Description
About Us
Join us on our journey if you are looking for
- A young start-up within the BASF group of companies with great growth and scale-out potential
- A d ynamic environment including many interesting challenges - technical and beyond
- Closely collaborate with software engineers and data scientist to support them in the implementation of new solutions
- Grow with the company – we will tailor the role to what you want and let you grow within it . You can shape the future of the company!
- A curious, passionate, and diverse team
Your tasks:
- Security Integration: Implement security measures and practices within CI/CD pipelines to ensure secure code and infrastructure deployment.
- Automation: Design and automate security processes for testing, deployment, and monitoring.
- Monitoring & Incident Response: Continuously monitor applications, systems, and networks for potential vulnerabilities and incidents; respond to and investigate security issues.
- Collaboration: Work with development and operations teams to ensure secure software design and deployment.
- Vulnerability Management: Perform regular security assessments, vulnerability scans, and code reviews to identify and resolve security issues.
- Compliance: Ensure systems and applications comply with relevant security policies and industry regulations.
- Tooling & Configuration: Implement and manage security tools, such as static analysis, dynamic analysis, container security, and vulnerability scanners.
- Cloud Security: Implement security practices for cloud environments (eg, AWS, Azure, GCP), ensuring security of cloud infrastructure and applications.
- Documentation: Create and maintain security policies, standards, and best practices documentation.
Your profile:
- Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or a related field (or equivalent experience).
- Proven experience in DevOps and/or Security Operations, with a strong understanding of both development and security practices.
- Experience with security tools (eg, Snyk, SonarQube, Burp Suite, Nessus, Qualys, etc.).
- Proficiency with scripting languages such as Python, Bash, or PowerShell.
- Experience with CI/CD tools like Jenkins, GitLab CI, or CircleCI.
- Strong knowledge of cloud platforms (AWS, Azure, or Google Cloud) and cloud security practices.
- Familiarity with containerization and orchestration tools such as Docker, Kubernetes, or OpenShift.
- Understanding of network protocols, firewalls, VPNs, and encryption technologies.
- Familiarity with industry security standards and frameworks such as OWASP, NIST, and CIS.
- Excellent problem-solving, communication, and collaboration skills.
- Ability to work in a fast-paced, constantly evolving environment.
Preferred Qualifications:
- Certifications such as CISSP, CISM, CISA, or AWS Certified Security Specialty.
- Experience with Infrastructure as Code (eg, Terraform, CloudFormation).
- Knowledge of application security practices (eg, secure coding, threat modeling).
- Experience in implementing Security Information and Event Management (SIEM) systems.
Why us?
- A great place to grow and advance
- Competitive salaries
- Flexibility – in terms of location and working hours within Germany
- Being part of a newly founded company
- Sponsored Germany Ticket
You can join us either locally in Mannheim, Germany or virtually in Germany . We will make sure our company culture will include you – totally independent of your background and your physical location.
Interested?
Do you want to build something big with us? Then get in touch, all we need is your CV - we look forward to getting to know you!
About us
Data Space Solutions GmbH is committed to developing and providing digital applications that enable circular business models, fostering sustainable economic practices.
We focus on enhancing data sovereignty and interoperability in line with EU regulations, specifically targeting the value chains in the automotive and chemical industries.
By leveraging trusted digital ecosystems like Catena-X, we aim to drive innovation, sustainability, and efficiency within these critical sectors.