DevSecOps/DevOps Engineer (all identities)

What to ExpectAt Caspar Health, we run a digital rehabilitation clinic where medical expertise meets high-end engineering. We don't just ship code; we provide patients with personal care from real therapists, powered by our platform. This means your work directly enables medical professionals to deliver life-changing therapy to people who otherwise wouldn't have access to it.We are looking for a DevSecOps/DevOps Engineer (all identities) with strong application and infrastructure security skills. We welcome experienced DevOps Engineers who bring solid security knowledge — understanding of common vulnerabilities, application security issues, and infrastructure hardening — and are ready to grow into a full DevSecOps role.You are a fit for this role if...You live and breathe Cloud Security: You have a solid foundation in AWS and believe that infrastructure is only as good as its security-first designYou are an automation enthusiast: You prefer writing Terraform or Python scripts over manual configurations any day of the weekYou are a bridge-builderYou enjoy working at the intersection of Development and Operations, helping teams "shift-left" without slowing them downWe know you have choices. Here's why you should choose us:Growth over Stagnation: We don't expect you to be a finished DevSecOps guru on day one. If you are a solid DevOps Engineer with a security-focused mindset, we will provide the environment and support for you to become a true specialistModern Stack & Real OwnershipWork with AWS, Kubernetes, and Terraform/Terragrunt. You won't just follow tickets; you'll help define our security architecturePurpose-Driven TechEvery line of code and every IAM policy you write directly contributes to someone's recovery and healthFlexibility & BalanceWe live the health-tech mission. Expect flexible working hours, a remote-friendly setup within Germany, and a culture that respects your "deep work" timeYour ChallengesMaster the Alert LifecycleTake the lead on triaging security alerts and vulnerabilities. You won't just "fix bugs"; you will coordinate smart remediations and build the systems that prevent them from reappearingChampion "Shift-Left": Integrate automated security testing, vulnerability scanning, and compliance checks directly into our CI/CD pipelinesFortify the Cloud: Use Terraform and Terragrunt to evolve our AWS infrastructure into a gold standard of "Security as Code"Automate Compliance: Work within an empowered Platform Squad to turn regulatory requirements into automated guardrails, ensuring compliance is a byproduct of our engineering rather than a manual choreSecure the Core: Manage and harden our data layers (PostgreSQL, Redis) and orchestrate our K8s environment with a zero-trust mindset including applicationsBe the Security Mentor: Collaborate with development squads to identify and remediate vulnerabilities early in the software lifecycleYour ProfileA strong knowledge of application security: common vulnerabilities (OWASP Top 10), secure coding practices, dependency scanning, and remediationThe solid understanding of infrastructure securitysecure configurations, network segmentation, encryption at rest and in transit, access controlsThe DevOps Foundation: You have a proven track record in AWS environments, managing Infrastructure as Code (Terraform) and containers (Docker/K8s)The Security Mindset: You don't just build pipelines; you wonder how someone might break them. You're familiar with encryption, network segmentation, and secure access protocolsThe Problem Solver: You enjoy Linux administration and can automate tasks using Python, Go, or Node.jsThe CommunicatorYou can explain complex security risks to a developer in a way that inspires them to fix it. (English is our working language)Note to DevOps Engineers: If your background is primarily in infrastructure but you have a strong desire to deepen your application security skills, we encourage you to apply. We value your curiosity and will support your growth into a full DevSecOps role.Why Caspar Health?Remote-first with flexible working hours – office optional in Berlin-Mitte or up to 90 days a year outside of GermanyWe support you with a monthly home office allowance and an additional meal subsidyPlenty of time to recharge – with 30 vacation days per yearBudget for learning & development, conferences, and coaching – tailored to your potential and growth opportunities.High level of ownership and decision-making freedom – no micromanagement. We hire experts who know what they're doing.Genuine collaboration – no silos, no egos. After all, we're all working toward the same vision.Access to all Caspar offerings for mental and physical well-being.And yes – all the snacks you want, group sports sessions, a never-empty drinks fridge, and a healthy dose of humor are included too.What Defines Us as a TeamWe live diversity – it's not a marketing slogan, it's part of our everyday realityFeedback isn't a tool – it's part of our cultureWe believe that technology only makes sense when it truly helps peopleOur drive is purpose – but our standard is professionalismAt Caspar Health, we strive to provide a friendly, safe and welcoming environment for all Casparians* regardless of ethnic origin, gender, gender identity and expression, sexual orientation, limitations of any kind, physical appearance, social background, age or religion (or lack thereof).When you apply, we purely focus on your experience and motivation. You decide what additional information you want to disclose (picture, marital status, religion, gender, nationality, etc). We value and treat all applications equally.We are looking forward to getting to know you!J-18808-Ljbffr