Senior Software Engineer, Platform (Security Focused)
casavi GmbH
2 days ago
Role details
Contract type
Permanent contract Employment type
Full-time (> 32 hours) Working hours
Regular working hours Languages
English Experience level
SeniorJob location
Remote
Tech stack
Artificial Intelligence
Amazon Web Services (AWS)
Cloud Engineering
Computer Networks
Identity and Access Management
Python
MongoDB
MySQL
Node.js
Systems Development Life Cycle
Prometheus
Software Engineering
Tripwire
TypeScript
Datadog
Policy as Code
GitHub Copilot
React
Flask
Grafana
Software Security
FastAPI
Gitlab-ci
Kubernetes
Infrastructure Automation Frameworks
CIS Benchmarks
NestJS
REST
Terraform
Vulnerability Analysis
Job description
- You are part of our dedicated Platform team, building and operating the foundation that every product team at casavi builds on.
- With the team, you own and evolve our platform: from core product features every team builds on, like Auth, I18n, Feature Flags, and so on, to infrastructure, with our AWS setup, Kubernetes clusters, GitOps workflows, and Infrastructure-as-Code (IaC), working with Terraform, Helm, ArgoCD, and GitLab CI/CD, while monitoring system health with Prometheus & Grafana.
- Your main personal focus is Application Security: making sure our product stays robust and reliable in the face of modern growing security threats, via comprehensive automated quality gates, regular security testing being done as a practice, strong security standards embedded in the SDLC of our teams, and appropriate instrumentation of the AI Coding Assistant tooling our team is using.
- You also bake security into our infrastructure, implementing automated vulnerability scanning, secure secrets management, and Policy-as-Code guardrails so that shipping securely is always the path of least resistance.
- You harden our cloud environments, ensuring robust IAM configurations, network policies, and foundational security baselines are continuously enforced.
- You collaborate closely with fellow engineers across the Platform team and with product teams, bringing your ideas to make our platform more reliable, scalable, and easy to build on.
Requirements
- You have several years of experience working with TypeScript (our tech stack includes Node.js, REST API, MySQL, MongoDB, Nest.js, React) and, ideally, also Python (our Python stack: Flask, FastAPI, MongoDB).
- You care about Application Security deeply and have a proven track record of establishing secure SDLC in software engineering teams.
- You have proven hands-on experience running production Kubernetes clusters and managing cloud infrastructure. You know AWS, Terraform, Helm, GitOps (ideally ArgoCD), and CI/CD pipelines (ideally GitLab CI).
- You understand cloud-native security principles and have experience securing pipelines, container images, and infrastructure (e.g., using AWS Secrets Manager, Vault, Trivy, Snyk, or similar tooling).
- You are a power user of AI-based tools (GitHub Copilot, Claude Code, Codex, etc.), and you know how to use them to build lightweight internal tooling and automation safely and responsibly.
- You'd rather script and orchestrate an agentic workflow than stand up a heavyweight developer portal.
- You have excellent analytical & problem-solving skills and enjoy owning problems end-to-end, from root cause to fix.
- Ideally, you have strong experience with observability tooling (Prometheus/Grafana) and monitoring production systems.
- You are a strong communicator, and your English is at a very good level (>C1).
- You live in Germany.
Benefits & conditions
- An open-minded and friendly team working with agile methods - as proven by our Kununu Score of 4,6
- Flexible & hybrid working
- 40 days of workation per year in the EU
- Company events & sports offers
- Corporate benefits
- Company pension scheme
- Childcare allowance
- EGYM Wellpass membership discount
- Diverse development opportunities and a continuing education budget