nemensis AG Engagement Hub

75% Remote: IT-Architekt (m/w/d) Anwendung zum Datenaustausch zw. Behörden - Kostenlose Einarbeitung

Nürnberg & Remote

Job-ID:

75338

Job veröffentlicht am:

26-05-2026

Zusammenfassung

Für einen Kunden aus dem öffentlichen Sektor suchen wir derzeit einen IT-Architekten (m/w/d) Anwendung zum Datenaustausch zw. Behörden.

WICHTIG: Für diese Position ist die Bereitschaft für eine SÜ2 (Sabotageschutz) notwendig. Zudem fordert der Kunde eine kostenfreie Einarbeitung von ca. 10% der Auftragssumme (ca. 80 Stunden).

Für diese Position können wir einen max netto Stundensatz von 86,00 € für vor Ort und remote anbieten.

Laufzeit: 01.07.2027 - 31.12.2026

Auslastung: 80% - 100% (800 Stunden)

Standort: 75% Remote | 25% Nürnberg (1 Woche Onsite pro Monat)

Tasks:

Konzeptionelle Fortentwicklung der IT-Anwendungsarchitektur
Entwurf für die Erstellung relevanter Komponenten in der fachlichen Architektur oder zur Anpassung bestehender fachlicher Architektur
Abstimmung mit technischer Architektur zum Entwurf einer stimmigen Gesamtarchitektur
Analyse der bestehenden und der SOLL-Architekturen zur Ableitung von Anpassungserfordernissen und fachlichen Anforderungen an die IT-Verfahren
Erstellung von fachlichen Anforderungen an die IT
Zusammenarbeit und Abstimmung mit den relevanten Stakeholdern
Analyse von Geschäftsprozessen im Hinblick auf die Umsetzungsplanung der Registermodernisierung
Erstellung von geeigneten Dokumenten und Unterlagen zur Aufbereitung der Analysen
Unterstützung bei der Erstellung des TLE
Vorbereitung und Durchführung von Workshops zur Informationsgewinnung und Informationsverteilung
Enge Zusammenarbeit mit der Business Analyse im Team zur Informationsgewinnung für fachliche Ziel-Architektur
Bewertung der Auswirkung von gesetzlichen Vorgaben im Rahmen RegMoG auf die Fachverfahren

Skills:

Gute technische Grundlagen und Verständnis der Architektur mit Stammdatenverwaltung und zwischenbehördliche Datentransfers über XÖV-Schnittstellen-Standards (Notwendig)
Gutes Verständnis der Architektur von vernetzten IT-Verfahren in komplexen IT-Landschaften von Bundesbehörden (Notwendig)
Sichere Kenntnisse der synchronen / asynchronen technischen Kommunikationsmuster und Containertechnologien, OSCI (Notwendig)

Hintergrund:

Die Registermodernisierung ist ein Kernvorhaben der Verwaltungsdigitalisierung. Sie hat zum Ziel, die Register von Bund, Ländern und Kommunen interoperabel nutzbar zu machen und insbesondere den Austausch von Nachweisdaten zwischen den Behörden zu vereinfachen. Bürger:innen und Unternehmen sollen ihre Daten nur einmal bereitstellen müssen. Öffentliche Stellen rufen diese dann automatisiert und rechtskonform aus den zuständigen Verwaltungsregistern ab. Hierbei spricht man vom Once-Only-Prinzip, das mit der Registermodernisierung erfüllt werden soll. Die zentrale, bundesweite Architektur zur Umsetzung dessen ist ein nationales technisches System zur einmaligen Datenbereitstellung.

Mehr Jetzt Bewerben

85% Remote: Penetration Tester (m/w/d) mit gültiger SÜ2 - inkl. kostenfreier Einarbeitung

Remote & Nürnberg

Job-ID:

75337

Job veröffentlicht am:

26-05-2026

Zusammenfassung

Für unseren Kunden suchen wir einen Penetration Tester (m/w/d) mit gültiger SÜ2 in Vollzeit, Remote und vereinzelt in Nürnberg.

Rahmenparameter:

Start: asap

Laufzeit: 31.01.2028

Auslastung: Vollzeit

Einsatzort: 85% remote und max. 15% vor Ort in Nürnberg

Budget: 90,00 € netto all-in remote & onsite

WICHTIG: Für diese Position ist eine kostenlose Einarbeitungszeit von 10 Tagen vorgesehen. Des Weiteren muss eine gültige SÜ2 vorhanden sein.

