(Senior) Security Engineer for DevOps and Cloud Platforms

Join our IT Operations Team and become a driving force for security at auxmoney. Together with our Information Security Officer, you'll make sure security is part of everything we do, from software development to platform operations. You will work across departments, shape secure infrastructures, and ensure that our systems and data are protected while empowering teams to move fast with confidence.

What you can expect:

• Embed Security in CI/CD: Automate security testing in GitLab (SAST, DAST, dependency scans) to catch vulnerabilities early and enable developers to move fast with confidence.
• Automate and scale security controls: Implement tools for code analysis, secret management, container security, and IaC scanning, making security checks consistent, reliable, and repeatable.
• Collaborate across teams: Work closely with developers, platform engineers, and IT operations to promote secure coding, configuration, and deployment practices. You'll be an advocate for "security as code" and shared responsibility.
• Monitor and respond effectively: Set up monitoring and alerting for AWS and Azure environments, investigate incidents, and work with teams to address root causes instead of just symptoms.
• Drive compliance and best practices: Help enforce internal security standards and regulatory requirements (GDPR, DORA, ISO 27001) while keeping documentation lean and supporting audits in a pragmatic way.
• Enable data-driven decisions: Expand and refine reporting to translate technical findings into clear insights and recommendations for stakeholders.

• Cloud expertise: You have experience with cloud environments (preferably AWS or Azure) and understand cloud security best practices.
• CI/CD knowledge: You are familiar with GitLab pipelines and automating security testing.
• Tool experience: You have worked with security tools such as Microsoft Entra, Defender, Rapid7 or similar.
• Tech skills: You bring knowledge in containerization (Docker, Kubernetes) and infrastructure-as-code (Terraform, CloudFormation, etc.).
• Team spirit: You have a collaborative, solution-oriented mindset and are eager to learn.
• Language skills: You feel comfortable communicating in English and/or German.
• Compliance know-how: Ideally, you have experience with regulatory frameworks such as GDPR, DORA, or ISO 27001.
• Incident management experience: Preferably, you are familiar with tools like incident.io and the Atlassian Suite (Jira, Confluence).
• Monitoring and scripting: Knowledge of modern monitoring tools and scripting skills (Python, Bash) would be beneficial.

• Flexibility for Your Lifestyle: Enjoy family-friendly working hours and a generous home office policy, allowing you to stay agile and flexible in any situation.
• Ergonomic Work Environment: For your office days, we provide ergonomic workstations that offer you a comfortable and healthy workspace.
• Independent Work: With short decision-making paths, we enable you to work autonomously and actively contribute your ideas - we provide space for you to take on responsibility.
• Grow with Us: Unlock your potential with numerous opportunities for growth and development, along with an annual development budget to help you achieve your professional and personal goals.
• Team Spirit: Team spirit is important to us - we regularly host events and parties where fun is guaranteed.
• Mobility Your Way: Whether you prefer a train ticket or parking - we support your choice of preferred mobility.
• Stay Active: Keep fit with a discounted membership at Fitness First or Urban Sports Club, or use our in-house fitness room to stay active after work and enhance your work-life balance.
• Secure Your Future: Think about your future - we offer subsidies for company pension plans so you can plan long-term with us.
• Tailored Benefits: We consider your personal life situation - whether you're a parent or love to travel, we offer customized benefits to suit your lifestyle.

Your Perspective: You will play a key role in shaping the security of our entire tech stack, from cloud environments to CI/CD pipelines. You will grow your expertise in DevSecOps while collaborating with passionate engineers across the company. This is your opportunity to make a tangible impact on how auxmoney builds secure, reliable, and scalable software.

You are passionate about agile work and would like to create every day differently? Then you are exactly right with us! We are auxmoney - one of the most successful Fintech companies in Germany and the largest credit marketplace in Continental Europe. Private and institutional investors invest directly in pre-approved loans via auxmoney. As a company, we combine the start-up mentality with the security of a successful Grown-Up. Together we work at our locations in Düsseldorf, Budapest, Dublin and Málaga. Thanks to flat hierarchies and a diversity of creative and development opportunities, you can achieve excellent results on your own responsibility and work on exciting projects. You can simplify processes and products and thus actively shape auxmoney as a company in a sustainable manner. Regardless of whether you are an intern or a manager: everyone makes a valuable contribution at auxmoney.