
Vay · Berlin
Ever imagined saying, “I helped launch the future of transportation”? We’re rewriting the rules of urban mobility. At Vay, customers tap a button and a car arr...
Ever imagined saying, “I helped launch the future of transportation”?
We’re rewriting the rules of urban mobility. At Vay, customers tap a button and a car arrives - with no one inside - powered by
our world-first Remote Driving technology on real public streets.
We’re live in Las Vegas and scaling fast, powered by a strategic investment of up to $410 million from Grab. Our mission is
simple: replace private car ownership with a faster, cleaner, door-to-door mobility model. If you want to build something real,
visible, and genuinely transformative, you’ll feel right at home here.
Curious to experience Vay yourself? Use the code VAYCANDIDATE for $10 off your first trip in Las Vegas! Download the "Vay" app
from the Apple or Google Play store & off you go!
commercial, driverless car fleet in the Western World.
integrate our system into heavy-duty commercial vehicles and expand the applications of our tech across the US.
As a Principal Security Engineer, you will play a critical role in shaping the cybersecurity foundation of Vay’s vehicle and
remote driving ecosystem. This is a highly cross-functional role that sits at the intersection of automotive security, embedded
systems, safety-critical development, and organizational leadership.
You’ll work closely cross-functionally to ensure our products are designed, developed, and validated with security at the core.
Your work will directly influence how we assess risk, define mitigations, validate security requirements, and scale secure
engineering practices across the company.
This role is ideal for someone who can operate both strategically and hands-on. You should be comfortable driving high-level
security architecture and process discussions while also diving deep into technical details when needed. Strong communication and
stakeholder management skills are essential, as you’ll often act as the security voice across the organization.
You will lead and evolve the cybersecurity engineering practices that support Vay’s remote driving technology and vehicle
as ISO 27001 and UNECE R155/R156
You are an experienced security engineer who enjoys working across organizational boundaries, influencing complex technical
systems, and building products that operate safely in the real world.
💪 A global team of smart, motivated people from 30+ countries who love tackling hard problems and turning bold ideas into reality
🌍 Huge scope for impact in a fast paced environment
💰 ESOP stock options: A stake in Vay’s future - not just a salary
🌴 Unlimited Paid Vacation Days
🎫 Subsidised Deutschland ticket (Berlin)
🏋️♂️ Subsidised Urban Sports Club or FitX Membership
🚗 All Vay team members receive 30% off their Vay rides
🛍️ Exclusive external discounts
💼 €350 Home Office Set-up
✈️ Relocation financial assistance when relocating to Berlin
📚 Fully funded German Lessons
🎊 Regular team events throughout the year
For more information on Vay’s physical demands, working environments and safety requirements, you can review this link. We’ll also
cover anything specific to this role during the first interview.
We’d love to stay connected for future opportunities, so feel free to include your LinkedIn profile when you apply.
We welcome applications from all backgrounds and experiences. If you’re excited about shaping something truly groundbreaking, we’d
be happy to hear from you.
