This job post is closed and the position is probably filled. Please do not apply. Work for Komoot and want to re-open this job? Use the edit link in the email when you posted the job!
# About Komoot\nKomoot is an app that lets you find, plan, and share adventures. Driven by a desire to explore, and powered by the outdoor community’s recommendations, it’s Komoot’s mission to inspire great adventures making them accessible to all. And we’re good at what we do: Google and Apple have listed us as one of their Apps of the Year numerous times!\n\nToday, with over 23 million users and 100,000 five-star reviews, Komoot is well on its way to becoming the most popular cycling and hiking app for people who love adventures worldwide.\n\n**Join our fully remote team and change the way people explore!**\n\n\n**About the role**\nAt komoot we strongly believe in the power of automation. Written rules are good, automated security checks are better. As a cloud security engineer at komoot you’ll take care of our AWS and Google cloud organizations. You manage accounts/projects, users, roles and permissions. You build and maintain security scanning tools and prepare for possible attacks. Together with the software development teams you extend our CI/CD pipelines with compliance rules for permissions, backups and encryption.\n\n**Ready for your next adventure?**\n\n\n**What you will do**\n- Build automation to continuously assess security risks around our AWS/Google cloud infrastructure and further SaaS tools we integrate with like GitHub\n- Triage reports from our bug-bounty program with the development teams and coordinate a responsible disclosure with the reporters\n- Organize pen-testing and audits of our software and infrastructure\n- Define security requirements (encryption, backups, data retention, …) together with our backend and web teams and automate their enforcement\n- Extend our CI/CD process with automatic security scanning for vulnerable dependencies, static code analysis and compliance checks\n- Support new projects and features early in the process with your expertise; Create security requirements and test cases where needed\n\n\n**Why you will love it**\n- You’ll work in a flat hierarchy structure, where ideas are heard and implemented without multiple levels of gatekeeping.\n- You have the freedom to organize yourself the way you work best, using the tools you love.\n- With 20mio users from our own apps and external integrations we face massive traffic and continuous attempts for finding vulnerabilities\n- You join a new team with the opportunity to influence and design new approaches and processes.\n- Your effort matters: You will protect the personal data of millions of cyclists, hikers and outdoor enthusiasts all over the world.\n- We let you work from wherever you want, be it a beach, the mountains, our headquarters in Potsdam or anywhere that lies between the time zones UTC-1 and UTC+3.\n- You’ll travel with our team to amazing outdoor places several times a year (when safe) to exchange ideas, learnings and go for hikes and rides. Check out this video to find out more about our team.\n\n\n**You will be successful in this position if you**\n- Have 3+ years of experience managing AWS organizations. You know the ins and outs of AWS when it comes to security.\n- Have 3+ years of experience security a typical web-stack environment – you’re familiar with typical risks in development and operations, and how to address them\n- You are not afraid of using wireshark to debug an issue\n- Are highly self-driven, responsible and keen to learn and improve\n- Have solid programming skills for automation in python and bash\n- Can read and understand code snippets in java/javascript/c\n- Java development and oauth2 experience is a plus\n\n\n**Curious to find out more about our recruitment process?**\n- Find out more info here: https://www.komoot.com/jobs-process\n- At komoot we want to make great adventures accessible to everyone. We support diversity and inclusivity within the outdoors and welcome all prospective applicants.\n- We have a rolling recruitment process. If this role is online it means it’s still open. We’re accepting applications and actively looking for the perfect candidate. Is it you?\n\n\n**Perks**\n- Dedicated time and budget to spend on classes, events, conferences, boot camps, or books for your curiosity and personal development, you decide!\n- Blinkist subscription and discounts with outdoor brands like Patagonia and Wahoo\n- Flexible working hours and locations\n- 3 all-expenses paid Company gatherings per year\n- The latest devices and equipment\n- And more! \n\nPlease mention the words **CODE KID INDOOR** when applying to show you read the job post completely (#RNDQuMTkyLjUzLjM0). This is a feature to avoid spam applicants. Companies can search these words to find applicants that read this and see they're human.\n\n \n\n#Location\nEurope, Africa
# How do you apply?\n\nThis job post has been closed by the poster, which means they probably have enough applicants now. Please do not apply.