Senior Software Engineer, Platform (Security Focused) (m/f/d) Munich/Berlin/Frankfurt a.M./remote
Indexed description
Your mission
- You are part of our dedicated Platform team, building and operating the foundation that every product team at casavi builds on.
- With the team, you own and evolve our platform: from core product features every team builds on, like Auth, I18n, Feature Flags, and so on, to infrastructure, with our AWS setup, Kubernetes clusters, GitOps workflows, and Infrastructure-as-Code (IaC), working with Terraform, Helm, ArgoCD, and GitLab CI/CD, while monitoring system health with Prometheus & Grafana.
- Your main personal focus is Application Security: making sure our product stays robust and reliable in the face of modern growing security threats, via comprehensive automated quality gates, regular security testing being done as a practice, strong security standards embedded in the SDLC of our teams, and appropriate instrumentation of the AI Coding Assistant tooling our team is using.
- You also bake security into our infrastructure, implementing automated vulnerability scanning, secure secrets management, and Policy-as-Code guardrails so that shipping securely is always the path of least resistance.
- You harden our cloud environments, ensuring robust IAM configurations, network policies, and foundational security baselines are continuously enforced.
- You collaborate closely with fellow engineers across the Platform team and with product teams, bringing your ideas to make our platform more reliable, scalable, and easy to build on.
Your profile
- You have several years of experience working with TypeScript (our tech stack includes Node.js, REST API, MySQL, MongoDB, Nest.js, React) and, ideally, also Python (our Python stack: Flask, FastAPI, MongoDB).
- You care about Application Security deeply and have a proven track record of establishing secure SDLC in software engineering teams.
- You have proven hands-on experience running production Kubernetes clusters and managing cloud infrastructure. You know AWS, Terraform, Helm, GitOps (ideally ArgoCD), and CI/CD pipelines (ideally GitLab CI).
- You understand cloud-native security principles and have experience securing pipelines, container images, and infrastructure (e.g., using AWS Secrets Manager, Vault, Trivy, Snyk, or similar tooling).
- You are a power user of AI-based tools (GitHub Copilot, Claude Code, Codex, etc.), and you know how to use them to build lightweight internal tooling and automation safely and responsibly.
- You'd rather script and orchestrate an agentic workflow than stand up a heavyweight developer portal.
- You have excellent analytical & problem-solving skills and enjoy owning problems end-to-end, from root cause to fix.
- Ideally, you have strong experience with observability tooling (Prometheus/Grafana) and monitoring production systems.
- You are a strong communicator, and your English is at a very good level (>C1).
Conditions & Benefits
- An open-minded and friendly team working with agile methods - as proven by our Kununu Score of 4,6
- Flexible & hybrid working
- 40 days of workation per year in the EU
- Company events & sports offers
- Corporate benefits
- Company pension scheme
- Childcare allowance
- EGYM Wellpass membership discount
- Diverse development opportunities and a continuing education budget
Create a free Caio profile to unlock more results and save your role and location preferences.
Unlock free search