ABOUT PARLOA Parloa’s mission is to make every customer conversation feel effortless for both customers and the companies serving them. As agentic AI accelerates, Parloans are shaping the foundation of a new era in customer experience, one where customer support is no longer transactions, but meaningful exchanges. It is not just a vision; Parloa has powered over ONE BILLION interactions between global enterprise brands and their customers, with companies like Booking.com, HealthEquity, Allianz, SAP, BarmeniaGothaer, and TUI already deploying Parloa at scale. ABOUT THE ROLE: Security at Parloa isn't an afterthought — it's foundational to how we build and operate an AI platform that enterprises trust with sensitive voice and chat data at scale. As Principal Security Engineer, you'll set the technical direction for security across our engineering organisation: from secure architecture and threat modelling, to embedding security thinking into how a fast-growing AI company designs, builds, and ships. This is a hands-on, high-ownership role. You won't just maintain a security programme — you'll define it, working across infrastructure, product, and AI/ML teams to ensure security is built in from the start, not bolted on afterwards. You'll be a technical authority and a multiplier, raising the security bar across the whole organisation. AREAS OF OWNERSHIP: * Own the technical security engineering strategy across Parloa's platform, infrastructure, and AI/ML systems * Lead deep threat modelling and architecture reviews for new and existing systems, including LLM-based and voice/chat AI pipelines * Drive secure-by-design practices into the software development lifecycle, partnering closely with engineering teams rather than gatekeeping after the fact * Design and improve detection, monitoring, and incident response capabilities across cloud and AI infrastructure * Guide security architecture for multi-tenant, sensitive data flows across Parloa's enterprise customer base * Support compliance and governance efforts (e.g. SOC 2, ISO 27001) by ensuring technical controls are sound and well-documented * Mentor senior+ engineers and security practitioners, building security capability across the wider organisation * Act as a trusted technical voice in conversations with enterprise customers and partners on security matters * Stay ahead of the evolving threat landscape for AI and voice/chat systems, bringing new risks and mitigations to the team proactively WHO YOU ARE: * Extensive experience (15+ years) in security engineering, with demonstrated impact at Staff or Principal level * Deep expertise in application security and/or cloud security, threat modelling, and secure architecture for distributed, cloud-native systems * Hands-on experience with cloud security across AWS, GCP, or Azure, and container orchestration (Kubernetes) * Strong understanding of identity and access management, encryption, and secure data handling at enterprise scale * Experience securing systems handling sensitive or regulated data, ideally with exposure to GDPR or similar frameworks * A track record of driving security strategy and influencing engineering culture across an organisation, not just executing individual fixes * Excellent communication skills, able to explain security risk and trade-offs clearly to engineers, leadership, and customers * Genuine curiosity about AI systems and a willingness to dig into the emerging security challenges they introduce OUR ENGINEERING VALUES: At Parloa, we hire, promote, and evaluate based on cultural and technical excellence. You’ll thrive here if you: * Earn Trust – act with transparency and reliability. * Obsess Over Customers – always start with the customer problem. * Think Big – set bold goals and pursue them fearlessly. * Have Integrity – do the right thing, especially when it’s hard. * Disagree & Commit – debate with candor, align fast, and deliver. * Own It – take full responsibility for outcomes, not just tasks. * Dive Deep – master the details without losing sight of the big picture. * Bias for Action – move fast, decide quickly, iterate fearlessly. * Deliver Value – measure success by customer and business impact. * Insist on the Highest Standards – raise the bar continuously. * Go the Extra Mile – make the impossible possible. * Hire & Elevate the Best – raise the bar with every hire OUR RECRUITING PROCESS: Recruiter Interview → Technical Peer Interview → Expert interview(s) → Bar Raiser WHY PARLOA? We’re at the beginning of a new era in customer experience, one where AI doesn’t just respond, but understands, reasons, and takes action. We’re building agentic AI that enterprises trust with their most important customer moments: complex questions, high volumes, real stakes. When millions of people reach out to a brand, those interactions aren’t just support tickets; they’re defining experiences. We’re here to raise the standard: making every conversation seamless, intelligent, and genuinely helpful. If you care about shaping how businesses and customers connect at scale—and want your work to matter in real, everyday moments—this is where you do it. At Parloa, ownership isn’t a buzzword; it means being accountable for outcomes, not just tasks. We operate in a category that’s evolving fast, where the bar is high, and the problems are complex. We hire people who think in solutions, communicate with clarity, and follow through. People who are comfortable making decisions, taking responsibility, and raising the standard for themselves and those around them. We’ve grown beyond the earliest startup phase, but we’ve kept the intensity: fast execution, direct feedback, and a strong expectation to contribute meaningfully from day one. Backed by leading global investors like General Catalyst, EQT Ventures, and Altimeter Capital, we’re scaling with a clear ambition: to become the global category leader in enterprise-grade conversational AI. ---------------------------------------------------------------------------------------------------------------------------------- Parloa is committed to upholding the highest data protection standards for our clients' and employees' data. All our employees are instrumental in ensuring the utmost care, GDPR, and ISO compliance, including ISO 27001, in handling sensitive information. Parloa is an e-verify employer in the USA. Please click here to learn more. * We provide equal opportunities to all qualified applicants regardless race, gender, sexual orientation, age, religion, national origin, disability status, socioeconomic background and other characteristics.