Aufgaben:

Planung, Durchführung von Infrastruktur- und Applikations-Penetrationstests für Projekte/Verfahren und Betrieb
Einsatz und Konfiguration von Penetrationstest-Tools, wie z.B. ZAP, BURP und weitere
Feintuning von Regelsets der eingesetzten Sicherheitstools bzw. Unterstützung bei der Erstellung von Regelsets für Verfahren/Projekte
Schwachstellen erkennen, verifizieren und Maßnahmen-Empfehlungen sowie Risikoeinschätzungen (Sicherheitsrisiken ermitteln, aufzeigen und priorisieren)
Nachhaltung und Unterstützung bei der Umsetzung von Maßnahmen
Testdokumentation / Finding-spezifische Tickets erstellen
Ergebnispräsentation
Kommunikation mit Projektteams / Verfahrensmitarbeitern
Nutzung der Ergebnisse aus Security Tools (Schwachstellen-Scanner, etc.)
Durchführung von Security Code Reviews und Sicherheitsanalysen (z.B. Github/Gitlab/BitBucket)
Unterstützung von Security Reifegrad-Audits
Unterstützung der Rollenträger bei der Erstellung von IT-Sicherheitsdokumentation

Skills:

Langjährige Erfahrung (optimal ca. 5 Jahre) beim Umgang mit Pentest-Tools wie BURP und OWASP ZAP
Vertiefte Kenntnisse in Java, TypeScript und Python
Grundkenntnisse und praktische Erfahrung mit JIRA und Confluence
Zertifikat „OSCP“ (Offensive Security Certified Professional) von Vorteil
Technisches und methodisches Wissen bezüglich Vorgehensweisen, Tools und Angriffsszenarien im Bereich Webanwendungssicherheit
Technisches und methodisches Wissen bezüglich Vorgehensweisen, Tools und Angriffsszenarien im Bereich mobile Apps Sicherheit
Technisches und methodisches Wissen bezüglich Vorgehensweisen, Tools und Angriffsszenarien im Bereich Sicherheit von Verzeichnisdiensten (LDAP, AD, etc.)
Technisches und methodisches Wissen bezüglich Vorgehensweisen, Tools und Angriffsszenarien im Bereich Netzwerksicherheit
Technisches und methodisches Wissen bezüglich Vorgehensweisen, Tools und Angriffsszenarien im Bereich Sicherheit von Betriebssystemen (Linux, Windows)
Erfahrung in Planung und Durchführung interner und externer Penetrationstests, Planung und Durchführung von Code-Reviews, Planung und Durchführung von Red Team Assessments
Erfahrung in der Überprüfung und Bewertung von Architekturkonzepten, Produkten und Technologien, Prüfung und Bewertung von Berechtigungskonzepten in komplexen IT-Infrastrukturen (Domain- bis Applikations-Level) und Durchführung von Bedrohungsanalysen
Gute Erfahrung in der Konfiguration und Einsatz von Security Tools (Schwachstellen-Scanner, Pentest-Tools, SAST, DAST, etc.)
Gute Deutsch- und Englischkenntnisse in Wort und Schrift

Mehr Jetzt Bewerben

DevOps Engineer (w/m/d) für Appian Plattform auf Kubernetes

Remote

Job-ID:

75336

Job veröffentlicht am:

26-05-2026

75% remote: Cloud Security Risk & Compliance Specialist (f/m/d)

Remote & Frankfurt am Main

Job-ID:

75270

Job veröffentlicht am:

22-05-2026

Zusammenfassung

For our client we are looking for a Cloud Security Risk & Compliance Specialist (f/m/d).

Start: 15.06.2026

Duration: 31.12.2026++

Capacity: 100%

Location: 75% Remote, 25% Frankfurt (occasionally, sometimes Berlin)

1 week Frankfurt / 3 weeks remote in rotation, up to 50% onsite in peak times

Language: English is a must (C1), German is a plus (C1)

Team:

Information Security, Risk and Compliance (ISRC) is a vital and independent function which focuses on embedding robust security and compliance practices throughout the product portfolio, platform management and architecture.

ISRC consults designing and managing secure systems for the cloud platform through leading security design, threat modeling, and compliance

initiatives to ensure a resilient architectural foundation.

Ensuring security related processes to enhance platform visibility and

implement streamlined, effective security workflows for operational integrity. Additionally, ISRC consults with all product lines to integrate DevSecOps practices, emphasizing secure code analysis, supply chain security, and automated security testing to deliver robust, secure product development lifecycles.

Tasks:

- Translate control objectives and compliance requirements into actionable technical controls and non-functional

requirements (NFRs)

- Drive and encourage of security review and consulting processes

- Provide technical guidance to Product Line Security Champions

- Ensure consistent adoption of controls and NFRs across the platform

Skills (must-have):

- Experience in security architecture principles, secure design patterns, DevSecOps and frameworks.

- SME-Experience in at least one following security domains:

o Security Architecture and Design, Cloud Security,

o Identity and Access Management (IAM), Application Security,

o DevSecOps and Automation,

o Incident Response and Resilience,

o Cryptography and Data Protection

- Experience in translating technical security requirements into actionable designs and documentation

Skills (should-have):

- Experience to design and implement security and compliance controls for platforms.

- Experience with threat modeling methodologies and risk assessment.

- Experience with DevSecOps practices and tools for integrating security into platform development

- Experience with cloud posture management and detection tools (CSPM, KSP, Workload protection)

- Good command and understanding of security & compliance standards and frameworks including ISO/IEC 27001, CSA CCM, BSI Grundschutz, CSI, NIST CSF, NIST OSCAL, etc.

- Experience in sector-specific regulations (e.g. NIS2, CRA, KRITIS, BSI C5, …)

- Good understanding of CNCF-related ecosystems (e.g. Kubernetes, KeyCloak, Kyverno, Trivy, etc.)

