Senior Product Security Engineer

Secure our applications, improve our security posture, and integrate security into the software development lifecycle.

Location

Hybrid [London] or Remote [UK]

Salary

£95,000 - £130,000

What is Attio?

Attio is the CRM for the next generation of businesses. We're transforming the world’s largest software category from the ground up, building the new foundation that will define how companies operate in the AI era. Thousands of ambitious companies are already building their future on Attio, and we’re just getting started. Working with us, you'll have the unique opportunity to help shape the next era of business software while doing the most important work of your career.

What’s it like to work at Attio?

At Attio, excellence isn't just encouraged — it's expected. We're not building just another SaaS app: we're creating the fundamental infrastructure for the next generation of businesses.

We're builders who come together to create something greater than any of us could achieve alone. We take pride in pushing boundaries, obsessing over details, and continuously raising our standards. The scale of our engineering challenges reflects this — we're tackling problems that require rethinking how business software is built from first principles. Every day, we work in sync to solve complex challenges through rigorous collaboration and unwavering focus on quality.

We move quickly but thoughtfully, focused purely on creating exceptional work. When you join engineering at Attio, you're joining a team that believes in relentless execution, measurable results, and collective achievement. We challenge each other's work rigorously while supporting each other completely, making decisions fast while also pushing the boundaries of what's possible.

This is a rare opportunity to help create the foundation for how modern businesses will operate. You'll solve fundamental technical challenges that will shape how the next generation of companies are built, setting the standard for decades to come.

Why is this role important?

As a Senior Product Security Engineer at Attio you will focus on securing our applications, improving our security posture, and integrating security into the software development lifecycle. This role requires strong security engineering skills and a deep understanding of modern application security challenges.

This is an excellent opportunity to define security at Attio from the ground up in a fast-moving, engineering-driven environment.

Whose team will you join?

You will join the Security, Infrastructure, and Performance (SIP) team as Attio’s first dedicated Product Security Engineer, shaping the security of our SaaS platform.

Internally, we work around two fundamental principles: Curiosity and Ownership. These values transcend the way we work and how our teams are structured.

We embrace Curiosity with a culture of open discussion and open access — making everything from financial metrics and customer conversation through to code and tooling open to every member of the team. Everyone on the team is welcome to question any aspect of the business and build greater understanding and input.

Through Ownership, teams are responsible not just for the technical aspects of their work but also their own product and roadmap decisions. Everything from technical debt decisions through to feature planning is carried out at the team level.

Our engineers are empowered as Product Engineers, with work extending beyond code to full ownership of product impact.

What are the role requirements?

We believe the right person will have the following attributes:

  • Experience securing Web applications, REST APIs, and cloud-native architectures

  • Proficiency in threat modelling and finding security flaws in source code

  • Experience with vulnerability management and supply chain security

  • Practical understanding of cryptography, key management, and data protection

  • Strong coding and automation skills, especially in building security into CI/CD pipelines

  • Experience with TypeScript, Node.js, or Pulumi is a nice to have

Hiring Process

  1. An introductory call with a member of our talent team ~ 30 minutes

  2. A meeting with a member of Attio's SIP team to discuss your experience and aspirations ~ 45 minutes

  3. A meeting with Attio’s CTO to discuss your technical experience ~ 45 minutes

  4. Technical Interviews

  5. A final call with Attio’s CEO to discuss our culture and values

  6. Offer stage

A lot of our interviews are enabled through self-scheduling but we are always on hand to speak to you or answer questions throughout the process. At the offer stage, you may want to speak to more of the team, see a demo or have other suggestions for us to enhance your experience.

What will an offer consist of?

  • Competitive salary of £95,000 to £130,000

  • Equity in an early-stage tech company on an incredible trajectory

  • Optional remote working and flexibility

  • 25 days plus local holidays

  • Enhanced parental leave

  • Team off-site in fun places! (We've been to Lisbon and Malta so far)

  • Team events in London

  • Apple hardware and a budget for desk amenities

  • Cycle to Work scheme