Security Compliance Engineer

Who are we?

Join us at the forefront of innovation in the AI sector. Our mission is to accelerate the future of work. We're not merely envisioning the future; we're actively constructing it. Our work is inspired by Ford's assembly line and Ohno's production system.

We are a well-funded Silicon Valley based Series A startup backed top-tier VCs.

Our founding team boasts a remarkable track record in AI and startup ecosystem, with each member having previously steered AI startups to unicorn status ). As we write this new chapter in AI, we invite you to be part of this exciting journey. Be a part of an exceptional team that's not just watching the future unfold but actively making a huge impact in a short amount of time.

We are growing our engineering team centered around Berlin. This is a great opportunity to work in a European tech hub with global impact.

What you will do

• Build and secure a scalable, data-driven SaaS platform that meets the highest standards of security, reliability, and compliance — including SOC 2 and PCI DSS.
• Embed security and privacy by design into every layer of our systems, ensuring secure data handling, encryption, and access control across applications and infrastructure.
• Develop and maintain compliance automation frameworks to continuously monitor, assess, and demonstrate adherence to key standards such as PCI DSS, and SOC 2.
• Collaborate closely with product, security, and engineering teams to define secure architectures, clarify requirements, and align design choices with business and regulatory goals.
• Integrate DevSecOps practices — embedding automated security scanning, compliance checks, and monitoring into CI/CD pipelines to enforce consistent protection and visibility.
• Partner with ML and infrastructure teams to enable secure, and compliant use of AI and sensitive data across the platform.
• Continuously improve our security posture through proactive risk assessments, control enhancements, and automated compliance evidence collection.

What we look for

• What we look for
• BSc. or MSc. in Computer Science or comparable degree.
• At least 5 years of experience in software engineering, infrastructure, or security roles.
• Exceptional problem-solving abilities, effective communication, and teamwork skills.
• You should be a great engineer in 2 of the next 4 skill sets:
• Security & Compliance Engineering
• • Experience implementing and automating security controls in cloud environments (AWS preferred).
• Familiarity with PCI DSS standards and compliance lifecycle management.
• Understanding of IAM, network security, encryption, and secure SDLC practices.
• Experience with cloud-native security tools (e.g., AWS Security Hub, GuardDuty, CloudTrail).
• Experience with security audits, risk assessments, and evidence collection.
• Cloud Infrastructure (AWS)
• • Strong hands-on experience with AWS services such as IAM, VPC, ECS/EKS, and Lambda.
• Experience with Infrastructure as Code tools (Terraform, CDK, or CloudFormation).
• Understanding of container security, secrets management, and CI/CD hardening.
• Experience with observability, monitoring, and cloud compliance automation.
• Backend / DevSecOps Engineering
• • Extensive experience coding in Go (or motivation to learn it).
• Experience coding in Python is a plus.
• Experience building secure and observable backend services.
• Understanding of event-driven architectures and API security.
• Familiarity with integrating security testing (SAST/DAST) into CI/CD pipelines.
• Infra & CI/CD
• • Experience setting up secure CI/CD pipelines and tooling (Terraform, Docker, etc.).
• Setup and management of large-scale applications using Kubernetes on AWS.
• Knowledge of security management, least privilege enforcement, and compliance automation.

We encourage you to apply, even if you don't meet all the criteria.

Our commitment to diversity and inclusion means we value individuals of all genders, ethnicities, sexual orientations, religions, and abilities.