P-1125 SUMMARY At Databricks, we are obsessed with enabling data teams to solve the world's toughest problems, from security threat detection to cancer drug development. We do this by building and running the world's best data and AI infrastructure platform, so our customers can focus on the high-value challenges that are central to their missions. Our engineering teams build highly technical products that fulfill real, important needs in the world. We constantly push the boundaries of data and AI technology, while simultaneously operating with the resilience, security, and scale that is critical to making customers successful on our platform. Customers trust Databricks with their most valuable data and Trust & Safety has the mission to build the most trusted data analytics and ML platform in the world. Security Engineering is an integral part of Trust & Safety and has a critical role to play in keeping customer data from bad actors. We are looking for senior leaders such as yourselves to create the vision and define the strategy for this space. The impact you will have: * Make Databricks safer for our customers by identifying and plugging key gaps in our infrastructure and services * Attract top talent from across the industry. * Represent the security engineering discipline throughout the organization, having a powerful voice to make us more data-driven * Represent Databricks at academic and industry conferences & events What we look for: * 9+ years of experience in Data Security or related areas and expertise in two or more of the following--Cryptography, Kubernetes Security, Web Security, Governance, Privacy, Trust, Safety, Authentication, Identity Management, Access Control, Key Management, Inter-Service Authentication, Secure Application Frameworks, Detection & Response. Experience building systems at large scale internet companies is a huge plus. * 15+ years of experience building large scale distributed systems with high availability * Leadership skills and experience to lead across functional and organizational lines * Strong communication skills to explain and evangelize Data Security to senior leaders across the company * Bias to action and passion for delivering high-quality solutions * MS or Ph.D. in Computer Science or related fields About Databricks Databricks is the data and AI company. More than 10,000 organizations worldwide — including Comcast, Condé Nast, Grammarly, and over 50% of the Fortune 500 — rely on the Databricks Data Intelligence Platform to unify and democratize data, analytics and AI. Databricks is headquartered in San Francisco, with offices around the globe and was founded by the original creators of Lakehouse, Apache Spark™, Delta Lake and MLflow. To learn more, follow Databricks on Twitter, LinkedIn and Facebook. Benefits At Databricks, we strive to provide comprehensive benefits and perks that meet the needs of all of our employees. For specific details on the benefits offered in your region click here. Our Commitment to Diversity and Inclusion At Databricks, we are committed to fostering a diverse and inclusive culture where everyone can excel. We take great care to ensure that our hiring practices are inclusive and meet equal employment opportunity standards. Individuals looking for employment at Databricks are considered without regard to age, color, disability, ethnicity, family or marital status, gender identity or expression, language, national origin, physical and mental ability, political affiliation, race, religion, sexual orientation, socio-economic status, veteran status, and other protected characteristics. Compliance If access to export-controlled technology or source code is required for performance of job duties, it is within Employer's discretion whether to apply for a U.S. government license for such positions, and Employer may decline to proceed with an applicant on this basis alone.
