AWS DevSecOps Engineer (m/f/d)

Help people make better decisions for health. Every day. Worldwide.

Discover the Future of Medical Software at seca — a Germany-based global health tech company developing medically precise hardware and software solutions for health assessment.

Our team is expanding, and we are looking for an experienced AWS DevSecOps Engineer (m/f/d) to strengthen the foundation of our secure, scalable, and compliant cloud infrastructure. In this role, you will ensure that our medical and fitness solutions run safely and efficiently on AWS — enabling healthcare professionals and end-users around the world to trust the technology that supports better health decisions every day.

• Design, implement, and maintain secure, scalable, and resilient production and non-production environments on AWS.
• Build and manage CI/CD pipelines with integrated security checks (SAST, DAST, dependency scanning).
• Automate security controls, governance processes, and compliance validation.
• Work closely with engineers, product owners, and stakeholders to embed security into development roadmaps and architectural designs.
• Implement infrastructure-as-code and policy-as-code practices (e.g., using Terraform, AWS Config, or Open Policy Agent (OPA)).
• Support secure deployment and release strategies for infrastructure, backend, and mobile applications.
• Integrate monitoring, logging, and alerting with a focus on threat detection and response.
• Regularly assess and improve the security posture of cloud environments (e.g., IAM hardening, least privilege, encryption enforcement).

• Solid experience with CI/CD pipeline setup and secure deployment practices.
• Strong background in AWS networking and security services (IAM, KMS, WAF, GuardDuty, Security Hub, etc.).
• Experience managing and securing AWS ECS clusters and container-based workloads.
• Proficiency in operating production environments with an emphasis on security and compliance.
• Experience with infrastructure as code (e.g., Terraform, CloudFormation).
• Familiarity with vulnerability scanning, secrets management, and security automation tools (e.g., HashiCorp Vault, Trivy, SonarQube).
• Bonus: AWS Security Certification, or other relevant security credentials.
• Bonus: Strong knowledge of Linux and secure configuration practices.
• Excellent written and verbal communication skills in English and German .