Site Reliability Engineer and Security Lead w|m|d - (Germany - Hybrid Work Model 80-100%)

Company Description

Welcome to SMG Swiss Marketplace Group AG

We are a pioneering network of online marketplaces and a leading European digital company that simplifies people's lives with forward-looking products.

Job Description

tutti.ch and anibis.ch have been the biggest classifieds platforms for many years. At the end of 2021, they joined forces together with ricardo.ch and other platforms to create the Swiss Marketplace Group (SMG), one of the largest digital companies in Switzerland. Our headquarter is in Zürich, but we also have offices in Zug, Flamatt, Belgrade, Valbonne and Berlin. For our Platform Team, we are looking for a passionate engineer located in Berlin/Germany for the position of SRE with a focus on Security.

As part of the General Marketplaces Platform Team, you will be responsible for the Tutti.ch and Anibis.ch infrastructure. Your daily focus will be to ensure that our cloud infrastructure is safe and scalable. You will also collaborate with platform engineers of Ricardo and contribute to the services shared by all products. Additionally, you will be Security Lead for the General Marketplaces and work closely with our Security and Anti Fraud central team.

As SRE: 

• Improve, secure and fix issues on our Kubernetes cluster
• Maintain our internal tools written in Python and Go
• Use the command line and automation tools (Terraform) to solve daily problems
• Help developers to maintain and optimize our app hosted in the Cloud
• Identify bottlenecks and improve the performance of our systems.
• Help in replacing legacy applications with cloud-native solutions
• Optimize our Cloud usage, take care of stability, performance and costs

As Security Lead: 

• Work on security requirements, features and fixes with Product, Engineering and Customer Service
• Help improve DevSecOps and Cloud Security practices
• Respond to the Cyberattacks on our platform, together with Security Team
• Take care of our bug bounty programs on Bugcrowd and penetration tests
• Plan, organized and track pen tests, bug-bounty, analysis and security issues
• Educate Engineering on cybersecurity through trainings and demos

Qualifications

What we are looking for: 

• Experience in operating web platforms at the Swiss scale (millions of users) on top of cloud platforms
• 3 or more years of professional experience as SRE and/or Developer
• Strong working knowledge of Linux (we use Debian)
• A love for automating things, preferably using Terraform
• Broad knowledge of cloud platforms, preferably AWS or GCP
• Good knowledge of most common security threats and ways of mitigating them
• Good knowledge of Kubernetes on production systems
• Go or Python development experience
• Robust Knowledge of basic network protocols like HTTP, TCP/IP
• A curious person who’s interested in continuously keeping themselves up to date on security matters
• You should be able to communicate with developers about security issues on the same level

You should be able to communicate with developers about security issues on the same level