Software Security Specialist (m/f/d)

You conduct thorough code reviews and leverage tools like Sonarqube and JFrog XRay to identify and help security vulnerabilities across the product teams. You continuously assess and prioritize potential threats, perform regular system tests for breaches, and maintain an up-to-date incident response plan. You define and drive a strategic security roadmap, including clear goals and key metrics to measure the effectiveness of security initiatives. You promote security awareness across the organization and ensure that secure practices are embedded throughout the DevOp pipeline. You ensure consistent use of advanced data protection methods such as encryption and tokenization, and stay current on trends through industry engagement.

You have completed a degree in Computer Science, Software Security, or possess a comparable qualification together with relevant professional experience. You have proven experience with SOC 2 Type II and familiarity with related standards (SSAE 18 / ISAE 3405) and can implement and maintain controls for compliance in a SaaS environment. You have hands‐on expertise cloud‐native, highly scalable Kubernetes environments (e.g., Google Cloud / GKE) and can harden infrastructure and DevOps/CI pipelines for production SaaS. It is an advantage, if you have strong API and interface security skills (REST APIs, JSON, OpenAPI/Swagger) and can design and review authentication, authorization, and monitoring for cloud-based SaaS APIs. In addition to the German language, you are sufficient in English, written and spoken.

We believe that work can be fun and fit for life. And therefore, in addition to our colourful and talented team, the best customers and the most diverse projects and products, there are the following: Onboarding to arrive. Onboarding plan ahead so you know what's coming to you. Onboardingtag to get to know us better. And the onboarding phase in the field; so designed that you can arrive, understand and start as best as possible. Tasks to continue. Things move from day 1. That means giving responsibility and getting. Ideas can not only express, but be allowed to implement. And a personal development concept that fits individually - whether direction of leadership or expert. Working time and place? Flexible. Our sliding time model offers the flexibility that fits your work and your life. Of course, this also includes the possibility of working out of the home office. Together and culture? At eye level. Open feedback. Regular updates through our management. Solution-oriented An-A-Strang-Ziehen. And of course also get-together events like caring, the EPG Christmas party or our LAN party - to celebrate us and our successes. Now. For later. The occupational pension scheme (bAV) offers a good opportunity to provide care for the age. For this, we have a strong employer grant in today to make your morning as relaxed as possible. Move. To move long. Everyone has the opportunity to lease a JobRad. Or to train in our sports room. Better what in the team? Then the company race or an afternoon in the climbing forest offers itself. Industry of the present. And future. The world of logistics not only accompanies our everyday lives. It is also essential for a sustainable, liveable future. What does that mean? Much we can move together. The opportunity to make things better. And a safe workplace, also relevant for the future. And of course we have fruit basket and drinks. .