Allianz Global Investors
AI Security Governance Specialist(m/w/x)
Vollzeitmit HomeofficeBerufserfahren
Frankfurt am Main, München
Neuer Job?Nejo!
Die KI-Suchmaschine für Jobs
AL
Allianz Global InvestorsSecurity Engineer - DevSecOps & SDLC Security(m/w/x)
Frankfurt am Main, München
Vollzeitmit HomeofficeSenior
Beschreibung
In this role, you will integrate security throughout the software development lifecycle, ensuring robust controls and compliance while collaborating with various teams. Your day-to-day responsibilities will involve evaluating security tools, advising on best practices, and automating workflows to enhance the developer experience.
Lass KI die perfekten Jobs für dich finden!
Lade deinen CV hoch und die Nejo-KI findet passende Stellenangebote für dich.
Anforderungen
- •5+ years of experience in SDLC security, application security, or DevSecOps
- •Hands-on experience with CI/CD pipelines, GitHub, and JFrog
- •Strong knowledge of Terraform Cloud, Bicep, Ansible, and cloud security principles
- •Familiarity with Open Policy Agent (OPA), Microsoft’s Well-Architected Framework, and CIS Benchmarks
- •Experience with security testing tools and vulnerability management
- •Proven ability to operate effectively in regulated environments (DORA, KAIT, BAIT)
- •Excellent communication skills across technical and business stakeholders
- •Fluency in English; additional languages are a plus
- •Degree in Information Technology or a related field
- •Certifications such as CSSLP, GCSA, AZ-500, CISSP, CISM, or CISA
- •Experience with internal developer platforms (IDPs) and platform engineering
- •Exposure to Agile environments and enterprise transformation programs
- •Familiarity with AI-enhanced developer workflows and their security implications
Ausbildung
Bachelor-Abschluss
Berufserfahrung
5 Jahre
Aufgaben
- •Implement and oversee security controls across SDLC and infrastructure layers
- •Test-drive and evaluate security tools for integration into CI/CD pipelines
- •Advise development teams and security champions on secure tool usage
- •Define and enforce secure SDLC practices aligned with DORA, KAIT, and BAIT
- •Apply security best practices to cloud-native infrastructure using Microsoft's Well-Architected Framework
- •Secure and govern Infrastructure as Code (IaC) with Terraform Cloud, Bicep, and Ansible
- •Implement policy-as-code using Open Policy Agent (OPA) across infrastructure and pipelines
- •Automate security controls, evidence generation, and release promotion workflows
- •Champion security-by-design principles across architecture, development, and operations
- •Collaborate with governance, application, and infrastructure teams to ensure compliance
- •Contribute to the Security Champion Community of Practice (CoP)
- •Apply CIS Benchmarks to harden systems and validate configurations
- •Support compliance dashboards and DORA metrics implementation in IDP
- •Optionally contribute to Kubernetes, Azure role assignments, VM usage, and private endpoint architecture
- •Serve as a sparring partner for auditors, ensuring alignment of technical controls with compliance expectations
Tools & Technologien
CI/CD pipelinesGitHubJFrogTerraform CloudBicepAnsibleOpen Policy Agent (OPA)security testing toolsvulnerability management
Sprachen
Englisch – verhandlungssicher
Benefits
Flexibles Arbeiten
- •Flexible work arrangements
Betriebliche Altersvorsorge
- •Company pension/savings plans
Attraktive Vergütung
- •Company share purchasing plan
Mentale Gesundheitsförderung
- •Mental health and wellbeing programs
Karriere- und Weiterentwicklung
- •Career opportunities within Allianz Group
Weiterbildungsangebote
- •Comprehensive learning and development offerings
Die Originalanzeige dieses Stellenangebotes in der aktuellsten Version findest du hier. Nejo hat diesen Job automatisch von der Website des Unternehmens Allianz Global Investors erfasst und die Informationen auf Nejo mit Hilfe von KI für dich aufbereitet. Trotz sorgfältiger Analyse können einzelne Informationen unvollständig oder ungenau sein. Bitte prüfe immer alle Angaben in der Originalanzeige! Inhalte und Urheberrechte der Originalanzeige liegen beim ausschreibenden Unternehmen.
Noch nicht perfekt?
- Zühlke Engineering AG
Senior Azure Cloud Engineer(m/w/x)
Vollzeitmit HomeofficeSeniorEschborn - Deloitte
DevSecOps Engineer Softwareentwicklung / öffentlicher Sektor(m/w/x)
Vollzeitmit HomeofficeBerufserfahrenFrankfurt am Main, Berlin, Leipzig - Deloitte GmbH Wirtschaftsprüfungsgesellschaft
Senior DevOps Engineer(m/w/x)
Vollzeitmit HomeofficeSeniorBerlin, Düsseldorf, Frankfurt am Main, Hamburg, Hannover, Köln, München, Stuttgart - SAP
Senior DevOps Engineer - Azure(m/w/x)
Vollzeit/Teilzeitmit HomeofficeSeniorWalldorf, München, Berlin, Eschborn, St. Leon-Rot
AL
Allianz Global InvestorsSecurity Engineer - DevSecOps & SDLC Security(m/w/x)
Frankfurt am Main, München
Vollzeitmit HomeofficeSenior
Neuer Job?Nejo!
