Logo Delivery Hero SE

Staff Security Engineer

New

Job

  • Level
    Senior
  • Job Field
    IT, Security
  • Employment Type
    Full Time
  • Contract Type
    Permanent employment
  • Location
    Berlin
  • Working Model
    Hybrid, Onsite
  • Job Summary

    In this role, you lead critical security incidents end-to-end, develop automated workflows, and ensure compliance standards. You also mentor teams and manage incident response in a dynamic, international environment.

    Job Technologies

    Your role in the team

    • As a Staff Security Engineer within our CSIRT Team, you will be accountable for leading our most critical, complex, and high-impact security incidents end-to-end across a global, high-transaction food delivery and quick-commerce platform handling millions of daily orders.
    • As a business spanning logistics, e-commerce, and FinTech, our environment is highly regulated, in this role you will navigate the complexities of global compliance frameworks while ensuring rapid, effective incident mitigation.
    • You will operate at the intersection of a hands-on technical practitioner and a strategic leader, making high-consequence decisions during times of ambiguity.
    • You will build systems, develop custom tooling, and architect automated workflows to relentlessly eliminate manual toil and scale our response capabilities, ultimately setting the standard for engineering excellence and fostering a security mindset across the organization.
    • Incident Commander: Serve as the single accountable leader during active responses for high-severity incidents, directing investigative focus from detection through recovery while maintaining a calm and decisive demeanor under pressure.
    • You will ensure our response strategies and forensic evidence gathering align with strict reporting requirements for GDPR, PCI-DSS, NIS2, DORA, MAS TRM, and other regional mandates.
    • Post-Incident Reviews & Remediation: Lead blameless post-incident reviews to ensure continuous improvement, durable engineering solutions, and systemic resilience.
    • Stakeholder Communication: Serve as the primary interface to stakeholders during critical security incidents, translating complex technical realities into clear risk, impact, and decision frameworks.
    • Engineering-Led Response & Automation: Design and develop in-house solutions, automated workflows, and scalable systems to eliminate repetitive processes, reduce triage time, and continuously improve the overall quality and efficiency of our security incident response operations.
    • Mentorship & Leadership: Act as a hands-on technical leader and role model, actively mentoring teams and individuals within your domain to raise the overall technical bar and share your experience.
    • Metrics & Strategic Visibility: Have a Data-Driven Strategic mindset to define, track, and improve core operational metrics (MTTD, MTTR) to identify systemic gaps and propose strategic, long-term security investments.
    • Organizational Readiness & Tabletop Exercises: Proactively design and facilitate complex, realistic tabletop simulations and purple team engagements to stress-test our playbooks, uncover detection blind spots, and train the wider security and engineering organizations.
    • On-Call: Participate in a predictable on-call rotation as an Incident Responder, leading the charge on high-severity, out-of-hours escalations.

    This text has been machine translated. Show original

    Our expectations of you

    Qualifications

    • Deep Security Incident Response Expertise: Mastery of the full incident lifecycle and hands-on playbook creation for complex, high-availability hybrid-cloud environments, distributed microservices, and platforms processing vast amounts of PII and payment data.
    • Security Tooling Mastery: Operational expertise with SIEM, EDR, Cloud Security platforms, SOAR, and WAF/DDoS protection solutions.
    • Software Engineering & Tooling (Builder Mindset): Advanced proficiency in writing production-quality code (e.g., Python, Go, Rust) to build scalable in-house solutions.
    • Source Control & CI/CD: Familiarity with Git/GitHub usage, CI/CD systems, and modern SecOps workflows.
    • Strategic Leadership: An exceptional communicator with the ability to influence cross-functional stakeholders and simplify complex systems across domains without requiring formal authority.

    Experience

    • 7+ years of broad cybersecurity experience with a deep understanding of core security fundamentals, coupled with 5+ years of dedicated experience in a SOC or CSIRT environment.
    • Incident Commander Experience: Proven track record acting as a Security Incident Commander, confidently managing incident timelines, decisions, and cross-functional communications during complex security events.
    • Cloud-Native Security: Hands-on experience securing and responding to incidents across public cloud platforms (AWS, GCP) and cloud-native technologies like Kubernetes, Docker, and Infrastructure-as-Code (e.g., Terraform).

    This text has been machine translated. Show original

    What we offer

    • Make the most of our hybrid working model and join the team for face-to-face connection and collaboration in our beautiful Berlin campus 2 days a week.
    • We offer 27 days holiday.
    • We will support you in developing yourself and your career growth opportunities: €1,000 educational budget, language courses, parental support, access to the Udemy Business platform to explore a variety of online courses.
    • Get moving and release those wonderful, mind-boosting endorphins: Health Checkups, Mindfulness and Gym & Bicycle Subsidy.
    • The power of getting together over some food is unrivalled. Here are a few ways to help you do that. All the yum: Digital Meal Vouchers, Food Vouchers, Corporate Discounts. Courses and access to Internal Housing Hub.

    This text has been machine translated. Show original

    Benefits

    Food & Drink

    Work-Life-Integration

    Health, Fitness & Fun

    Topics that you deal with on the job

    Job Locations

    • Location Berlin

      Germany

    This is your employer

    Delivery Hero SE

    Delivery Hero SE

    What started as an ambitious idea is now the leading local delivery company. Delivery Hero is present in around 50 countries across four continents and is on a mission to deliver anything, straight to customers’ doors.

    Description

  • Founding year
    2011
  • Language
    English
  • Company Type
    Established Company
  • Working Model
    Hybrid, Onsite
  • Industry
    Trade
  • Dev Reviews

    by devworkplaces.com

    Total

    (1 Review)
    3.2
    • Career Growth

      3.2
    • Culture

      3.2
    • Engineering

      2.7
    • Workingconditions

      3.8
    Show All Dev Reviews
    Logo Delivery Hero SE

    Staff Security Engineer

    Location
    Berlin
    Working Model
    Hybrid, Onsite
    Diversity
    Open for all genders
    English Only
    English only required

    More Jobs