As a DevSecOps Solution Architect, you will play a central role in advancing secure and efficient software delivery across hybrid and cloud-native environments. You'll lead the evolution of our internal developer platform (IDP), ensuring it supports fast, compliant, and resilient development cycles while integrating robust security controls throughout the software development lifecycle.
Key Responsibilities
- Design, implement, and optimize CI/CD pipelines that support scalable and secure delivery across diverse infrastructure environments
- Integrate Infrastructure as Code tools like Terraform and Ansible with security automation and Policy-as-Code frameworks such as OPA to enforce compliance by design
- Oversee the SDLC toolchain—including GitHub, JFrog, DataDog, Qualys, Jira, WIZ, and ServiceNow—ensuring alignment with operational efficiency and regulatory standards
- Define and maintain operational DevSecOps practices, covering onboarding, incident response with SLA adherence, and multi-tiered support models
- Advance strategic initiatives including AI-enabled development workflows, secure AI tooling, and automated governance processes
- Collaborate with engineering, security, and compliance teams to align technical execution with business goals and regulatory requirements such as DORA, KAIT, and BAIT
- Support audit readiness by ensuring operational controls are transparent, traceable, and aligned with compliance frameworks
Qualifications and Experience
You bring a strong foundation in DevSecOps or platform engineering, with a minimum of five years of hands-on experience automating secure software delivery. Proficiency with CI/CD systems, GitHub, and artifact management via JFrog is essential. You have practical experience with Terraform, Ansible, and cloud-native infrastructure, along with familiarity with Policy-as-Code and the Microsoft Well-Architected Framework.
Experience operating in regulated environments governed by standards such as DORA, KAIT, or BAIT is required. You are skilled at balancing automation with governance and can communicate effectively with both technical teams and business stakeholders. Fluency in English is mandatory; additional languages are beneficial.
Preferred candidates hold a degree in Information Technology or a related field and possess certifications such as CKA/CKAD, CCSK, CSSLP, GCSA, AZ-400, or CISSP. Experience with internal developer platforms, AI-enhanced development workflows, or large-scale enterprise transformations is highly valued.
Technology Environment
The role leverages a modern stack including GitHub, JFrog, DataDog, Qualys, Jira, Terraform, Ansible, WIZ, ServiceNow, OPA, and cloud-native infrastructure technologies. You'll work within CI/CD, Infrastructure as Code (IaC), and Policy-as-Code paradigms to build secure, auditable systems.
Work Environment and Benefits
This position is based in Frankfurt with a hybrid work model offering flexible hours, supporting a sustainable balance between professional performance and personal priorities. You'll have access to pension and savings plans, mental health resources, mobility programs like Jobrad and Jobticket, and a company share purchase option. Career development is supported through self-directed learning and opportunities across the global organization.
Our culture emphasizes integrity, inclusion, and trust. We empower individuals, support diverse aspirations, and foster an environment where everyone can contribute meaningfully. We are committed to equal opportunity and welcome applicants of all backgrounds, regardless of ethnicity, age, gender, religion, disability, sexual orientation, or other protected characteristics under local law.
