DevSecOps Engineer (f/m/d)

As a DevSecOps Engineer, you will:

1. Automate the integration of security into every phase of our cloud-native software development cycle.
2. Integrate application and infrastructure security into agile and DevOps processes and tools, and be responsible for proactive security controls.
3. Monitor the security of our applications and IT landscape in Microsoft Azure, identify security gaps, and respond promptly to security issues.
4. Collaborate with Security and Solution Architects to create and enforce organization-wide security policies.

We offer:

• Speed, agility, and steep career growth.
• A vision to make sustainable solar energy accessible to all, driven by a customer and product-oriented approach, and collaboration across software development, product management, and lean, experiment-driven business development.
• Opportunities to develop professional skills, contribute to the energy revolution, and participate in meaningful change.

At Enpal, you would be:

• Building secure solutions, delivering incremental value, and improving user experience while contributing to climate goals.
• Adopting Shift-Left and Zero-Trust security approaches for proactive and continuous security measures.
• Troubleshooting and fixing security issues to enhance application and IT landscape security.
• Improving overall security, stability, and availability through automation, load testing, and vulnerability scans.
• Working on architecture and vision, integrating old and new technologies like cloud-native microservices, IoT applications, Salesforce, and event-driven architecture.
• Steering with empathy and understanding by engaging with various stakeholders to create solutions that address real needs.

Qualifications:

• Security-first mindset, valuing developer experience.
• Hands-on experience embedding security throughout the software development lifecycle.
• Extensive knowledge of cloud platforms, especially Azure.
• Experience with security tooling and automation (SAST, SCA, DAST, CNAPP, CWPP).
• Experience with CI/CD, Infrastructure as Code (Terraform preferred), Kubernetes, and cloud-native systems.
• Ability to identify and address security flaws, understanding of OWASP principles.
• Familiarity with Azure SQL, MongoDB, C#, Node.js, Datadog is a plus.
• Knowledge of security frameworks, standards, and policies.
• Clear communication skills in English; German is a plus.
• Inspired by the energy transition and eager to make a difference.
• Values empowerment, initiative, personal growth, responsibility, and influence.
• Embodies agile and lean principles, focusing on people, code, and reducing waste.

Additional Information:

• Work in Germany's first green unicorn and shape the solar energy revolution.
• Join a motivated, diverse team of over 65 nationalities.
• Hybrid working model, balancing remote work and office presence.
• Modern office in Berlin-Friedrichshain with amenities like ping-pong, yoga, roof terrace, and stocked drinks.
• Onboarding with company introduction, team, and founder Mario.
• Stay informed through monthly all-hands meetings and Lunch & Learn sessions.
• Participate in team events and benefit from a strong feedback culture via Culture Amp.