DevSecOps/DevOps Engineer (all identities)

Caspar HealthCaspar Health·Remote(Berlin)
Software Development

WFA Digital Insight

The demand for skilled DevSecOps/DevOps Engineers has seen a significant surge, with a 25% increase in job postings over the last year. As companies shift towards cloud-based infrastructure, the need for experts who can ensure the security and efficiency of these systems has become paramount. Caspar Health, a pioneer in digital rehabilitation, is seeking a talented DevSecOps/DevOps Engineer to join their team. With a strong focus on innovation and patient care, this role offers a unique opportunity to work at the intersection of technology and healthcare. Candidates should be prepared to showcase their expertise in cloud security, automation, and collaborative problem-solving.

Job Description

About the Role

As a DevSecOps/DevOps Engineer at Caspar Health, you will play a critical role in ensuring the security, efficiency, and reliability of our digital rehabilitation platform. Your primary focus will be on designing and implementing secure infrastructure, automating processes, and collaborating with cross-functional teams to drive innovation. You will be part of a dynamic team that values deep work, flexibility, and open communication.

The role entails a deep understanding of cloud security, infrastructure as code, and containerization. You will work closely with our development squads to integrate security into every stage of the software lifecycle, from design to deployment. Your expertise in identifying and remediating vulnerabilities will be crucial in ensuring the integrity of our platform.

Caspar Health is committed to providing a supportive environment for growth and development. As a DevSecOps/DevOps Engineer, you will have the opportunity to expand your skill set, work with cutting-edge technologies, and contribute to a mission that makes a real difference in people's lives.

What You Will Do

  • Design and implement secure infrastructure using AWS, Terraform, and Kubernetes
  • Automate security testing, vulnerability scanning, and compliance checks
  • Collaborate with development teams to integrate security into CI/CD pipelines
  • Develop and maintain scripts for automation tasks using Python, Go, or Node.js
  • Ensure the hardening of data layers, including PostgreSQL and Redis
  • Orchestrate K8s environments with a zero-trust mindset
  • Manage and coordinate the alert lifecycle, including triaging security alerts and vulnerabilities
  • Champion 'shift-left' security practices across the organization
  • Work with the Platform Squad to automate compliance and regulatory requirements
  • Provide security mentorship to development teams
  • Continuously monitor and improve the security posture of our platform

What We Are Looking For

  • Strong knowledge of application security, including common vulnerabilities and secure coding practices
  • Solid understanding of infrastructure security, including secure configurations, network segmentation, and encryption
  • Proven track record in AWS environments, managing Infrastructure as Code (Terraform) and containers (Docker/K8s)
  • Familiarity with encryption, network segmentation, and secure access protocols
  • Experience with Linux administration and automation tasks using Python, Go, or Node.js
  • Ability to communicate complex security risks to development teams
  • Strong problem-solving skills and attention to detail
  • Experience working in a collaborative, remote-friendly environment
  • Familiarity with regulatory requirements and compliance standards

Nice to Have

  • Experience with Terraform/Terragrunt and AWS infrastructure
  • Knowledge of OWASP Top 10 vulnerabilities and secure coding practices
  • Familiarity with dependency scanning and remediation
  • Experience with Docker and Kubernetes
  • Certification in DevSecOps or related fields

Benefits and Perks

  • Flexible working hours and remote work setup within Germany
  • Opportunity to work with a modern tech stack and contribute to a purpose-driven mission
  • Professional development and growth opportunities
  • Access to cutting-edge technologies and tools
  • Collaborative and dynamic work environment
  • Respect for 'deep work' time and open communication
  • Health and wellness benefits
  • Remote stipend and home office setup support
  • Opportunities for professional networking and community engagement

How to Stand Out

  • Tip: Ensure your resume and cover letter highlight specific examples of your experience with cloud security, automation, and DevSecOps practices.
  • Familiarize yourself with Caspar Health's technology stack and be prepared to discuss how your skills align with their infrastructure.
  • Showcase your problem-solving skills by providing detailed explanations of how you've handled complex security issues in the past.
  • Prepare to back your claims with examples; the interviewer will likely ask for scenarios where you applied your DevSecOps knowledge.
  • Consider creating a personal project that demonstrates your ability to automate security tasks or design secure infrastructure, to stand out from other applicants.
  • Be honest about your current level of knowledge and skills, and express your eagerness to learn and grow with the company.
  • During the interview, ask about the company culture, opportunities for growth, and how the role contributes to the overall mission of Caspar Health.

This is a remote position listed on WFA Digital, the platform for professionals who work from anywhere. Browse more remote jobs across all categories.