Senior Security Engineer - AppSec (d/f/m)

In order to be considered for this role, after clicking "Apply Now" above and being redirected, you must fully complete the application process on the follow-up screen.

Redefine the future of live entertainment tech
Welcome to vivenu, the global leader in event ticketing tech and one of the world’s fastest-growing live entertainment tech firms. We are transforming event ticketing for global leaders like the Grammys, the Golden Globes, Stanford University and the Hockenheimring turning what was once a simple transaction into a strategic business advantage. Backed by over $65 million in funding, our platform empowers event organizers to own their brand experience, unlock deep data insights, and seamlessly integrate ticketing into their digital infrastructure.
With six offices worldwide and growing, we deliver a customizable, intuitive solution and industry-leading support that simplify even the most complex ticketing challenges – helping organizers deliver exceptional experiences and drive real growth.
Join us and build the future of live entertainment.
With over 10 million end users and usage quadrupling annually, our infrastructure now handles over 1 billion requests per month — and counting. Our API-first platform solves complex system challenges at scale — delivering performance, flexibility, and reliability for the world’s leading live entertainment brands.  

This isn't just a maintenance role – it is a blank canvas to build, scale, and architect a state-of-the-art AppSec program from the ground up. We are currently operating at a fraction of our ultimate potential, which means you have an immense, blank-canvas opportunity to fundamentally shape our security culture, processes, and tooling across the entire global engineering organization.

You will drive the entire AppSec lifecycle: from offensive red teaming and threat modeling to risk-based vulnerability management and pioneering a true shift-left culture.

What Makes This Role Challenging and Engaging:

• High-Impact Technical Environment: You won't just follow blueprints; you will holistically influence a shift-left architecture across both application and platform layers.
• Modern Technology Stack: Dive into securing a massive TypeScript monolith alongside Go supporting services, giving you hands-on experience in modern language security and advanced GitHub CI/CD pipeline hardening.
• Web and API: secure the application of the vivenu platform which provides customers with an out-of-the-box ticketing software as well as the underlying API structure
• Complex Multi-Cloud Architecture: Challenge your skills against a sophisticated multi-tenant, multi-region environment spanning k8s, GCP (our primary compute) and and separate database services
• Cutting-Edge Deployment: Secure a next-gen Kubernetes "satellite architecture" utilizing hardened private compute nodes, VPC peering, and Argo CD for GitOps—a true, modern cloud-native security mandate.

As a Senior Security Engineer - AppSec (d/f/m) your responsibilities will include: + Be a Trusted Advisor: Partner closely with engineering teams to champion security-by-design and elevate our overall security posture.

• Offensive & Defensive Testing: Coordinate and execute threat modeling and advanced security tests across our product and underlying infrastructure.
• Lead Next-Gen Vulnerability Management: Drive triage and remediation using modern, risk-based principles like EPSS, while leveraging AI technologies to accelerate security testing at scale.
• Pioneer Security-as-Code: Design, implement, and automate security checks and guardrails (SAST, DAST, and secret scanning) directly into CI/CD pipelines.
• Review & Refine: Perform deep-dive code and configuration reviews, advocating for secure coding practices that support a proactive shift-left strategy.

What you will need to succeed in this role: + Experience: 5+ years of dedicated Security Engineering experience, ideally within a high-growth SaaS, E-commerce, or Fintech environment.

• SaaS Deep-Dive: The ability to dive deep into the business logic of a complex SaaS application to uncover and verify elusive attack vectors.
• Web and API Security Mastery: a deep understanding of web/API attack vectors and scalable best practices and how to run workloads securely in a cloud environment (k8s, AWS/GCP/Azure)
• Ownership: A proven track record of autonomously driving security initiatives from conception to completion.
• Automation Mindset: Proficiency in at least one programming language for scripting and security tool development (bonus points for automating GRC evidence collection).
• Education: A Bachelor’s or Master’s degree in Computer Science, Cybersecurity, IT, or a related technical field (or equivalent practical experience). Preferred:
• Experience navigating PCI DSS script security.
• A background in Red/Purple Team operations and advanced penetration testing, paired with the empathy and collaboration skills needed to help dev teams fix software vulnerabilities.
• Hands-on experience with Terraform for securing infrastructure-as-code and integrating security testing.
• Familiarity with our modern tech stack: GCP, Golang, and TypeScript.

Why join vivenu?
Live Entertainment TechPlay a mission-critical role for global brands, redefining fan experiences from festivals to major sports events. Here, you’re part of the business of fun — powered by cutting-edge technology that brings moments to life for millions.
Sustainable GrowthWe scale sustainably on a profitable, VC-backed foundation with true product-market fit. This means continuous investment in our people, products, and long-term vision.
Top-tier TeamCollaborate with over 160 dedicated professionals, including leaders from Google, Slack, and Salesforce. Together, we’re shaping the future of live entertainment technology, one decision at a time.
Global DNAWe’re a diverse, merit-driven team spread across six global offices. Talent and impact are what matter here — not hierarchy or background.
Fast Growing, in All AspectsSifted consistently ranks us among the fastest-growing scale-ups in Europe. We’re driven by daily learning, shared wins, and collective growth.
Next-Gen Leaders & InsightsWork alongside some of tech’s brightest minds — from Forbes 30 Under 30 founders to Executive of the Year award winners. At vivenu, you’ll help set the standard for the ticketing industry’s future.
vivenu Inclusion StatementAt vivenu, we believe our people define our success – and that we win with bold, diverse minds. The strongest teams are built on different perspectives, experiences, and voices. We’re committed to creating a workplace where everyone feels empowered to contribute, grow, and thrive to shape the future of live entertainment globally.
Check out our mission statement and corporate values here.