DevSecOps Engineer (all genders)

Read job description in: English EN German

As a DevSecOps Engineer, you will design, build, and continuously improve secure cloud and platform solutions following modern DevSecOps principles. You will act as a key interface between development, operations, and security, ensuring that security is embedded throughout the entire software delivery lifecycle.

• Design and develop modern, secure cloud and platform solutions in agile DevSecOps environments
• Build automations and implement custom security tooling for CI/CD pipelines
• Create reusable CI/CD security components and templates (GitHub, Azure DevOps, GitLab)
• Integrate and maintain SAST and DAST solutions within CI/CD pipelines
• Advise clients on the effective use of cloud security services, balancing effort, cost, maintenance, risk, and compliance
• Identify common attack vectors and proactively mitigate security risks across applications and infrastructure
• Act as a security advocate within engineering teams and support secure‑by‑design approaches

• Successfully completed degree in (Business) Computer Science or a comparable qualification
• At least 5 years of professional experience in DevSecOps, Application Security, and Cloud/Infrastructure environments
• Strong understanding of cloud architectures, software development processes, and security best practices
• Hands‑on experience integrating SAST and DAST into CI/CD pipelines, including building reusable security templates
• Solid knowledge of common attack vectors, especially OWASP Top 10 vulnerabilities
• Programming experience for automation and custom tooling, ideally in Rust (alternatively Go, Python, C#, Java, or TypeScript)
• Basic experience with GitHub, Azure DevOps, and/or GitLab
• Structured, reliable working style with strong communication and collaboration skills
• Fluent English & German / Portuguese (depending on Location)

• Knowledge of Kubernetes and serverless security
• Experience with Policy‑as‑Code (OPA/Rego, Kyverno) and Infrastructure as Code (Terraform, Bicep)
• Experience with monitoring, SIEM, and cloud security services (e.g. Azure Monitor, Microsoft Sentinel, Dynatrace, Datadog)

• Comprehensive onboarding and individual mentoring.
• Remote work option.
• Work‑life balance and flexible working hours.
• Personal and professional development opportunities.
• Modern workplace and pleasant working atmosphere with close collaboration.
• Exciting and challenging customer projects as well as diverse tasks.
• Appreciative work environment with a positive error culture.
• Free choice of hardware between Mac and Windows.