Application Security Engineer (Berlin/hybrid)
Indexed description
We build ETERNO Cloud, the operating system for modern medical practices. It brings the core workflows of a medical practice into one cloud SaaS platform. The product handles sensitive healthcare data in a regulated, GDPR-compliant, and ISO 27001-certified environment, so security needs to be part of how we build, ship, and operate software.
You are the main AppSec owner inside engineering, working closely with ISMS, Cloud Platform, and Tech Leads to make application security actionable in product development.
🏄♂️ What You Shape And Run
- Secure development workflows across product engineering, from PR checks to CI/CD security gates
- SAST, DAST, dependency scanning, and IaC scanning that help teams find issues early
- Threat modeling, auth/authz reviews, secure API design, and permission model reviews for new and existing features
- Multi-tenant SaaS isolation, permission models, and healthcare data handling across product workflows
- Vulnerability management from finding and prioritization to remediation and closure
- Pentests with external partners, including scope, coordination, findings, remediation, and follow-up
- Technical security controls and evidence for ISO 27001, GDPR, risk management, and the ISMS
- Security monitoring and cloud security findings in close collaboration with Cloud Platform and Tech Leads
- Security guidance that helps teams ship safely without turning security into unnecessary process
- Security that is built into engineering workflows, not added at the end
- Clear ownership for vulnerabilities, risks, findings, and follow-up work
- Practical standards that help teams make good security decisions independently
- Protecting sensitive healthcare data through strong product, platform, and access controls
- Working closely with ISMS, Cloud Platform, Tech Leads, and product engineering
- Reducing risk without creating unnecessary friction for teams
- Make a real impact – Help us transform healthcare with bold, hands-on solutions for real challenges. Your contribution counts from day one – with responsibility, speed, and room for your own ideas.
- Your workspace – Take advantage of our hybrid model: You’ll spend 3 days a week at our office in Berlin to collaborate with your team, and the rest of the time you’ll work flexibly from home.
- Level up & grow – Join an ambitious team that challenges and supports you. Whether leadership or deep dive: develop both professionally and personally through regular feedback, open exchange, and language courses in German & English.
- Feel good, stay healthy – Access the ETERNO Spaces for quick doctor visits & health check-ups. For more movement in your day: lease a JobRad – tax-advantaged and eco-friendly.
- We’ve got you covered – Competitive salary, company pension with a 20% top-up, and a monthly budget for benefits like Urban Sports Club, vouchers, or public transport – plus attractive corporate benefits & our Refer-a-Friend bonus.
- Stay connected – Meet driven, inspiring people. Whether Monthly All-Hands, team offsites, or spontaneous office vibes – we celebrate success together and push each other as a team.
If you require any accommodations during the application process, please contact us in advance at [email protected]. We are happy to support you.
Create a free Caio profile to unlock more results and save your role and location preferences.
Unlock free search