Salary: 43.000 - 78.000 € per year Requirements: You have completed a degree in Computer Science, Software Security, or possess a comparable qualification together with relevant professional experience. You have proven experience with SOC 2 Type II and familiarity with related standards (SSAE 18 / ISAE 3405) and can implement and maintain controls for compliance in a SaaS environment. You have hands-on expertise securing cloud-native, highly scalable Kubernetes environments (e.g., Google Cloud / GKE) and can harden infrastructure and DevOps/CI pipelines for production SaaS. It is an advantage if you have strong API and interface security skills (REST APIs, JSON, OpenAPI/Swagger) and can design and review authentication, authorization, and monitoring for cloud-based SaaS APIs. In addition to the German language, you are sufficient in English, written and spoken. Responsibilities: You conduct thorough code reviews and leverage tools like Sonarqube and JFrog XRay to identify and help resolve security vulnerabilities across the product teams. You continuously assess and prioritize potential threats, perform regular system tests for breaches, and maintain an up-to-date incident response plan. You define and drive a strategic security roadmap, including clear goals and key metrics to measure the effectiveness of security initiatives. You promote security awareness across the organization and ensure that secure practices are embedded throughout the DevOps pipeline. You ensure consistent use of advanced data protection methods such as encryption and tokenization, and stay current on trends through active industry engagement. Technologies: API Cloud DevOps Embedded JFrog JSON Kubernetes OpenAPI REST Security Swagger LAN NAT More: At EPG, we are proud to be one of the internationally leading providers of a comprehensive supply chain execution suite (EPG ONE), serving over 1,600 customers. We offer WMS, WCS, WFM, TMS, and voice solutions designed to optimize logistics processes, alongside logistics consulting, cloud services, managed services, and training through our own academy. We believe that work should be enjoyable and fit into life, providing a colorful and talented team, the best customers, and diverse projects. Our flexible work models, including options for home office and various team-building events, allow you to contribute meaningfully while ensuring a great work-life balance. Join us in a vital industry that not only impacts everyday life but also shapes a sustainable future. last updated 6 week of 2026