You advise agile software development teams in the area of security. This includes the prevention, detection, and remediation of vulnerabilities.
You identify risks in applications, assess them, and work with the teams to find suitable countermeasures.
You conduct code reviews, threat modeling, and security tests.
You audit our projects and support our teams during external audits.
You actively contribute to monitoring and continuously improving the security standards of our applications and processes.
You administer and further develop our security tool stack.

Solid knowledge of agile software development and experience with Java, JavaScript, and TypeScript.
Familiarity with modern architectural concepts such as microservices, event-driven systems, web services, and cloud-native solutions.
Practical experience in application security, especially in DevSecOps, SAST, DAST, and secure coding best practices.
Ability to identify security risks and develop appropriate measures.
Experience with security standards such as NIST, ISO27001, BSI, NIS2 and their application in projects.
Knowledge of tools like OWASP ZAP, SonarQube, Burp Suite or similar.
Professional English skills for collaboration in international teams, German skills are a plus.
A valid working permission for the EU.

Professional & Personal Growth: Develop yourself both professionally and personally through training programs, free language courses, competence centers and an active tech community.
Flexible Work-Life Balance: Benefit from hybrid work, workation, flexible hours, parental support and sabbaticals.
Embrace Diversity & Sustainability: Engage in our Sustainability Hub, diverse communities, Diversity Taskforce and after-work activities.
Comprehensive Benefits: Enjoy public transport tickets, job bikes, health offers, supplementary insurances, a pension plan and various discounts.

Application Security Engineer

Key skills