Job
- Level
- Experienced
- Job Field
- IT, DevOps, Security
- Employment Type
- Full Time
- Contract Type
- Permanent employment
- Salary
- 80.000 to 110.000€ Gross/Year
- Location
- Augsburg, Berlin
- Working Model
- Full Remote, Hybrid, Onsite
Job Summary
In this role, you will develop secure CI/CD pipelines and enhance cloud infrastructure using Terraform, while implementing container security and vulnerability management, ensuring compliance with GDPR requirements.
Job Technologies
Your role in the team
- Building, operating, and developing our cloud infrastructure with Infrastructure as Code, particularly with Terraform.
- Design and operation of secure CI/CD pipelines, including automated security tests such as SAST, DAST, SCA, and Secret Scanning.
- Hardening of the platform through container security, network segmentation, Zero Trust principles, and professional secrets management.
- Responsibility for Vulnerability Management, including identification, prioritization, and patching of vulnerabilities.
- Further development of monitoring, logging, and alerting, including observability and SIEM integration.
- Participation in incident response and on-call processes as well as promoting a resilient post-mortem culture.
- Control and further development of Identity and Access Management according to the Least Privilege principle.
- Consulting and enablement of development teams in secure software development and DevSecOps principles.
- Support with GDPR, data protection, and audit requirements, especially in the context of passenger data and regulatory standards.
- Continuous improvement of recovery and backup strategies.
This text has been machine translated. Show original
Our expectations of you
Education
- Completed degree in Computer Science or a comparable qualification.
Qualifications
- Excellent knowledge of container technologies such as Docker and Kubernetes.
- Very good knowledge of Infrastructure as Code, for example with Terraform or Ansible.
- Solid knowledge of CI/CD tools such as GitLab CI, GitHub Actions, or ArgoCD.
- Familiarity with KRITIS requirements or the public transport sector.
- Knowledge of eBPF or Service Mesh technologies such as Istio or Linkerd.
- Relevant certifications, such as CKS, CISSP, OSCP, or CompTIA Security+.
Experience
- At least 4 years of professional experience as a DevOps, SRE, or Platform Engineer.
- Experience with at least one major cloud provider such as AWS, Azure, or GCP.
- Proven experience in the security field, such as in Secure SDLC, Threat Modeling, OWASP Top 10, or Secrets Management.
- Experience with monitoring and logging stacks such as Prometheus, Grafana, ELK, or Loki.
- Experience with GDPR, ISO 27001, or TISAX.
- Experience with Policy-as-Code, such as OPA or Kyverno.
This text has been machine translated. Show original
What we offer
- Modern office location in Neusäß (Augsburg) / Berlin as well as remote work.
- 30 days of annual leave.
- Flexible working hours from Monday to Friday.
- A suitable mobility solution, e.g., Germany Ticket, etc.
- Team events with all-hands weeks and joint team-building activities.
- Opportunities for further development as well as regular training programs.
- €000 - €110,000 per year.
This text has been machine translated. Show original
Benefits
Work-Life-Integration
Topics that you deal with on the job
Job Locations
This is your employer
MoPla MyWay GmbH
MoPla MyWay GmbH provides a digital platform for flexible, bookable mobility services aimed at users who want to organize their trips easily via an app or web. The company describes itself as a local partner for fair and transparent mobility mediation, offering solutions for on-demand and needs-based transport services.
Description
- Company Type
- Established Company
- Working Model
- Full Remote, Hybrid, Onsite
- Industry
- Internet, IT, Telecommunication
DevOps Engineer - Security Focus
- Salary
- 80.000 to 110.000€ Gross/Year
- Location
- Augsburg, Berlin
- Working Model
- Full Remote, Hybrid, Onsite
- Diversity
- Open for all genders
