DevOps Security Engineer

maxon is a global provider of world-class precision drive systems. Our drives are perfectly suited for wherever extreme precision and the highest quality standards are necessary - on Earth, and on Mars. For creative minds and passionate doers, we offer a global yet trusted environment. Those who are prepared to explore endless pos-sibilities and challenge themselves will rise to great heights with us.

Our headquarters is located in Switzerland, and we have multiple sites worldwide. We established a new office in Barcelona, which allows us to connect with the latest innovation and technologies. For our site in Barcelona, we are looking for an enthusiastic, motivated individual to join us immediately or by agreement .

 

Your area of responsibility

• Secure by Design: You integrate security into our CI/CD pipelines and development lifecycle – from static code analysis (SAST) to container scanning – ensuring that security checks run as seamlessly and effi-ciently as other quality gates.
• Empower Developers: You support development teams early in the process ("shift left") by conducting threat modeling, defining security-related user stories, and promoting secure coding practices through training and guidance.
• Stay Ahead: You proactively manage vulnerabilities by monitoring advisories (e.g., CVEs), coordinating penetration tests, analyzing scan results, and continuously improving our security posture.
• Shape Policy: You define and implement security controls and policies for cloud, Kubernetes, and infra-structure-as-code environments – ensuring compliance with data protection and industry standards through automated checks in the pipeline.
• Respond & Learn: You build automated incident response workflows, collaborate with the Security Opera-tions Center (if available), and foster a transparent security culture by sharing insights and lessons learned with DevOps teams.

This job is perfect for you if you...

• Live and breathe security: You bring 2–3 years of experience in Cloud Native Security and DevSecOps, with strong knowledge of security principles, tools (e.g., SAST/DAST, SIEM), and frameworks like OWASP, ISO 27001 or CIS Benchmarks.
• Think like a developer: You understand the software development lifecycle, have hands-on experience with CI/CD pipelines and scripting, and ideally some programming background to automate tests or review code for vulnerabilities.
• Understand modern architectures: You're familiar with cloud platforms, containerization (Docker, Kuber-netes), and microservice architectures – and can derive secure designs from complex systems.
• Automate everything: You’re confident working with infrastructure automation and security tooling in DevOps environments, including policy as code (e.g., Open Policy Agent) and security gates in CI/CD.
• Communicate with impact: You enjoy coaching and inspiring cross-functional teams, translating security topics into actionable guidance, and promoting a culture of shared responsibility for security.
  Have a university degree in computer science or comparable vocational training – career changers with a solid IT background are welcome!
  You are fluent in English and enjoy working in an international, cross-functional team.

What We Offer

• A dynamic and friendly working environment in an inspiring setting
• Working in an office with a startup vibe, backed by the stability of a solid mid-sized company
• An international environment with regular contact with employees in Switzerland and other locations
• A permanent position with a competitive salary based on your experience
• Flexible annual working hours and a hybrid model of work that allows you to balance your professional goals with your personal aspirations

Your Contact

Are you interested in this varied role? We look forward to receiving your application.

e-Mail: mcsx@maxongroup.com 
maxon | Barcelona | www.maxongroup.com