Job Drop BerlinYOUR WAY INTO BERLIN TECH
POST A JOBSAVED JOBSMEET A STARTUPREADSUBSCRIBE
NewsletterLinkedIn
AboutTermsImpressumPrivacy

Site Reliability Engineer - Access Team

NN26
Seniority
Midweight
Model
In-Office
Sector
Fintech
Salary
Undisclosed
Contract
Full-Time

About the role

We are seeking a Site Reliability Engineer to join the Platform Engineering Domain in the Access Team. Be responsible for designing and maintaining the systems that govern how humans and services access our AWS environment. You will ensure that access is "least-privilege" by default, automated, and audit-ready.

What you'll do

  • Manage and scale our Teleport infrastructure for secure access to servers, databases, and Kubernetes clusters.
  • Develop and maintain automated Identity and Access Management (IAM) workflows within AWS.
  • Implement and improve Just-In-Time (JIT) access solutions to reduce our permanent attack surface.
  • Collaborate closely with the Cloud Control team to integrate security policies into the core infrastructure provisioning process.
  • Automate authorization flows to ensure regulatory compliance without slowing down engineering velocity.
  • Maintain and improve our Infrastructure-as-Code (Terraform) for all access-related components.
  • Support internal and external audits by providing technical evidence and ensuring our access protocols meet strict regulatory standards; proactively identify gaps in our current access landscape and drive initiatives to remediate them.
  • Create monitors and alerts for access patterns, diagnosing and resolving issues related to authentication and authorization services.

What you'll need

  • Production expertise in Amazon Web Services (AWS), specifically with IAM, Organizations, and Multi-account security.
  • Hands-on experience with Access Management tools, preferably Teleport, or similar PAM/JIT solutions.
  • Strong experience with Terraform for managing cloud resources and security policies.
  • Solid understanding of Linux systems and networking fundamentals (OIDC, SAML, SSH, TLS, TCP/IP).
  • Experience programming in Go and/or Python to automate security workflows.
  • Familiarity with compliance frameworks and a proven ability to translate audit requirements into technical solutions.
  • Experience with container orchestration (Docker, Kubernetes) from an access and RBAC perspective.
  • A "Security-first" mindset with a proactive approach to solving complex permission issues.

What they offer

  • Competitive personal development budget, work from home budget, discounts to fitness & wellness memberships, language apps and public transportation.
  • Hybrid work model with dedicated team day in office plus one day of your choice, flexibility for remote work the rest of the time.
  • Premium subscription on personal N26 bank account plus subscriptions for friends and family members.
  • Additional day of annual leave for each year of service.
  • High degree of autonomy and access to cutting edge technologies.
  • Relocation package with visa support for those who need it.
APPLY →