🛠 Tech Stack

💼 About This Role

You'll shape next-generation security capabilities at HelloFresh, working across Cloud, Application, Offensive, and GenAI Security. You'll build scalable internal security products and self-service capabilities that help engineering teams move faster and safer. This role is deeply technical and builder-minded, driving security-by-design at scale.

🎯 What You'll Do

• Own secure design and architecture across HelloFresh.
• Define security architecture for AWS, Kubernetes, and cloud environments.
• Build cloud security guardrails with automation and policy-as-code.
• Lead offensive security activities like penetration testing and purple teaming.

📋 Requirements

• 8+ years in security or software engineering.
• Deep hands-on AWS experience with IAM, Kubernetes, networking.
• Strong application security experience including threat modeling and SDLC security.
• Engineering skills in Python, Go, Java, or TypeScript.

✨ Nice to Have

• Experience securing GenAI, LLM, or AI agent systems.
• Familiarity with CNAPP, SAST, DAST, SCA, IaC scanning tools.
• Offensive security experience including penetration testing or red teaming.

🎁 Benefits & Perks

• 🥗 Exclusive discounts on HelloFresh box and office meals.
• 📚 German language learning budget and access to HelloFresh Academy.
• 🧘 Mental health support via Headspace and Spill.
• 💪 24/7 gym access and hybrid working model.
• 🛡️ Pension scheme with HelloFresh subsidy.

📨 Hiring Process

Estimated timeline: 2-4 weeks · AI estimate

1. 1Recruiter screen· 30 min
2. 2Technical interview· 60 min
3. 3Hiring manager interview· 45 min