We are looking for a DevSecOps Engineer / Platform Security Engineer to join a cloud-native platform team focused on securing, automating, and industrializing the DevOps toolchain used by development teams.

- Design and maintain secure, scalable, and compliant DevOps architectures. - Build and manage CI/CD pipelines integrating security, compliance, and quality controls. - Administer and secure Kubernetes platforms, particularly on GCP/GKE. - Automate infrastructure provisioning using Terraform, OpenTofu, or Ansible. - Integrate self-service security tools for developers. - Automate the generation and management of SBOMs/KBOMs. - Manage vulnerability remediation, security hardening, and remediation tracking. - Maintain observability platforms using Prometheus, Grafana, Loki, and OpenTelemetry. - Operate and secure GitLab at scale. - Produce and maintain technical documentation and operational procedures.

Required Skills: - Advanced Kubernetes administration, container security, and network security. - Secure CI/CD practices with GitLab, Argo CD, and FluxCD. - Infrastructure as Code (IaC): Terraform or OpenTofu. GCP/GKE expertise, including IAM, Workload Identity, and VPC. - Experience with Harbor, Trivy, Dependency-Track, and DefectDojo. - Knowledge of SBOM, CycloneDX, and software supply chain security. - Observability stack: Prometheus, Grafana, Loki, and OpenTelemetry. - Cryptography, PKI, access management, and network security. - Experience in audits, critical environments, or regulated industries. Languages: - Fluent English required (minimum B2 level). - German is a plus.

Dely rate: On the profil Location: Berlin - 4 days per week working remotely Start date: ASAP