As our Head of Platform & Security, you'll take full ownership of the infrastructure, security, and compliance foundations that our product is built on. You'll be a key partner to our CTO and Engineering team — making sure we stay secure, certified, and scalable as we grow.
In your first few months, you might:
Complete our ISO 27001 certification and establish the processes to maintain it going forward
Take ownership of our Terraform configurations across AWS and GCP, improving structure and reliability
Respond to security questionnaires from enterprise customers, helping us close deals faster
Streamline employee IT onboarding and access management across our SaaS tooling stack
At Cosuno, we believe in giving people real ownership and trusting them to do their best work. For this role, that means:
High autonomy, high impact: You'll own your domains end to end — no one will be looking over your shoulder, but you'll always have the support of the CTO and Engineering team when you need it.
DevOps mindset: Our infrastructure is managed as code with Terraform, deployed to AWS and GCP via Kubernetes, with self-hosted CI/CD runners. You'll be working with a modern, well-structured stack.
Compliance as a product: We treat security and compliance seriously — not as a checkbox, but as a genuine part of how we build trust with enterprise customers.
Collaborative by default: You'll work closely with our Full Stack Engineering team, who can support on infrastructure when capacity allows.
You'll be a great fit if you have:
Full professional fluency in German and English — a significant part of our compliance and customer-facing security work is conducted in German, and this is a firm requirement
Hands-on experience with ISO 27001 — you've led or been deeply involved in a certification and know how audits actually work
Solid experience with cloud infrastructure (AWS and/or GCP) and infrastructure-as-code (Terraform)
Comfort operating Kubernetes in a production environment
The organisational maturity to manage multiple open threads — an audit, an RFI, an infra task — without things slipping
A pragmatic, ownership-driven mindset: you find both the technical and operational sides of this role interesting
Bonus points for:
Experience with compliance automation tooling (Vanta, Drata, Kertos, or similar)
Familiarity with GDPR operational requirements (DPAs, DSARs, vendor reviews)
CI/CD experience, including self-hosted runners
Prior experience at a B2B SaaS startup
Competitive Compensation: A competitive salary above the market average.
Work-Life Balance: Choose to work 100% remotely or from our modern office in Berlin. We offer flexible working hours to fit your life.
Top-Notch Equipment: A new MacBook Pro to ensure you have the best tools for the job.
A Great Team: Regular company off-sites and team events that connect us as people, not just colleagues.
Job Security: A permanent contract in a stable, well-funded company.
Cosuno – Revolutionizing construction through technology.
We are Cosuno – a fast-growing tech startup that is making the construction industry more efficient and transparent with our digital platform for tenders and procurement processes. Our goal: to solve the most complex challenges in the industry with innovation and simplicity.
Artificial intelligence is the key to our solution: it analyzes millions of price data points and helps construction companies create precise and efficient bids. This not only saves our customers time but also helps them avoid unnecessary costs.
But for us, it's not just about technology – it's about the people who drive it. At Cosuno, you will work with creative minds who are reshaping the construction industry. We believe in diversity because we know that the best ideas come from different perspectives. An integrative and inclusive work environment is a matter of course for us.
Join us – Build the future of construction.
Morgan Stanley
Edges Wellness Center LLC
WSP in Canada
Digitalenta
Cox Automotive Inc.
Cosuno
Cosuno
Cosuno