DevSecOps (m/w/d)

DEVITY develops and operates an application for an efficient configuration and installation of IoT devices such as sensors, industrial computers and machines to simplify the access to secure operation of IoT infrastructures for industrial companies across Europe. Fundamental to our solution are unique identities that are assigned to each device produced. We ensure that these identities are transferred throughout the supply chain and used for trustworthy mass enrollments.

Our team's goal is to securely connect 1 million devices to data platforms within the next ten years. We are building the infrastructure for a secure IoT supply chain to massively scale trusted device installations.

In doing so, we are taking on a complex problem. But that's exactly what we enjoy doing. We go where no one else dares to go and preserve our customers from the consequences of future cyberattacks. Not only does that create tremendous value, but it also requires exceptional people like you. Over the past few quarters, we have focused on developing the first version of our application with pilot partners. In this process, we were able to prove technological feasibility, the economic value and convince more and more companies of our concept. Now we want to lay the foundation for scalable deployment.

Tasks

This is where you come in! As a DevSecOps, you'll take a key role in operating our infrastructure for managing device identities and configurations. You will take ownership of IT security requirements and scalable deployment of our services. In doing so, you'll work closely with other software developers, business developers and computer engineers. You unfold your talent by contributing to the following areas:

• You develop, test and optimize our CI/CD processes and implement new security/monitoring tools.
• You deploy and run applications with Kubernetes on our cluster.
• You implement and manage internal and external key management/ PKI and their interfaces.
• You improve deployment and configuration tasks for the secure operation of our services in external on-premises and cloud infrastructures for our customers.
• You evaluate specifications from organizations such as BSI, standards such as ISO 27001 and IEC 62443, and methodologies such as OWASP.
• You support the development team in programmatic implementation.
• You perform risk analyses and penetration tests (optional).

Your tech stack at DEVITY:

• Docker/ Kubernetes
• Linux/ Gitlab (CI/CD)
• PKI/ Hashicorp

Requirements

Who are you:

• You ideally have a master's degree in computer science (or similar).
• You have hands-on experience in the complete software development process of scalable services (testing, refactoring, CI/CD, version control, monitoring).
• You are able to write well-structured and tested code in Kotlin and are proficient in some of the following technologies: Reactive Spring, Kotlin, Angular, Kubernetes, Docker, GitLab, PKI, mTLS, Keycloak, Hashicorp Vault, EST, OCSP, Azure, aws, Terraform, Ansible.
• You have a passion for IT security/ software security and want to expand your professional expertise.
• You are ideally aware of security guidelines like OWASP and know what is behind ISO 27001 and IEC 62443.
• You have already administered your own or third-party systems (Linux) and have a solid understanding of distributed systems.
• You are an experienced Linux user.

Benefits

You benefit from enormous creative freedom, a modern combination of presence and virtual office as well as a motivating and appreciative corporate culture in a stable future industry. DEVITY is an up-and-coming spin-off of the University of Paderborn with an innovative IT security solution for the industry. The core team has been working together successfully for three years and has many years of professional experience in software development and IT security. We are a team of international talents - openness, courage and enthusiasm are important to us. Here are more advantages to work at DEVITY:

• An appropriate compensation, a long-term contract, and the opportunity for employee stock option program.
• A lively skills development culture with monthly brown bag meetings, external coaching as well as participation in community events, hackathons and conferences.
• Room for your creativity, own ideas and responsibility - a steep learning curve!
• Opportunity to become a team leader and/ or start a PhD program.
• An amicable working atmosphere with flat hierarchies, informal team events and joint lunches.

Do you have strengths that we have not considered in the job description? No problem! At DEVITY, we define your responsibilities, goals, and tasks together with you so that your motivation matches our current and future goals.

As an equal-opportunity employer, DEVITY is committed to creating an inclusive workplace. The company welcomes applications from people of diverse backgrounds, including age, citizenship, ethnic and racial origin, gender, disability, marital status, religion and belief, and sexual orientation.

Your contact person is Christoph Milder. Just send him an email with your resume. We look forward to getting to know you!