* Weitere Informationen unter:
A wide range of tasks await your commitment:
As a Software Security Specialist (m/f/d), you monitor our systems, analyze security incidents, and coordinate measures to protect against threats. You manage vulnerabilities, optimize security technologies, and promote security awareness throughout the organization. With your expertise and analytical mindset, you strengthen our cyber resilience in line with international standards.
Your tasks will be as follows:
* You conduct thorough code reviews and leverage tools like Sonarqube and JFrog XRay to identify and help resolve security vulnerabilities across the product teams.
* You continuously assess and prioritize potential threats, perform regular system tests for breaches, and maintain an up-to-date incident response plan.
* You define and drive a strategic security roadmap, including clear goals and key metrics to measure the effectiveness of security initiatives.
* You promote security awareness across the organization and ensure that secure practices are embedded throughout the DevOps pipeline.
* You ensure consistent use of advanced data protection methods such as encryption and tokenization, and stay current on trends through active industry engagement.
Your profile includes the following qualifications:
* You have completed a degree in Computer Science, Software Security, or possess a comparable qualification together with relevant professional experience.
* You have proven experience with SOC 2 Type II and familiarity with related standards (SSAE 18 / ISAE 3405) and can implement and maintain controls for compliance in a SaaS environment.
* You have hands‑on expertise securing cloud‑native, highly scalable Kubernetes environments (e.g., Google Cloud / GKE) and can harden infrastructure and DevOps/CI pipelines for production SaaS.
* It is an advantage, if you have strong API and interface security skills (REST APIs, JSON, OpenAPI/Swagger) and can design and review authentication, authorization, and monitoring for cloud‑based SaaS APIs.
* In addition to the German language, you are sufficient in English, written and spoken.