Expert DevSecOps Engineer (f/m/d)

Orbem is an impact-driven deep-tech startup from Munich, Germany. We develop fast, accurate, and accessible imaging solutions that provide access to otherwise unattainable sources of knowledge.

We seek to make a difference – and develop solutions to sustainably feed the world, accelerate the transition to a green economy, and transform disease detection.

Join us on our mission to unleash AI-powered imaging for everything and everyone.

Starting date: as soon as possible
Compensation package: €90,000 - €100,000 in yearly salary, €40,000 - €80,000 in equity. Additionally, up to €5,000 p.a. in company benefits.
Work model: Full time, hybrid in Munich

As an Expert DevSecOps Engineer, you will be a key contributor to ensuring our technology is secure, efficient, and seamlessly integrated into the development process. Your expertise will help embed security within the DevOps and software development lifecycle, keeping our systems, infrastructure, and applications both secure and scalable.

You will take ownership of Orbem’s security platform, working closely with teams to implement best practices.

In this role, you will collaborate on preparing and guiding ISO certification audits, strengthening our compliance efforts and operational standards. Your contributions will help make security a natural and integral part of our development process, enabling teams to innovate with confidence while maintaining strong protection for our technology and data.

On a typical day, you will:

• Develop and maintain technical security policies and procedures across infrastructure, applications, and data.

• Design and implement security architectures and frameworks ensuring alignment with business goals.

• Work closely with engineering teams to integrate security into the software development lifecycle (SDLC).

• Act as a security advisor to non-technical stakeholders, explaining complex security concepts in a clear and actionable manner.

• Collaborate with security training and awareness sessions for employees across the organization.

• Implement security measures to harden systems, including patch management, vulnerability scanning, and secure configuration.

• Proactively identify and mitigate risks across cloud, on-premise, and hybrid environments.

• Automate security tasks wherever possible using tools and frameworks.

• Set up and manage security monitoring tools to detect threats and anomalies.

• Evaluate, deploy, and manage security tools such as SIEM, IDS/IPS, vulnerability management platforms, and CI/CD security integrations.

• Conduct vulnerability assessments and penetration testing.

Develop and maintain technical security policies and procedures across infrastructure, applications, and data.

Design and implement security architectures and frameworks ensuring alignment with business goals.

Work closely with engineering teams to integrate security into the software development lifecycle (SDLC).

Act as a security advisor to non-technical stakeholders, explaining complex security concepts in a clear and actionable manner.

Collaborate with security training and awareness sessions for employees across the organization.

Implement security measures to harden systems, including patch management, vulnerability scanning, and secure configuration.

Proactively identify and mitigate risks across cloud, on-premise, and hybrid environments.

Automate security tasks wherever possible using tools and frameworks.

Set up and manage security monitoring tools to detect threats and anomalies.

Evaluate, deploy, and manage security tools such as SIEM, IDS/IPS, vulnerability management platforms, and CI/CD security integrations.

Conduct vulnerability assessments and penetration testing.