logo
Alle Stellen anzeigen

IT Security Specialist

Festanstellung, Vollzeit · Hybrid
Your journey

About the Role


At Erasys, we develop and operate Romeo, one of the world’s leading online platforms for the gay, bi and trans dating community. Our mission is to create a safe and inclusive digital space where millions of users can connect, communicate, and express themselves freely. Because our platform processes highly sensitive personal and identity-related information, security and privacy are absolutely fundamental to everything we do.

We are seeking a proactive IT Security Specialist to strengthen our cybersecurity posture and ensure the protection of Romeo’s critical systems, user data, and digital infrastructure. This role involves monitoring, analyzing, and responding to security threats while implementing preventive measures across networks, applications, and endpoints.

You will collaborate with Software development, InfraOps, and business teams to ensure the confidentiality, integrity, and availability of our systems and data.




Key Responsibilities

  • Security Monitoring & Incident Response

    • Monitor networks and systems for security breaches or intrusions.

    • Investigate and respond to alerts, security incidents, and vulnerabilities.

    • Perform root cause analysis and recommend corrective actions.

  • Risk Management & Compliance

    • Conduct regular risk assessments and vulnerability scans.

    • Ensure compliance with GDPR and other data protection regulations.

    • Support compliance with standards such as ISO 27001, GDPR, or NIST.

    • Maintain up-to-date documentation for security policies and procedures.

  • Infrastructure & Endpoint Security & MDM

    • Administer firewalls, IDS/IPS, endpoint protection, and network access controls.

    • Manage and optimize MDM platforms for secure mobile and remote device management.

    • Ensure consistent patching and configuration management across all systems.

  • Identity & Access Management (IAM)

    • Ensure proper user access controls and privilege management.

    • Enforce MFA, SSO, and least-privilege policies across infrastructure and cloud services.

  • Security Awareness & Training

    • Conduct security awareness and GDPR compliance training for all employees.

    • Promote secure behavior and data privacy best practices.

  • Project Support

    • Provide security input during IT, cloud, and development projects.

    • Collaborate with InfraOps and engineering teams to integrate security and privacy controls into deployments.





We look for

Required Skills & Experience 

  • Minimum 3 years of professional experience in IT security, cybersecurity, or related technical fields.

  • Strong understanding of network security, operating systems (Windows, Linux, MacOS), and cloud environments (AWS, Azure, or GCP).

  • Hands-on experience with:

    • Firewalls, VPNs, IDS/IPS, and endpoint protection solutions.

    • Security information and event management (SIEM) tools.

    • Vulnerability management and patching processes.

  • Solid grasp of risk assessment, incident response, and threat mitigation.

  • Understanding of GDPR, ISO 27001, NIST, or CIS Controls.
Must-Have-Qualifications:

  • Bachelor’s degree in Computer Science, Information Security, or related discipline (or equivalent experience).

  • Proficiency in security tools such as Cortex XDR, CrowdStrike, SentinelOne, or Splunk.

  • Knowledge of compliance requirements (GDPR, ISO 27001, SOC 2).

  • Excellent analytical and communication skills, with the ability to translate technical risks into business terms.

  • Strong documentation skills and attention to detail.


Nice to have would be

  • Industry certifications such as CompTIA Security+, CEH, CISSP, CISM, or GIAC.

  • Experience with threat intelligence, penetration testing, or forensics.

  • Exposure to automation and scripting (Python, PowerShell, Bash).

  • Experience with application security testing tools such as SAST (e.g., SonarQube), DAST (e.g., OWASP ZAP, Burp Suite), or IAST solutions.

  • Knowledge of DevSecOps practices and integrating security into CI/CD pipelines.

  • Experience working in a regulated or ISO-certified environment.


Tech Stack
Operating Systems
  • Ubuntu
Databases & Queues
  • MariaDB
  • ElasticSearch
  • Redis
  • RabbitMQ
Web & Proxy Services
  • Nginx
Orchestration & Automation
  • Kubernetes
  • Terraform
  • Ansible, AWX
  • RKE (Rancher Kubernetes Engine)
  • Rancher
  • GitLab CI/CD
  • Mesos / Marathon
Monitoring & Observability
  • Zabbix
  • Prometheus
  • Graphana
  • New Relic


What We Offer
  • Everything you need to do a great job (MacBook etc.)
  • Free weekly German classes to help you adjust to Berlin life.
  • Wellpass gym access and a lot of other perks.
  • Flexible hours with hybrid working between our great offices and from home.
  • A friendly, diverse group of colleagues from all different nationalities, genders and orientations!
Reach out to us and become part of our story! We are looking forward to reading about your motivation and seeing your CV.
Auf diese Stelle bewerben
About us

At ROMEO, we’re on a mission to connect 3 million queer people worldwide for Dates, Friends, and Love. As a Senior Backend Developer, you’ll play a crucial role in modernizing and maintaining our platform’s backend systems. Join our diverse team of 54 professionals based in Berlin at Erasys, where we offer a hybrid work environment with flexible options for both home and office work.

Auf diese Stelle bewerben
Wir freuen uns auf Sie!
Wir freuen uns über Ihr Interesse an der erasys GmbH. Bitte füllen Sie das folgende kurze Formular aus. Sollten Sie Schwierigkeiten mit dem Upload Ihrer Daten haben, wende Sie sich gerne per Email an office@erasys.de.
Datenschutzerklärung
Dokument wird hochgeladen. Bitte warten Sie.
Fügen Sie alle erforderlichen (mit einem * gekennzeichneten) Angaben hinzu, um Ihre Bewerbung abzusenden.