Delivery Hero SE

Delivery Hero SE

Berlin, DE

Security Engineer – (Application Security/DevSecOps) (f/m/d)

€60,000-€75,000 / YEAR

Want to be a Hero? – Join one of the leading global online food ordering and delivery platforms!

We are looking for a Security Engineer – (Application Security/DevSecOps) (f/m/d) to join our team and reinvent on-demand delivery with us. If you’re a creative problem solver who is eager to deliver solutions and hungry for a new adventure, an international workplace is waiting for you in the heart of Berlin!

Your Mission:

  • The DevSecOps Engineer will support the integration of the security solutions in other SaaS, PaaS, IaaS and on-premise components to foster a high-security posture for our hybrid infrastructure.

  • Develop and integrate new modules in the security management system.

  • This function is moreover responsible for the monitoring and the implementation of automation for the security solutions as well as the definition of measures based on these activities.

  • Champion security with development teams to make their code more secure, primarily through manual code/architecture review.

  • Perform security assessments on a wide range of developed applications services and networks.

  • Conduct security-centric code reviews of new and legacy applications and services to identify security vulnerabilities.

  • Collaborate with the responsible engineers to resolve identified security weaknesses.

  • Create, implement and maintain security automation tools as required.

  • Develop secure coding resources for engineers ranging from wiki articles to master classes covering both standardized topics like OWASP Top 10 to custom tailored content to address common issues.

  • Provide security event analysis and escalation for identified threats.

Your Heroic Skills:

Must Haves:

  • Full DevSecOps practice integrating Github/Gitlab based version control, automated builds, and release management CI/CD.

  • Working knowledge in Security Management Systems (e.g. ServiceNow, Archer)

  • Proficiency and break code in languages including Python, Java, C/C++ and PHP.

  • Experience in security tooling & technologies (e.g. IDS, AWS or GCP security configurations/setup, Linux security configurations/setups, etc.)

  • Familiarity with one or more cloud vendor services and management tools (AWS, GCP) and DevSecOps processes i.e. code pipeline.

  • +2 years experience in agile development.

  • +2 years of experience PostgrestSQL, MongoDb or similar.

  • +2 years of experience of deployment and management of public cloud security services (AWS, GCP) like VPC Service Controls, Shielded VMs, CAs, CMKs, Security Hub, Cloudwatch, Cloudtrail, Secrets Manager and IAM.

  • Experience in security tooling & technologies (e.g. IDS, AWS or GCP security configurations/setup, Linux security configurations/setups, etc.)

  • Designing and implementing system integration patterns in the public cloud (AWS,GCP), network and service security, and CICD pipelines and Infrastructure as Code (IaC) including Cloudformation and Terraform.

  • Working knowledge of common application and network security assessment tools and techniques such as nmap, nessus, burpsuite, etc.

  • Experience with vulnerability management (identifying, tracking, prioritizing, and collaboration with responsible teams to resolve).

  • Extensive experience working with distributed systems, including deep understanding of UDP & TCP protocols.

  • Knowledge of network and web related protocols (e.g., TCP/IP, UDP, IPSEC, HTTP, HTTPS, routing protocols).

  • Security implementation experience (OWASP, SAST, DAST…etc.)

  • Network stack/protocols, SSO, oAUTH2 and DNS.

  • Experience working with both internal and external stakeholders

  • Enjoys working in an accomplishment-oriented, fast-paced environment.

  • Fluency in English (verbal and written).

Nice to Have:

  • AWS or GCP certification is a plus.

  • Experience working with network security and analysis tools such as IDS/IPS, sniffers, WAFs, firewall ACLs is a plus.

  • Working history of performing security assessments in cloud environments is a plus.

  • Experience of working in a federated organization.

  • Certifications like OSCP, OSCE are also a plus.

About Delivery Hero SE

About us: Learn more about our diverse stack and what our teams are working on by visiting our Tech & Product blog and our Tech Talk Youtube channel.   Delivery Hero is building the next generation global on-demand delivery platform. We have grown rapidly from inception in 2011 to become one of the leading global online food ordering and delivery platforms and are now innovating and creating new services such as groceries, pharmacies, and other convenience articles in multiple markets. Our awesome international team already operates in 40+ countries worldwide and we are looking for the most talented people to join us on our mission to ‘always deliver an amazing experience. At Delivery Hero, we believe diversity and representation is key to creating not only an exciting product, but also an amazing customer and employee experience. Fostering this starts with hiring -- therefore we do not discriminate on the basis of race, religion, color, national origin, gender, sexual orientation, age, marital status, or any other aspect that makes you, you.