Security Engineer (m/f/x)
Berlin, Frankfurt or Remote
Applications have closed
CLARK
Mit CLARK managst du deine Versicherungen online & sparst bis zu 50 % pro Jahr. Starte jetzt und erhalte endlich Überblick über deine Versicherungen.CLARK Group is one of the world's leading insurtechs. As the first unicorn company from Frankfurt, we are on the mission to become Europe's best insurance advisor. We develop technological solutions and mobile apps that enable our customers to manage, compare and optimize their insurance policies online in the most convenient way. The digital user experience is complemented by personal advice from trained experts. In total, CLARK Group includes around 30 brands offering the best possible insurance experience to more than 2 million customers in six European markets.
The advantages of our innovative technology and our customer-focused culture unite us as one group. We are supported by investors such as Allianz X, Portage, White Star Capital, Yabeo and Tencent. Every day, over 700 employees from more than 40 nations in Germany, Austria, Switzerland, the UK, France and the Netherlands shape the digital insurance world of tomorrow. Become a part of this international team and join us on our path to success.
As our Security Engineer you will:
-
Be the to-go expert for security assessments during the product development lifecycle
-
Be the technical expert within the security team
-
Develop, automate or enhance internal security tools and services in different areas, such as
-
CI/CD (Github, Jenkins)
-
Web and Mobile Application Security Testing and triage (DAST, SAST, Container Security…)
-
Cloud Security (Patch management, IaC setup, Security Hub)
-
Incident Detection and Response (Splunk, SOAR, EDR)
-
-
Discover, analyse, prioritise, and orchestrate remediation of technical risks on Clark Group’s products and infrastructure.
Who you are:
-
3 to 5 years of tactical operational experience in information security
-
You consider yourself as a technical element
-
You have hands on experience in at least 2 of the following topics:
-
Vulnerability assessment and management, including
-
Identifying and analysing technical risks and vulnerabilities in applications, products, features
-
Pentest and checks on mobile applications, web applications, new products and features
-
-
Incident response, including
-
Experience with answering alerts, incidents (Level 1 or 2 support)
-
Developing disaster recovery playbooks
-
Implementation of Security Incident Management Workflows and Business Continuity Management process and tests
-
-
Securing infrastructure as code setups including CI/CD deployments with git and docker and infrastructure automation (e.g. Terraform, Ansible)
-
Securing the Development Pipeline (DevSecOps) including CI/CD deployments with git and docker (secret scanning, static analysis, software composition analysis…)
-
Cloud Security or securing cloud infrastructure, ideally AWS and GCP
-
Container Security (Kubernetes, Docker)
-
-
Automation and shifting security left are no brainers for you.
-
Principle Engineer or Architect role are your main considerations for a career path
-
Know-how in programming especially in one of the following languages: Python, Ruby on Rails
-
Fluent English language skills (German is a plus) in speaking and writing
Why CLARK?
- You are part of a leading global insurtech and change the insurance industry
- A multicultural environment with international colleagues from 43+ different backgrounds.
- Hybrid working models and flexible working hours
- 30 days holiday & 2 days impact days
- Extensive range of exclusive discounts for employees
- Training and personal development
- Support for personal voluntary activities
- Free drinks, fresh fruit and tasty snacks
- Cultural initiatives and team events
At CLARK we embrace diversity.
We are creating the ideal work environment for dedicated and talented people, no matter their ethnicity, identity, religion and age - we aim at giving everybody the same chances and opportunities.
Sounds exciting? You have no idea! We’re looking forward to reading your application.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Ansible Application security Automation AWS CI/CD Cloud DAST DevSecOps Docker EDR GCP GitHub Incident response Kubernetes Python Ruby SAST Security assessment SOAR Splunk Terraform Vulnerabilities
Perks/benefits: Career development Flex hours Snacks / Drinks Team events
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Staff Security Engineer jobs
- Open Information Security Specialist jobs
- Open Senior Security Analyst jobs
- Open Security Operations Engineer jobs
- Open Senior Cyber Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Senior Information Security Analyst jobs
- Open Product Security Engineer jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Cybersecurity Analyst jobs
- Open Cyber Security Specialist jobs
- Open Principal Security Engineer jobs
- Open Cybersecurity Consultant jobs
- Open Consultant SOC / CERT H/F jobs
- Open Senior Information Security Engineer jobs
- Open IT Security Analyst jobs
- Open Cybersecurity Specialist jobs
- Open Security Specialist jobs
- Open Chief Information Security Officer jobs
- Open Security Researcher jobs
- Open Senior Penetration Tester jobs
- Open Senior Security Architect jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Senior Cyber Security Specialist jobs
- Open Information System Security Officer (ISSO) jobs
- Open Agile-related jobs
- Open ISO 27001-related jobs
- Open Application security-related jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open Pentesting-related jobs
- Open CISM-related jobs
- Open GCP-related jobs
- Open Vulnerability management-related jobs
- Open Analytics-related jobs
- Open SaaS-related jobs
- Open IAM-related jobs
- Open CISA-related jobs
- Open Threat intelligence-related jobs
- Open Security assessment-related jobs
- Open DevOps-related jobs
- Open Java-related jobs
- Open Kubernetes-related jobs
- Open EDR-related jobs
- Open Malware-related jobs
- Open APIs-related jobs
- Open IDS-related jobs
- Open Security Clearance-related jobs
- Open DevSecOps-related jobs
- Open CI/CD-related jobs