Senior Product Security Engineer

Secure our applications, improve our security posture, and integrate security into the software development lifecycle.

Location

London Office

Salary

£95,000 - £125,000

What is Attio?

Attio is the CRM for the next generation of businesses. We're transforming the world’s largest software category from the ground up, building the new foundation that will define how companies operate in the AI era. Thousands of ambitious companies are already building their future on Attio, and we’re just getting started. Working with us, you'll have the unique opportunity to help shape the next era of business software while doing the most important work of your career.

Whose team will you join?

You will join the Security, Infrastructure, and Performance (SIP) team as Attio’s first dedicated Product Security Engineer, shaping the security of our SaaS platform.

Internally, we work around two fundamental principles: Curiosity and Ownership. These values transcend the way we work and how our teams are structured.

We embrace Curiosity with a culture of open discussion and open access — making everything from financial metrics and customer conversation through to code and tooling open to every member of the team. Everyone on the team is welcome to question any aspect of the business and build greater understanding and input.

Through Ownership, teams are responsible not just for the technical aspects of their work but also their own product and roadmap decisions. Everything from technical debt decisions through to feature planning is carried out at the team level.

Our engineers are empowered as Product Engineers, with work extending beyond code to full ownership of product impact.

Why is this role important?

As a Senior Product Security Engineer at Attio you will focus on securing our applications, improving our security posture, and integrating security into the software development lifecycle. This role requires strong security engineering skills and a deep understanding of modern application security challenges.

This is an excellent opportunity to define security at Attio from the ground up in a fast-moving, engineering-driven environment.

What are the role requirements?

We believe the right person will have the following attributes:

  • Experience securing Web applications, REST APIs, and cloud-native architectures

  • Proficiency in threat modelling and finding security flaws in source code

  • Experience with vulnerability management and supply chain security

  • Practical understanding of cryptography, key management, and data protection

  • Strong coding and automation skills, especially in building security into CI/CD pipelines

  • Experience with TypeScript, Node.js, or Pulumi is a nice to have

Hiring Process

We aim to invite successful applicants to interview within 1 week and provide interview feedback quickly after each stage.

  1. An introductory call with a member of Attio's SIP team to discuss your experience and aspirations ~ 30 minutes

  2. A meeting with Attio’s CTO to discuss your technical experience ~ 45 minutes

  3. Technical Interviews

  4. A final call with Attio’s CEO to discuss our culture and values

  5. Offer stage

What will an offer consist of?

  • Competitive salary in line with levelling framework

    • E3 [Senior]: £95,000 to £125,000

  • Equity in an early-stage tech company on an incredible trajectory

  • Remote working and flexibility

  • Apple hardware and a budget for desk amenities

  • 25 days plus local holidays

  • Team events in London

  • Team off-site in fun places! (We've been to Lisbon and Malta so far)

  • Enhanced parental leave