Security Engineer (Large-Scale Authentication Solutions)

Security expert. Cryptography enthusiast. Threat hunter.

We're on a mission to free the world from passwords through innovative passkey solutions. At Corbado, you'll be at the forefront of authentication, shaping passkeys as the new login standard. With our passkey-first approach, we’ve gained significant traction. Backed and advised by very experienced angels and led by an experienced founder team (with 3rd-time entrepreneurs and 2 successful exits), we're on the path to revolutionize authentication.

• Security Architecture & Implementation: Design, implement, and enhance the security architecture of our authentication platform, ensuring high resilience and performance at scale.
• Enterprise-Grade Security Solutions: Work on solutions tailored for security-conscious industries, ensuring compliance with financial, insurance, and government security standards.
• Threat Modeling & Risk Analysis: Identify and assess potential security threats, vulnerabilities, and risks in authentication flows, proactively mitigating risks before they become real issues.
• Cryptographic Security Engineering: Implement and optimize cryptographic protocols, including FIDO2/WebAuthn, secure key storage, and authentication mechanisms.
• Penetration Testing & Security Audits: Conduct regular security assessments, penetration tests, and code reviews to identify vulnerabilities and improve system resilience.
• Incident Response & Mitigation: Develop and improve incident detection and response processes, ensuring quick mitigation and root cause analysis in case of security events.
• Collaboration with Product & Engineering Teams: Work closely with developers and DevOps engineers to ensure secure coding practices, infrastructure security, and regulatory compliance.
• Regulatory Compliance & Best Practices: Ensure our authentication solutions comply with ISO 27001, NIST, GDPR, PSD2, and other industry security frameworks.
• Performance Optimization: Optimize security mechanisms for low-latency authentication flows in large-scale environments with millions of users.

• Proven experience (3+ years) in security engineering with a focus on authentication, identity management, or cryptography.
• Deep understanding of authentication standards (FIDO2, WebAuthn, OAuth, OIDC, SAML) and cryptographic protocols.
• Experience securing high-scale applications in finance, insurance, or government sectors is a strong plus.
• Expertise in secure software development and penetration testing (e.g., OWASP, static/dynamic analysis tools).
• Proficiency in programming languages such as Go, Rust, Python, or C/C++ (experience with security-focused development preferred).
• Experience with cloud security (AWS, Azure, GCP) and container security best practices (Kubernetes, Docker).
• Knowledge of zero-trust architectures, IAM, and access control models (RBAC, ABAC).
• Strong problem-solving skills and a proactive security mindset with a keen eye for emerging threats.
• Fluency in English (German is a plus) - as we work with global enterprise clients.

• Make the Internet a safer Place: Be part of our mission to make the internet a safer place by working on cutting-edge technologies that revolutionize online security for millions of users.
• Influence the Passkey Community: You don’t work on the next, random SaaS tool but instead work on a product that helps and influences the developer community world-wide (high chance of getting the rewards and earning respect on X, Reddit and Hacker News - we already have been features by TechCrunch, The Verge and heise).
• Live a fulfilling Engineering Life: From choosing your top-notch and individual tech setup, contributing to open-source projects during your work time or to support for your private projects, we want you to have a fulfilling life as a developer.
• Experienced Team: Collaborate with an experienced team comprising serial entrepreneurs and CTOs who have scaled the IT infrastructure 10x for one of Germany's largest internet companies. Besides leadership and deep tech know-how, the founder team has great experience in digital distribution and growth, offering unparalleled learning and growth opportunities.  
• Competitive Compensation: Receive a competitive salary and participation in our Virtual Stock Option Plan (VSOP) of up to 1% in the unique starting phase of the startup, tailored to reflect your skills and individual needs, ensuring your efforts are recognized and rewarded appropriately.
• Balanced Work Environment: We strongly believe in a startup’s office culture, fostering excellent teamwork and allowing for short development iterations. Still, you have the flexibility of 1 day of remote work per week, with the potential to extend to 2 days per week after 1-2 years, contingent upon the company's progress.
• Time Off: Recharge with 30 days of annual vacation, encouraging work-life balance and ensuring you perform at your best.  

Become part of our team and build the passwordless future.

Just send an email to vincent.delitz@corbado.com including your CV, LinkedIn profile or whatever makes you feel qualified for the job. Add your earliest possible start date and outline your motivation for applying this position in max three sentences. Feel free to keep it short and sweet.

We look forward to hearing from you!