Salary: 60.000 - 90.000 € per year Requirements: Several years of experience in Security Engineering, Platform Security and Compliance, or DevSecOps Strong understanding of cloud-native architectures, container security, and security automation as well as regulatory requirements Hands-on experience with CI/CD pipelines, infrastructure-as-code, and Kubernetes security Familiarity with Zero Trust Architecture, including identity-based access, service mesh, and network segmentation Hands-on experience with tools such as policy-as-code engines (e.g., OPA / Gatekeeper and Conftest) Knowledge of modern software supply chain security — e.g., SBOMs, SLSA, Sigstore and SAST / DAST Experience with secrets management (Vault, Sealed Secrets and External Secrets), policy engines (OPA / Gatekeeper), and observability tooling Coding / scripting ability in Python, Go, or Rust is a plus Clear communication skills and a collaborative mindset — you can work across teams and disciplines Responsibilities: Design and implement security architecture for our Internal Developer Platform Drive adoption of Zero Trust principles across platform components, networks, identities, and services Embed security and compliance into the SSDLC: from code scanning, SBOM generation, and policy-as-code, to runtime and product hardening Develop and enforce security automation, compliance checks, and guardrails as part of CI/CD pipelines and infrastructure-as-code Support the implementation of fine-grained IAM, secrets management, and secure service-to-service communication Collaborate with developers and platform engineers to design secure golden paths and self-service tooling Define, track, and report on key security metrics, risk levels, and compliance posture Stay on top of emerging threats, vulnerabilities, and security best practices — and translate them into actionable improvements Technologies: CI/CD Cloud DevSecOps GitLab IAM Support Kubernetes Network Python Rust Security Terraform Backend GitOps Grafana OpenTelemetry OpenStack More: We are building a modern Internal Developer Platform (IDP) to enable secure, scalable, and efficient software delivery, where security and compliance are first-class concerns. Our stack includes technologies like Nix/NixOS, Rust, Terraform, GitLab, and Kubernetes. This position offers a unique opportunity to shape platform security from the ground up, with full ownership and real impact in a technically ambitious environment. Youll collaborate with experienced platform and product engineers while enjoying remote work options, flexible hours, and a strong focus on automation, reproducibility, and secure-by-default engineering. last updated 4 week of 2026