Who we are looking for

As DevSecOps Engineer (f/m/d), you will play a key role in securing our systems and ensuring compliance with industry standards and regulations. You are passionate about DevOps & Cybersecurity, keep an eye on the latest Cybersecurity threats, trends and best practices, and are eager to collaborate with cross-functional teams to strengthen our security posture: 
 
Main tasks:

• Strengthen and secure our infrastructure and DevOps practices.
• Conduct regular security assessments, penetration testing, and audits to ensure the resilience of our software.
• Monitor systems and networks for suspicious activity and potential vulnerabilities.
• Investigate and respond to security incidents, including breaches and malware outbreaks.
• Manage endpoint protection, firewalls, and intrusion detection systems.
• Take responsibility for the security of our Java/Spring-based systems by identifying vulnerabilities and flaws.
• Collaborate with development teams to enable secure configurations and deployments.
• Help ensure compliance with key regulations and standards such as GDPR, ISO 27001, and DORA.

Your skills

Must have

• Several years of proven experience as a DevSecOps Engineer (w/m/d) or in a similar cybersecurity role
• Strong understanding of security tools and technologies (e.g., PenTesting, SIEM, IDS/IPS, firewalls)
• Familiarity with network and application security principles
• Hands-on experience with incident response and security analysis
• Proficiency in scripting and automation (e.g., Python, Bash)
• Solid knowledge of Java development and deployment processes
• A proactive mindset and hands-on approach 

Nice to have 

• Experience working in regulated environments (e.g. finance, healthcare)
• Relevant certifications such as CISSP, CISM, CEH, or CompTIA Security+

What we offer

• A challenging and varied job in a fast-growing FinTech company in the heart of Hamburg.
• Cross-functional collaboration in exciting, interdisciplinary projects complement your day-to-day business.
• Regular, structured feedback meetings, individual training opportunities and an annual development budget, which you can use independently. 
• Flexible working hours and a hybrid work model to combine private and professional life in the best possible way. You need more flexibility for your family and/or hobbies? We will find a suitable solution!
• An attractive salary based on your experience, 30 days annual leave, a mobility allowance (e.g. Jobticket) and Hamburg's best coffee.

About us

We are cflox, an international payment institute, reimagining working capital, to optimize the financing in the supply chain. Founded in 2013, we are headquartered in Hamburg, with additional offices in Milan, Madrid and London. As an internationally certified payment institution, cflox combines payments, financing, and working capital to develop unique solutions for our clients. cflox pay is the payment account with a payment term to provide the simplest solution for working capital finance with direct effects for large international corporations from various industries.