Jobbeschreibung
At Uniper, we proactively transform the world of energy while ensuring the security of energy supply. As an internationally operating company, we work in very diverse teams with the greatest possible working time flexibility for our employees. Our corporate culture is characterized by equal opportunities, mutual appreciation, and respect. With us, you will be able to develop new business models, work on technological solutions for a modern, sustainable, and future-oriented energy supply, as well as proactively help shape changes. Interested? We look forward to meeting you!
Our Commercial Technology Office in Düsseldorf is looking for you!
As a Platform Security and Observability Engineer, you'll be instrumental in securing our development platform by implementing security best practices and building a state-of-the-art centralized observability stack on Azure. Your work will directly enhance efficiency, resilience, and developer productivity within our high-impact, results-driven team. You'll tackle complex technology challenges in energy trading, work with cutting-edge tools, continually expanding your skillset and driving significant business results.
- Security Integration: Drive "shift left" security initiatives, integrating automated security checks (SAST, DAST, IAST) and compliance gates into CI/CD pipelines and build/release workflows.
- Cloud Infrastructure: Design, plan, and lead the development of our cloud infrastructure in collaboration with development teams.
- Automation & Efficiency: Develop, test, and maintain CI/CD pipelines; fortify existing GitOps workflows; and enhance automation to ensure efficiency, resilience, and continuous improvement of our dev platform.
- Secure IaC: Define, implement, and enforce secure Infrastructure as Code (IaC) standards (Terraform).
- Observability: Build and maintain a centralized monitoring and alerting stack to improve infrastructure stability and operational efficiency.
- Developer Productivity: Enhance developer productivity by automating repetitive tasks, embedding security checks, and ensuring end-to-end traceability from code commit to production.
- Troubleshooting: Troubleshoot and resolve issues related to infrastructure, applications, and networking.
- Strategy & Vision: Develop and promote a clear vision and implementation roadmap for DevSecOps, aligning with overall business objectives.
- Collaboration: Maintain strong relationships with central IT teams and technology partners to ensure alignment and maximize value.
- Innovation: Promote a culture of innovation by staying up to date with new technologies and integrating useful advancements into the commercial area.
Essential Qualifications:
- A degree in Computer Science, Mathematics, Engineering or other related discipline.
- Experience:
- 3+ years of experience as a DevOps/SRE with a clear security and observability focus.
- 3+ years of experience as Software Developer with expertise in assessing security impacts.
- Proven proficiency in Azure services (AKS, Container Apps, KeyVault, Entra ID etc.).
- Hands-on expertise with:
- CI/CD: GitHub Actions.
- IaC & policy-as-code: Terraform.
- Containers & orchestration: Docker, Kubernetes, Helm.
- Observability: Prometheus & Grafana, Azure Monitor.
- Logging: structured logging best practices, OpenTelemetry.
- Security testing: Trivy, Snyk (SAST / SCA / IAST), Invicti (DAST).
- OOP: C#, Python
- Scripting: Bash, PowerShell
- OS: Linux
- Passion for mentoring, collaboration, and continuous improvement.
- A mindset rooted in "shift left" practices, embracing early security and quality integration as a fundamental part of development.
- Recognized certifications in SIEM / CNAPP.
- Fluent in English; German advantageous.
Preferred Qualifications:
- Background in energy trading, financial services, or other high-throughput trading environments.
- Familiarity with regulatory frameworks related to security of critical infrastructure.