (We've been to Lisbon and Malta so far)
Enhanced parental leave