Security Engineer (m/f/x)

Berlin, Frankfurt or Remote

Applications have closed

CLARK

Mit CLARK managst du deine Versicherungen online & sparst bis zu 50 % pro Jahr. Starte jetzt und erhalte endlich Überblick über deine Versicherungen.

View company page

CLARK Group is one of the world's leading insurtechs. As the first unicorn company from Frankfurt, we are on the mission to become Europe's best insurance advisor. We develop technological solutions and mobile apps that enable our customers to manage, compare and optimize their insurance policies online in the most convenient way. The digital user experience is complemented by personal advice from trained experts. In total, CLARK Group includes around 30 brands offering the best possible insurance experience to more than 2 million customers in six European markets.

The advantages of our innovative technology and our customer-focused culture unite us as one group. We are supported by investors such as Allianz X, Portage, White Star Capital, Yabeo and Tencent. Every day, over 700 employees from more than 40 nations in Germany, Austria, Switzerland, the UK, France and the Netherlands shape the digital insurance world of tomorrow. Become a part of this international team and join us on our path to success.

 

As our Security Engineer you will:

  • Be the to-go expert for security assessments during the product development lifecycle

  • Be the technical expert within the security team

  • Develop, automate or enhance internal security tools and services in different areas, such as

    • CI/CD (Github, Jenkins)

    • Web and Mobile Application Security Testing and triage (DAST, SAST, Container Security…)

    • Cloud Security (Patch management, IaC setup, Security Hub)

    • Incident Detection and Response (Splunk, SOAR, EDR)

  • Discover, analyse, prioritise, and orchestrate remediation of technical risks on Clark Group’s products and infrastructure.

Who you are:

  • 3 to 5 years of tactical operational experience in information security

  • You consider yourself as a technical element

  • You have hands on experience in at least 2 of the following topics:

    • Vulnerability assessment and management, including

      • Identifying and analysing technical risks and vulnerabilities in applications, products, features

      • Pentest and checks on mobile applications, web applications, new products and features

    • Incident response, including

      • Experience with answering alerts, incidents (Level 1 or 2 support)

      • Developing disaster recovery playbooks

      • Implementation of Security Incident Management Workflows and Business Continuity Management process and tests

    • Securing infrastructure as code setups including CI/CD deployments with git and docker and infrastructure automation (e.g. Terraform, Ansible)

    • Securing the Development Pipeline (DevSecOps) including CI/CD deployments with git and docker (secret scanning, static analysis, software composition analysis…)

    • Cloud Security or securing cloud infrastructure, ideally AWS and GCP

    • Container Security (Kubernetes, Docker)

  • Automation and shifting security left are no brainers for you.

  • Principle Engineer or Architect role are your main considerations for a career path

  • Know-how in programming especially in one of the following languages: Python, Ruby on Rails

  • Fluent English language skills (German is a plus) in speaking and writing

 

Why CLARK?

  • You are part of a leading global insurtech and change the insurance industry
  • A multicultural environment with international colleagues from 43+ different backgrounds.
  • Hybrid working models and flexible working hours
  • 30 days holiday & 2 days impact days
  • Extensive range of exclusive discounts for employees
  • Training and personal development
  • Support for personal voluntary activities
  • Free drinks, fresh fruit and tasty snacks
  • Cultural initiatives and team events

 

At CLARK we embrace diversity.

We are creating the ideal work environment for dedicated and talented people, no matter their ethnicity, identity, religion and age - we aim at giving everybody the same chances and opportunities.

Sounds exciting? You have no idea! We’re looking forward to reading your application.

* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰

Tags: Ansible Application security Automation AWS CI/CD Cloud DAST DevSecOps Docker EDR GCP GitHub Incident response Kubernetes Python Ruby SAST Security assessment SOAR Splunk Terraform Vulnerabilities

Perks/benefits: Career development Flex hours Snacks / Drinks Team events

Regions: Remote/Anywhere Europe
Country: Germany
Job stats:  70  13  0

More jobs like this

Explore more InfoSec / Cybersecurity career opportunities

Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.