(Senior) Software Engineer - Network Security

Our mission is to lead the transformation to a company-wide platform approach by developing and maintaining shared infrastructure and services as strategic assets. We enable scalable, efficient product development and foster innovation across the organization, empowering teams to deliver value faster and more effectively. We provide the technical means to develop entirely new product classes.

Our team of highly motivated software engineers focused on cutting-edge, security-focused technologies and a DevSecOps platform that supports the entire lifecycle of our products. We deliver measurable business impact by enabling faster time-to-market, reducing development costs, and improving product quality through scalable and reusable services & components.

To enable the product teams, we're building an operating system based on NixOS that is image-based, immutable, and puts a heavy emphasis on security and reliability. We leverage modern security features like dm-verity, Post Quantum Cryptography (PQC), systemd sandboxing, Secure Boot, Measured Boot via TPM2. We consider all aspects of the operating system starting from booting, over bootstrapping trust in dynamic environments to providing secure networking.

Our Tech Stack

• NixOS and thus Linux as the basis for our OS
• Rust for all components we develop
• Nix as our meta buildsystem
• NixOS VM test framework as the basis for all our integration tests
• GitLab as the control plane for our development

Your tasks

• Design, develop, and integrate components for establishing trust (e.g. via SPIFFE) and securing network connections (e.g. mTLS, IPSec, Wireguard) in dynamic environments
• Leverage existing Open Source software to implement state of the art security features
• Contribute fixes and improvements upstream in Open Source projects (e.g. Nixpkgs, Linux Kernel, systemd)
• Write automated tests (unit, integration, end-to-end) for each feature we ship to ensure consistent quality
• Continually improve our CI process, integrating metrics and observability, with a keen eye for secure development processes
• Support internal departments/teams in using our OS to build products on top of it

Do you have experience in VPN?, * University degree in computer science or a related field. Alternatively, you have roughly equivalent experience to a university degree

• Motivation to work on the leading edge of network security on the OS level
• Hands-on experience with networking concepts and protocols: VPN, firewalls, TCP/IP, Zero Trust, mTLS
• Good understanding of modern cryptography and it's role in network security
• Hands-on experience and understanding of modern Linux features
• Enjoy continually learning about emerging software development practices like fuzzing, property-based testing, or reproducible builds
• Open Source enthusiast that already enjoys working upstream or is motivated to learn how to
• Proficient in English (German is an optional bonus)