Die KI-Suchmaschine für Jobs
Beschreibung
In this role, you will integrate security throughout the software development lifecycle, ensuring robust controls and compliance while collaborating with various teams. Your day-to-day responsibilities will involve evaluating security tools, advising on best practices, and automating workflows to enhance the developer experience.
Lass KI die perfekten Jobs für dich finden!
Lade deinen CV hoch und die Nejo-KI findet passende Stellenangebote für dich.
Anforderungen
- •5+ years of experience in SDLC security, application security, or DevSecOps
- •Hands-on experience with CI/CD pipelines, GitHub, and JFrog
- •Strong knowledge of Terraform Cloud, Bicep, Ansible, and cloud security principles
- •Familiarity with Open Policy Agent (OPA), Microsoft’s Well-Architected Framework, and CIS Benchmarks
- •Experience with security testing tools and vulnerability management
- •Proven ability to operate effectively in regulated environments (DORA, KAIT, BAIT)
- •Excellent communication skills across technical and business stakeholders
- •Fluency in English; additional languages are a plus
- •Degree in Information Technology or a related field
- •Certifications such as CSSLP, GCSA, AZ-500, CISSP, CISM, or CISA
- •Experience with internal developer platforms (IDPs) and platform engineering
- •Exposure to Agile environments and enterprise transformation programs
- •Familiarity with AI-enhanced developer workflows and their security implications
Ausbildung
Bachelor-Abschluss
Berufserfahrung
5 Jahre
Aufgaben
- •Implement and oversee security controls across SDLC and infrastructure layers
- •Test-drive and evaluate security tools for integration into CI/CD pipelines
- •Advise development teams and security champions on secure tool usage
- •Define and enforce secure SDLC practices aligned with DORA, KAIT, and BAIT
- •Apply security best practices to cloud-native infrastructure using Microsoft's Well-Architected Framework
- •Secure and govern Infrastructure as Code (IaC) with Terraform Cloud, Bicep, and Ansible
- •Implement policy-as-code using Open Policy Agent (OPA) across infrastructure and pipelines
- •Automate security controls, evidence generation, and release promotion workflows
- •Champion security-by-design principles across architecture, development, and operations
- •Collaborate with governance, application, and infrastructure teams to ensure compliance
- •Contribute to the Security Champion Community of Practice (CoP)
- •Apply CIS Benchmarks to harden systems and validate configurations
- •Support compliance dashboards and DORA metrics implementation in IDP
- •Optionally contribute to Kubernetes, Azure role assignments, VM usage, and private endpoint architecture
- •Serve as a sparring partner for auditors, ensuring alignment of technical controls with compliance expectations
Tools & Technologien
CI/CD pipelinesGitHubJFrogTerraform CloudBicepAnsibleOpen Policy Agent (OPA)security testing toolsvulnerability management
Sprachen
Englisch – verhandlungssicher
Benefits
Flexibles Arbeiten
- •Flexible work arrangements
Betriebliche Altersvorsorge
- •Company pension/savings plans
Attraktive Vergütung
- •Company share purchasing plan
Mentale Gesundheitsförderung
- •Mental health and wellbeing programs
Karriere- und Weiterentwicklung
- •Career opportunities within Allianz Group
Weiterbildungsangebote
- •Comprehensive learning and development offerings
Die Originalanzeige dieses Stellenangebotes in der aktuellsten Version findest du hier. Nejo hat diesen Job automatisch von der Website des Unternehmens Allianz Global Investors erfasst und die Informationen auf Nejo mit Hilfe von KI für dich aufbereitet. Trotz sorgfältiger Analyse können einzelne Informationen unvollständig oder ungenau sein. Bitte prüfe immer alle Angaben in der Originalanzeige! Inhalte und Urheberrechte der Originalanzeige liegen beim ausschreibenden Unternehmen.
Über das Unternehmen
Allianz Global Investors
Branche
FinancialServices
Beschreibung
Allianz Global Investors is a leading global active asset manager focused on long-term value creation and sustainability.
Noch nicht perfekt?
- Allianz Global Investors
AI Security Governance Specialist(m/w/x)
Vollzeitmit HomeofficeBerufserfahrenFrankfurt am Main, München - Zühlke Engineering AG
Senior Azure Cloud Engineer(m/w/x)
Vollzeitmit HomeofficeSeniorEschborn - Deloitte
DevSecOps Engineer Softwareentwicklung / öffentlicher Sektor(m/w/x)
Vollzeitmit HomeofficeBerufserfahrenFrankfurt am Main, Berlin, Leipzig - Deloitte GmbH Wirtschaftsprüfungsgesellschaft
Senior DevOps Engineer(m/w/x)
Vollzeitmit HomeofficeSeniorBerlin, Düsseldorf, Frankfurt am Main, Hamburg, Hannover, Köln, München, Stuttgart - SAP
Senior DevOps Engineer - Azure(m/w/x)
Vollzeit/Teilzeitmit HomeofficeSeniorWalldorf, München, Berlin, Eschborn, St. Leon-Rot