Since being founded in 2018, Copper has been building the standard for institutional digital asset infrastructure with a focus on custody, collateral management, and prime services. Led by Amar Kuchinad, Copper's Global CEO, the firm provides a comprehensive suite of custody, trading and settlement solutions that reduce counterparty risk and bring greater capital and operational efficiency to digital asset markets. At the heart of Copper's offering is Multi-Party Computation (MPC) technology – the gold standard in secure custody. Copper’s multi-award winning custody system is unique in that it can be connected to centralised exchanges, DeFi applications and even staking pools without the assets leaving the custody. Built on top of this state-of-the-art custody, ClearLoop is the first solution in the market that overcomes a growing industry challenge; counterparty risk with exchanges. This solution underpins a full prime services offering, connecting global exchanges, and enabling customers to trade and settle directly from the safety of their MPC-secured wallets. By reducing settlement time for transfers to a few milliseconds (without blockchain network dependency) and offering enhanced security measures, ClearLoop is rapidly reshaping the way asset managers trade and manage capital. In addition to industry-leading security certifications, Copper has one of the strongest insurance coverages in the industry from an A+ rated insurer, positioning the firm as the partner of choice for institutions seeking to safeguard their assets. Department/Team Purpose: Copper provides institutional digital asset custody, settlement, and collateral management services across a wide range of blockchains and integrated venues. Information Security protects the firm's platforms, client assets, and regulated entities across the group. Role Purpose: The Principal Security Architect is the senior technical authority for security architecture at Copper. The role reports to the CISO and partners closely with Engineering. The holder sets architectural direction, reviews and approves designs for major change, and acts as the firm's reference point on the security of the systems, protocols, and integrations Copper depends on. The role is predominantly architecture and assurance, with limited hands-on solution design in the cloud and integration space where reference patterns are needed. Key Responsibilities: Architectural authority * Hold formal security sign-off authority for major changes to Copper's platforms, infrastructure, and integrations. * Shape and maintain the security architecture patterns, principles, and reference designs that engineering teams build against. * Provide the senior technical security position in architectural and business decisions, including escalations where security and delivery pressures conflict. Custody, signing, and cryptographic architecture * Provide architectural security leadership over Copper's signing infrastructure, working alongside specialist engineering and cryptography teams. Scope covers the people, process, and operational design around MPC-based signing. Solid conceptual grounding in threshold cryptography and signature schemes is required; cryptographer-level work is not. * Review and approve changes to transaction construction, signing flows, approval policy, and key lifecycle operations. * Provide architectural assurance over chain-of-trust constructs adjacent to custody, including verifiable build pipelines, hardware-backed code signing, and authenticator-bound administrative paths. Multi-chain and integration security * Reason at architectural depth across the range of blockchains Copper supports, including EVM, UTXO, and account-based non-EVM families. This requires a working understanding of transaction construction, signing semantics, consensus assumptions, and validator and staking models across these environments, without being a protocol engineer in any of them. * Assess third-party smart contract architectures, implementations, and audit reports to a level sufficient to understand the exploit and risk surface, without performing line-by-line code review. * Review first-party integrations with partner networks, including those underpinning staking and similar on-chain participation, and form a defensible security position on the operational and contract risk Copper inherits. Settlement, collateral, and off-exchange architecture * Provide architectural ownership of the security model for Copper's settlement, collateral mirroring, and off-exchange product surfaces. * Reason about the trust boundaries between Copper, venues, and clients, and ensure architectural controls match the obligations each side carries. Identity and access architecture * Own identity and access architecture as a dedicated pillar of the role. * Set patterns for workforce, workload, and third-party identity across Entra ID, federated SSO, OAuth2 / OIDC, SAML, and modern authenticators. * Govern entitlement design, privileged access, and access models for contractors, vendors, and external operators. Cloud and platform security * Maintain working architectural fluency in both AWS and Azure, including network topology, segmentation, secrets handling, and platform telemetry. * Produce reference patterns and, where needed, direct integration designs in the cloud and platform space. Third-party and protocol risk * Lead technical security review of vendors, integrated venues, and protocols, including challenge of assurances that do not stand up to scrutiny. * Support client and counterparty due diligence on the technical content most likely to be misrepresented or under-specified. Policy, regulatory, and assurance support * Maintain a working understanding of the regulatory regimes applicable to Copper's licensed entities sufficient to translate architectural decisions into language Compliance and GRC can defend. Primary ownership of regulatory positioning sits elsewhere. * Contribute to security