About

We enable anyone to be an investor. Our mission is to grow investing opportunities for all European customers and businesses. By empowering FinTechs banks and wealth managers to offer investment products we help create financial well-being for their customers.

is a Brokerage-as-a-Service platform: simple digital access to capital markets through a single API. Our API-first infrastructure abstracts brokerage complexity with a well-documented API a self-service customer operations portal and a clear regulatory framework so partners can launch customer-centric compliant products in weeks not months.

As part of the dwpbank group were adding a layer of resources and expertise to benefit from while continuing to operate as an independent fintech with our own team product and start-up identity under the dwpbank umbrella.

Your Mission:

As a DevSecOps Engineer you will lead the design guidance and automation of our cloud infrastructure security with robust secure and scalable solutions. Youll develop proactively strategies and solutions to ensure security is at the heart of everything we do here at .

This means: you will have an important role in building our brokerage API offering that allows companies to easily embed brokerage services into their existing products.

Moreover you will expand and improve our existing Trading API Product to become the leading trading API for developers.

About you:

If you dont match every single point below thats completely okay Were looking for strong alignment with most of these areas plus the curiosity and drive to learn the rest on the job.

• You have proven experience with AWS infrastructure and services and you know your way around AWS security fundamentals such as VPC Security Groups Guard Duty Control Tower or CloudTrail.

• You have experience securing Kubernetes e.g. applying network policies admission controls OPA/policy-as-code and service-mesh-aware security patterns.

• You understand the Software Development Lifecycle (SDLC) and its tooling (GitHub CI/CD) and you know how to embed and operate security controls throughout the delivery lifecycle.

• You are well versed with IaC and Configuration management tools such as Terraform and Helm chart.

• You have hands-on experience with network and identity security including firewalls/WAF PKI/certificates identity providers (IdP/SSO) and RBAC/least-privilege access controls.

• You have hands-on experience designing and operating a Vulnerability Management program end-to-end covering SAST DAST SCA container/image scanning cloud/Kubernetes posture scanning and runtime anomaly detection.

• Its a plus to hold any Security Certifications such as: GSEC CISSP CCSP CCSK CISM GCUX or SAST.

You will be successful if:

• Security is everything to you. We operate in a highly regulated environment and therefore having worked prior in a Fintech or Financial Service provider (Bank Insurance or Brokerage) or within the Cyber Security industry would be preferred.

• You have a bias for action over discussion. To avoid getting stuck in discussion you collect new feedback try out a different approach or gather data with a proof of concept because you trust the process.

• You are ready and willing to take ownership of problems and act on them with no supervision and decisively.

• You have a collaborative mindset. Working together as a team and sharing knowledge comes natural to you. Long term - you consider becoming a team lead.

• You have no problem with learning new technologies on the go. You try to solve problems with more things than the ones you already know. We will always enable you with that but your willingness has to come first.

How we take care of you:

• Compensation package: We offer you a competitive salary based on your experience and the value-add you bring to .

• Flexible working hours: We trust people to choose when they work best and avoid a rigid 9 to 5 mindset. You decide on the rhythm that helps you do your best work with only shared core hours from 12:00 to 16:00 to support collaboration.

• Hybrid work setup: You can work from anywhere in Germany within a hybrid model. At the same time in-person collaboration is a key part of our culture. That being said individual contributer lemoneers work 4 days or more / leadership lemoneers work 7 days or more per month on-site in our Berlin office spending quality time together with the team at events onsites/offsites or over team dinners.

• Grow with us: We take your personal development seriously! Youll get regular mentorship and stretch opportunities plus a clear career development framework with frequent feedback conversations so you always know where you stand and what to do to level up.

• People & culture: Youll feel our culture in the small things like polaroids from our lemoneers first day Friday food market strolls at Maybachufer and our monthly new-joiner breakfast. But also in the bigger things: celebrating the onboarding of new partners growing our teams and owning a strong discussion culture.

• Perks & benefits: We choose benefits that add actual value. We sponsor a Deutschlandticket for employees on unlimited contracts plus 50% off on Beatvest - our partner for financial education and investing.

• Workation: Get out of here! At you can work remotely from anywhere in the EU for up to 10 consecutive days at a time and up to 60 days per year in total.

As an equal opportunity employer is committed to building an inclusive workplace. The company welcomes people from all different backgrounds including age citizenship ethnic and racial origins gender identities individuals with disabilities marital status religions and ideologies and sexual orientations to apply.

If you feel this role could be a great match for you even if you dont tick every box wed still love to hear from you please apply.

You have any questions Feel free to contact us via

Required Experience:

IC