Our security team ensures that our payment processing application is as secure as it gets throughout the whole software lifecycle. The team is building a brand new system for processing payments on a completely separate cloud infrastructure. Because of the importance of the system and the regulatory reasons we have to ensure high quality and security of the solution. In addition, the team also protects our corporate data and the equipment of our employees. Protecting customer and company information is an important part of our business and our team is passionate about improving it. Our goal is to create a secure environment without restricting or slowing down business processes.

Challenges for the coming months are e.g. the following areas:

• To keep the security level on a high level during the rapid company growth.
• To fulfill all the strict compliance requirements for a payment provider.
• To promote security best practices among developers.

From now on we are looking for a Security Engineer who is passionate to work on these topics, but also wants to take hands-on responsibility.

What you will do

• Conduct regular security audits and code reviews with developers collectively
• Participate in the setup and maintenance of AWS infrastructure for the application.
• Implement secure SDLC for a Kubernetes application.
• Development of creative solutions and testing of new own tools.
• Optimization and automation of security auditing processes. This could also include setting up attack infrastructure, writing scripts in Python / Bash, and implementing security scanning in Gitlab CI.

Who you are

• At least 2 years of hands-on experience in the IT Security field.
• Experience working with a development team in an agile cloud-native environment.
• Hands-on (security-related) experience with a major provider of cloud solutions. AWS is preferable.
• Very good knowledge of a programming language (like Python).
• Fluent English: spoken and written.

Nice to have:

• Ability to read and understand PHP, JavaScript.
• Experience with incident response activities.
• Experience with web application firewalls, CDN providers, e.g. Cloudflare, Akamai
• Experience in pen testing, ethical hacking, bug bounties, etc.

What you will get on top

• Grow together with one of the fastest-growing eCommerce companies in Europe
• Flexible working times
• 40% discount on our online shop
• Fresh fruits + drinks everywhere
• Language courses (German & English)
• Free sports courses & reduced price for gym membership
• Mobility subsidy
• Free choice of hardware and operating system (Mac, Windows, Linux) also for private usage
• State-of-the-art tech stack running on AWS
• Modern office in the city center of Hamburg
• International working environment and English as company language
• Company flats (subject to availability)
• Agile work environment (MOVE) and cross-functional teams
• Free access to Germany’s greatest developer conference code.talks
• Help in relocation and VISA process

YOU ARE THE CORE OF ABOUT YOU.
We take responsibility for creating an inclusive and exceptional environment where all genders, nationalities and ethnicities feel welcomed and accepted exactly as they are. We believe that a diverse workforce essentially contributes to the ABOUT YOU culture. In order to maintain talent and diversity, we emphasize the care for physical health, mental health and overall well-being. Our values and work ethics essentially contribute to our brand mission: empower acceptance and shape an inclusive, fair and circular fashion culture.


We are looking forward to receiving your application – preferably via our online application portal! Thus, we can ensure a faster process and for you it is very easy to upload your application documents. :-)