Summary
Cresta is seeking a Software Security Engineer to implement product security features and mature their DevSecOps pipeline. This role requires 4+ years of experience in application security and cloud security (AWS/GCP), with strong knowledge in vulnerability management and incident response. The company is a rapidly growing AI platform focused on customer experience.
- Location
- Berlin
- Type
- full-time
- Level
- Mid-Level
- Work mode
- hybrid
Cresta unlocks the true potential of the customer experience, turning every conversation into a competitive advantage. Cresta’s unified AI platform combines conversational AI agents, real-time human agent augmentation, and comprehensive conversation intelligence to drive revenue and efficiency gains across every channel. The world’s leading companies, including United Airlines, Cox Communications, and Marriott, use Cresta to power world-class customer experiences every day.
Born from the Stanford AI Lab, Cresta has raised more than $270 million from the world’s leading investors, including a16z, Greylock, and Sequoia. Cresta’s leadership includes some of the leading minds in AI today. Our CEO, Ping Wu, founded and led Google's Contact Center AI and Vertex AI platforms before joining Cresta to build the future of AI-driven customer experiences.
Over the next few years, AI is going to redefine how people all over the world interact with businesses every day. Come build that future at Cresta.
What you'll do:
- Implement and collaborate on product security features
- Mature and extend our DevSecOps pipeline.
- Detect, defend, and respond to threats to Cresta and its customers
- Support SOC 2 Type II, ISO 27001 & 27701, PCI-DSS, TISAX and HIPAA audit processes with technical controls and evidence
- Perform security audits of Cresta’s products and cloud infrastructure and drive remediation of security risks
- Improve and monitor Cresta’s vulnerability management program to ensure we’re monitoring and mitigating known vulnerabilities
- Develop internal tooling and automation.
What we look for:
- Ambitious, passionate and results-oriented, with excellent interpersonal and communication skills
- 4+ years of experience in application security engineering and cloud security (AWS/GCP)
- Security domain knowledge across many cyber security disciplines
- Experience in static code analysis and remediation
- Experience in security operations (SOC) and incident response
- Working knowledge of Python and Go to develop and collaborate with engineering on product security features
- Experience managing competing efforts and requirements
- Experience with fast-growing SaaS start-ups
Software Security Engineer
Cresta · Berlin