Expert DevSecOps Engineer (f/m/d)

Orbem is an impact-driven deep-tech startup from Munich, Germany. We develop fast, accurate, and accessible imaging solutions that provide access to otherwise unattainable sources of knowledge.

We seek to make a difference – and develop solutions to sustainably feed the world, accelerate the transition to a green economy, and transform disease detection.

Join us on our mission to unleash AI-powered imaging for everything and everyone.

Expert DevSecOps Engineer (f/m/d)

Starting date: as soon as possible
Compensation package: €90,000 - €100,000 in yearly salary, €40,000 - €80,000 in equity. Additionally, up to €5,000 p.a. in company benefits.
Work model: Full time, hybrid in Munich

Your role

As an Expert DevSecOps Engineer, you will be a key contributor to ensuring our technology is secure, efficient, and seamlessly integrated into the development process. Your expertise will help embed security within the DevOps and software development lifecycle, keeping our systems, infrastructure, and applications both secure and scalable.

You will take ownership of Orbem’s security platform, working closely with teams to implement best practices.

In this role, you will collaborate on preparing and guiding ISO certification audits, strengthening our compliance efforts and operational standards. Your contributions will help make security a natural and integral part of our development process, enabling teams to innovate with confidence while maintaining strong protection for our technology and data.

Your day-to-day

On a typical day, you will:

• Develop and maintain technical security policies and procedures across infrastructure, applications, and data.

• Design and implement security architectures and frameworks ensuring alignment with business goals.

• Work closely with engineering teams to integrate security into the software development lifecycle (SDLC).

• Act as a security advisor to non-technical stakeholders, explaining complex security concepts in a clear and actionable manner.

• Collaborate with security training and awareness sessions for employees across the organization.

• Implement security measures to harden systems, including patch management, vulnerability scanning, and secure configuration.

• Proactively identify and mitigate risks across cloud, on-premise, and hybrid environments.

• Automate security tasks wherever possible using tools and frameworks.

• Set up and manage security monitoring tools to detect threats and anomalies.

• Evaluate, deploy, and manage security tools such as SIEM, IDS/IPS, vulnerability management platforms, and CI/CD security integrations.

• Conduct vulnerability assessments and penetration testing.

Requirements

Your experiences and skills

Fit to our values

• We own every challenge: we enjoy complexity and thrive under uncertainty.

• We strive for better: we seize any opportunity for growth and challenge the status quo. We are constantly learning and improving.

• We imagine new frontiers: we think beyond “doable” and “reasonable”. We design a sustainable and healthy future together.

Coding and tool knowledge

• Python or GoLang for scripting and automation.

• Linux security topics (disk encryption, secure boot, and kernel module integrity validation).

• GCP Cloud architecture and security, preferably Cloud Security Engineer Certification.

• Kubernetes workload security and node hardening, preferably you have CKS certification.

• You have implemented security gates in CI/CD pipelines following DevSecOps best practices.

• Enforce Infrastructure-as-Code (IaC) principles for secure systems using Terraform.

• Network security protocols such as TLS/SSL, IPSec, VPN and firewall.

• Intrusion detection systems (IDS) and intrusion prevention systems (IPS).

What makes you stand out from other candidates

Technical expertise

• You have maintained security infrastructure in a hybrid platform-oriented ecosystem for proactive threat detection and security posture monitoring.

• You collaborate with external auditors and stakeholders to ensure successful audits and certifications.

• You lead the efforts to achieve and maintain compliance with ISO 27001, SOC 2, and other relevant standards.

• You implement MFA, OIDC, SSO, and secure role-based access controls (RBAC).

• You work closely with cloud security posture management (CSPM) tools to provide a holistic view of organizations' security.

• You implement dependency and artifact scanning tools. 

Behavioral competencies

• You are a holistic thinker, structuring new demands into defined DevOps approaches.

• You are a team player, prosocially and intrinsically connecting team members.

• You turn thoughts into action, implementing demands efficiently but with a focus on detail.

Innovating the status quo

• You enjoy bringing together perspectives from all team members and departments.

• You have a practical approach to product building and roadmapping.

• You iterate fast, ensuring up-to-date knowledge integration.

What we Offer

International Environment: Join a team with 40+ nationalities across 5 continents, all driven by a shared purpose: shedding light on the world’s toughest challenges.

Attractive Compensation Package:

• Stock Options: Share in Orbem’s success.

• Visa & Relocation Support: Seamless support for your move to Germany.

• Learning & Development: €1,750 annual budget for personal growth.

• Fitness Membership: Access to Urban Sports Club or Wellpass.

• Childcare Reimbursement: Support for Kita/Kindergarten fees.

• Deutschland Ticket: Full coverage of public transportation.

Work-Life Integration:

• Flexible Hours & Home Office: Work when and where it suits you.

• 30 Days Paid Leave: Plenty of time to recharge.

• Personal Leave: Flexibility for life’s important moments.

• Work from Anywhere: Experience new cultures and environments for up to 60 days per year.

Make a Difference: Join an ambitious, fast-growing team working on breakthrough technology. In our scale-up environment, you’ll have the freedom to lead your projects and make an impact. We provide a platform for you to explore, innovate, and define your vision for the future. At Orbem, we’re committed to helping you discover your strengths, and while we aim to teach you, we also want to learn from you. 

Your team

As an Expert DevSecOps Engineer you become part of our diverse and international Infrastructure team. Learn more about the team members, their work, and challenges here: www.orbem.ai/company

At Orbem, we're committed to building a smart, diverse team, and we recognize that self-doubt can prevent talented individuals from applying. If you feel you don't meet every requirement, we'd love to hear from you anyway!