Salary: 60.000 - 90.000 € per year Requirements: Several years of experience in Security Engineering, Platform Security and Compliance, or DevSecOps Strong understanding of cloud-native architectures, container security, and security automation as well as regulatory requirements Hands-on experience with CI/CD pipelines, infrastructure-as-code, and Kubernetes security Familiarity with Zero Trust Architecture, including identity-based access, service mesh, and network segmentation Hands-on experience with tools such as policy-as-code engines (e.g., OPA / Gatekeeper and Conftest) Knowledge of modern software supply chain security – e.g., SBOMs, SLSA, Sigstore and SAST / DAST Experience with secrets management (Vault, Sealed Secrets and External Secrets), policy engines (OPA / Gatekeeper), and observability tooling Coding / scripting ability in Python, Go, or Rust is a plus Clear communication skills and a collaborative mindset – you can work across teams and disciplines Responsibilities: Design and implement security architecture for our Internal Developer Platform Drive adoption of Zero Trust principles across platform components, networks, identities, and services Embed security and compliance into the SSDLC: from code scanning, SBOM generation, and policy-as-code to runtime and product hardening Develop and enforce security automation, compliance checks, and guardrails as part of CI/CD pipelines and infrastructure-as-code Support the implementation of fine-grained IAM, secrets management, and secure service-to-service communication Collaborate with developers and platform engineers to design secure golden paths and self-service tooling Define, track, and report on key security metrics, risk levels, and compliance posture Stay on top of emerging threats, vulnerabilities, and security best practices – and translate them into actionable improvements Technologies: CI/CD Cloud DevSecOps IAM Support Kubernetes Network Python Rust Security Backend DevOps GitLab GitOps Grafana OpenTelemetry OpenStack Terraform More: We are building a modern Internal Developer Platform (IDP) to enable secure, scalable, and efficient software delivery, with a strong focus on security and compliance. In our technically ambitious environment, you will have a unique opportunity to shape platform security from the ground up, enjoy full ownership and real impact, and collaborate with experienced platform and product engineers. We offer remote work options, flexible hours, and a commitment to automation, reproducibility, and secure-by-default engineering. last updated 12 week of 2026