Share this Job

DevSecOps Security Expert (m/f/d)

Date: Sep 11, 2022

Location: MÜLHEIM, Germany

Company: Telefonica S.A.

Contract type: full-time, unlimited 
Location: Munich, Düsseldorf, Berlin (Teltow), Nuremberg, Hamburg 
Entry: At the earliest possible date 
Working anywhere. After a successful application process, you have the opportunity to work anywhere in Germany. You will be assigned to the nearest Telefónica location according to your place of residence. We will discuss further details with you during the application process. 


Who we are? 

We are o2/Telefónica - with our mobile brands we connect millions of people and offer our customers mobile freedom in the digital world. As a leading telecommunications provider, we are also playing a key role in shaping digitisation in Germany. Our fixed and mobile networks form the backbone for the digital transformation of the economy and society. And our approximately 8,000 employees in Germany drive the transformation forward every day - in our own company as well. 

Telefónica is one of the top employers in Germany and is part of the global telecommunications group Telefónica S.A. with 114,000 committed employees worldwide.  

You too can become part of our unique team and let us make a difference together! 


Purpose of this job: As a DevSecOps Security Expert, you will enable Telefonica’s development teams in creating secure products that allow our customers to enjoy their digital journey, in a trusted and reliable manner. You will act as a subject matter expert in the product security field and work with experts in various areas of security to ensure the security Telefonica’s products and platforms.


What are your challenges with us? 

  • Act as subject-matter expert on secure application architecture and development
  • Work with development teams in analyzing, rating and estimating impacts of vulnerabilities on source level, and evaluating the effectiveness of the solution
  • Conduct research on new vulnerability patterns and support in driving the timely resolution of critical vulnerabilities throughout the organization
  • Evaluating state-of-the-art security solutions that suit the requirements of a cutting-edge cloud technology stack
  • Work with various functions within the organization to perform Threat Modeling, derived security testing activities, and presenting the risks and required remediation activities to management
  • Participate in the security culture & awareness activities, share your technical expertise with the broader development community, and support in the establishment of a security interest group


What are you bringing? 

  • Bachelor/ Master/ PhD degree in Computer Science / Information Technology or equivalent experience
  • Minimum 6 years of relevant work experience, including hands-on engineering skills on code level, and proven ability to contribute at both tactical and operational security programs
  • 3+ years of experience in working in the field of SSDLC governance
  • Strong background in working in complex DevOps and DevSecOps environments
  • Solid security fundamentals of security concepts, threats, vulnerabilities, risks, defenses, security principles, and security standards
  • Knowledge in the adaption of one or more security controls in the field of security testing but also on operative security measures (various kind of security scan tools like SAST, DAST, fuzzing; various kinds of network measures like WAF, DLP)
  • Knowledge and experience in the automation and integration of security controls into the development process are a plus
  • Strong background experience in cyber security, working within large and complex organisations/projects
  • Strong Stakeholder Management experience at technical levels
  • Ability to translate complex security risks into simple business requirements and ability to raise awareness about Security best practices to business audiences
  • Excellent written and spoken English, ability to effectively communicate to technical and non-technical audiences. The same in German is advantageous


Your Benefits 

Workplace: Modern and ergonomically equipped offices, as well as an open space and open desk model. 

Communication: A smartphone of your choice for business and private use as well as the possibility to provide for your partner, friends and family via credit is a matter of course for us. 

Catering is taken care of: Free coffee specialties and water are at your disposal at any time as well as a canteen and a cafeteria. 

Individual development: With a personal development plan and continuous training you will reach your goals with us. In addition, with "Beyond" you can also get a taste of other interesting areas by means of job or project rotations.  

Retirement provision: Various models of retirement provision are available to you (e.g. capital-forming benefits, company pension scheme, etc.) 

Social commitment: We are also involved outside the company, you have the opportunity to participate in Telefónica "Volunteering Days" or "Volunteering Holidays", for example. 

Health: Under FEEL GOOD you will find a wide range of offers for your personal health and the compatibility of work and leisure. It ranges from exercise and relaxation programmes, webinars and cooperation projects to a comprehensive range of advice on child and elderly care and psychosocial counselling.  


How to apply and what else you should know? 

Convince us with your meaningful curriculum vitae as well as corresponding certificates. You do not need a letter of motivation with us. Please note that applications are only possible via our applicant portal and applications by e-mail cannot be considered. 

Do you have questions about our application process and are you interested in further information about the position? Please reach out to our Talent Operations Team (talent-operations


In case of same qualification, applicants (m/f/d) with severe disability will be preferred. All gender are equally welcome.