policy, standards, and control framework development as the senior technical reviewer. * Participate in resilience exercises and incident reviews where architectural input materially shapes the outcome. Skills and Experience: Essential * Multi-chain architectural literacy. Able to reason across EVM, UTXO, and non-EVM account-based chains at the level of transaction construction, signing, consensus, and validator models. Comfortable assessing third-party smart contract designs, implementations, and audit reports for exploit and risk surface without performing code review. * Custody and signing architecture. Strong conceptual grasp of threshold signing, signature schemes, and key lifecycle. Able to design and challenge the operational architecture around signing, separation of duties, approval policy, key ceremony equivalents in MPC, and recovery, to a high standard. * Settlement and collateral architecture. Demonstrable experience reasoning about settlement, collateral, and off-exchange constructs, including trust boundaries between custodians, venues, and clients. * Identity and access architecture. Senior-level experience designing and governing identity across Entra ID, federated SSO, OAuth2 / OIDC, SAML, and modern authenticators. Comfortable with entitlement governance and third-party access design. * Cloud security. Working architectural understanding of AWS and Azure, including the ability to produce reference patterns and limited direct integration designs. * Architectural authority and judgement. Track record of holding sign-off on significant designs, taking defensible positions under uncertainty, and owning residual risk. * Change review and assurance. Comfortable reviewing the work of engineering peers, infrastructure changes, and vendor designs, and able to hold the line where it matters. * Communication. Able to operate credibly with engineers, senior business stakeholders, auditors, and regulators in the same week, without losing precision at any of them. Desirable * Familiarity with chain-of-trust constructs including verifiable builds, reproducible build pipelines, and hardware-backed code signing. * Awareness of the regulatory landscape relevant to digital asset custody and trading (for example FCA, FINMA, FSRA / ADGM, MiCA). * Compliance familiarity across ISO 27001, SOC 2, and NIST CSF / 800-53, with the ability to map controls cleanly between them. * Enterprise architecture grounding (TOGAF, SABSA) where it complements rather than replaces technical depth. Why Copper? At Copper, we keep innovation, openness, and curiosity at the centre of everything we do. Here, bold ideas get the spotlight, learning is constant, and diversity shapes our team from the ground up. Jump into a fast-moving, dynamic team that loves a challenge and knows how to have fun along the way. Collaboration is just as important as results—you’ll be surrounded by smart, driven colleagues in London and across our APAC, Switzerland, UAE, and US offices. Hybrid working model – we believe in the value of bringing people together and at the same time we embrace the adaptability of flexibly working. Diversity and inclusion matter to us – they’re woven into Copper life. From employee-led groups like Women at Copper to a committee focused on community and wellbeing, you’ll have a network that supports you from day one. Everyone voice matters. If you’re looking to ramp up your career, or keen to do something new in your field, with us, you’ll keep moving forward. Ready to make your mark, keep growing, and join a supportive, dynamic team? Copper’s the place. The interview process at Copper Our interview process is designed to be thoughtful, efficient, and engaging. While specific steps may vary slightly depending on the role, the typical journey includes: 1. Initial Screening A brief conversation with our Talent Acquisition team to explore your background, motivations, and alignment with the role. 2. Technical Interview A virtual session conducted via Microsoft Teams, where you'll engage with team members to discuss relevant skills, problem-solving approaches, and technical experience. 3. In-Person Interview A conversation focused on team dynamics, collaboration style, and any final technical questions. This may be with cross-functional peers or leadership. Additional steps may be added based on the role's complexity or seniority. We aim to keep the process transparent and respectful of your time. Benefits In return for everything you can bring to Copper, we can offer you an exciting, challenging role in a fast-growing and dynamic business, with career opportunities and welcoming working environment. Some of our key UK benefits are highlighted below: * Paid Time Off - A minimum of 35 days of paid time off per year, inclusive of annual leave and public holidays. Employees also receive one additional day of annual leave for each year of service. * Comprehensive Medical Insurance - Inclusive of dental, optical, audiology, and mental health coverage, with medical history disregarded * Life Insurance * Enhanced Pension Contributions - Includes an enhanced employer matching contribution * 24/7 Employee Assistance Programme (EAP) If you think you have everything we're looking for and more, then we'd love you to apply for the opportunity. Copper is an equal opportunity employer. We embrace diversity and equal opportunities in a serious way. We are committed to building a team that represents a variety of backgrounds, perspectives, and skills. The more inclusive we are, the better our work will be. So, bring us your experience, perspectives, and skills. It is in our differences that we will continue to grow and ensure Copper is transforming how institutional investors engage with digital assets. Copper is a Disability Confident Employer, please let us know if you have a disability. If you require us to provide any assistance during the recruitment process, then we would ask you to highlight this to us and we will be happy to accommodate.