Mehr Jetzt Bewerben

75% remote: Technical Content Creator (f/m/d) Developer Education (Videos, Text, Trainings, etc.)

Frankfurt am Main, Remote

Job-ID:

75237

Job veröffentlicht am:

21-05-2026

Zusammenfassung

For our client we are looking for a Technical Content Creator (f/m/d) with experience in creating educational material for software developers in a cloud-native platform environment.

Start: 01.07.2026

Duration: 31.12.2026++

Capacity: 100%

Location: 75% Remote, 25% Frankfurt (occasionally, sometimes Berlin)

1 week Frankfurt / 3 weeks remote in rotation, up to 50% onsite in peak times

Language: English is a must (C1), German is a plus

Team:

The Developer Enablement and Technical Content function focuses on designing and delivering high-quality educational resources for application development teams using the cloud platform. Its primary objective is to enable developers to fully understand platform capabilities, apply established workflows effectively, and integrate the platform into their software development lifecycle.

This function is responsible for producing clear, engaging, and technically accurate learning materials tailored to developer audiences. These materials may include written tutorials, video walkthroughs, hands-on exercises, structured training sessions, and supporting enablement documentation. By doing so, it contributes to increasing platform adoption, strengthening developer confidence, and facilitating the effective use of the platform across development teams.

Tasks:

- Content creator for developer education

- Video content creator for developer enablement

- Hands-on educational sessions

- Manage content lifecycle – concept, develop, validate, communicate, gather and act on feedback

Skills (must-have):

Content Creation & Developer Enablement:

- Proven experience creating educational content for developers (tutorials, hands-on exercises, onboarding materials, walkthroughs, learning paths)

- Experience producing developer-focused video content (tutorials, demos, scripts, storyboards)

- Ability to design and deliver hands-on trainings, workshops, and technical learning sessions

- Strong storytelling skills to explain technical concepts in an engaging and accessible way

- Ability to translate complex technical concepts into clear, structured learning material

Technical Expertise & Practical Experience:

- Broad knowledge of cloud-native platforms and related technologies, including:

o Kubernetes and containerized deployments

o DevOps practices (CI/CD, GitOps, pipelines, release workflows)

o Secrets/configuration management and declarative infrastructure

o Data services (relational/NoSQL databases, Kafka, messaging systems)

o Application lifecycle management, observability, and runtime operations

- Familiarity with software development methodologies and SDLC in cloud environments

- Hands-on engineering experience with cloud-native platforms (e.g., live demos of Kubernetes, CI/CD, GitOps)

- Ability to work directly with technical products to validate usage and ensure content accuracy

- Understanding of platform engineering, developer platforms, or data platforms (strong plus)

Content Production & Tooling:

- Ability to create multimedia and visual materials (diagrams, slides, screenshots, demo flows, scripts)

- Experience with docs-as-code approaches (Markdown, Git-based workflows, static site generators)

- Proficiency with video production tools (e.g., OBS, Camtasia, DaVinci Resolve)

- Familiarity with structured documentation frameworks such as Diátaxis

Collaboration & Communication:

- Excellent written and verbal communication skills in English

- Strong collaboration mindset with experience working across cross-functional teams (product, engineering, QA, documentation, customer success, governance)

- Experience in international or multi-entity environments (advantage)

Analytical & Problem-Solving Skills:

- Ability to identify developer pain points, knowledge gaps, and improvement opportunities

- Strong analytical thinking to continuously enhance enablement materials and learning experiences

Skills (should-have):

- Experience in organizations operating in the energy, utility, or infrastructure sectors

- Familiarity with agile development methodologies and tools (e.g., Scrum, SAFE, JIRA, Confluence).

- Fluent German/French in speech and writing (at least B2)

Mehr Jetzt Bewerben

75% remote: Python Developer (f/m/d) for cloud infrastrcutre

Frankfurt am Main, Remote

Job-ID:

75204

Job veröffentlicht am:

21-05-2026

Zusammenfassung

For our client we are looking for a Python Developer (f/m/d).

Start: 01.07.2026

Duration: 31.12.2026++

Capacity: 100%

Location: 75% Remote, 25% Frankfurt (occasionally, sometimes Berlin)

1 week Frankfurt / 3 weeks remote in rotation, up to 50% onsite in peak times

Language: English is a must (C1), German is a plus

Team:

Within the Infrastructure Product Line of the program, the ICE (Infrastructure Cloud Engine) platform provides the software components and APIs that enable the provisioning of virtual infrastructure resources.

To strengthen this area, we are seeking consultancy to implement our component architecture and drive software development efforts.

The consultant will be responsible for ensuring the implementation of the architectural design and to plan, drive and execute engineering efforts within the delivery. This includes coordinating engineering tasks and following robust quality assurance practices.

Tasks:

• Writing production grade source code to implement architecture design specifications.

• Writing unit tests and providing code documentation.

• Actively participating in activities such as agile ceremonies.

• Making technical decisions within the boundaries set by architecture design.

• Communication of decisions to peers, architecure and relevant stakeholders.

• Generate and communicate status reports to stakeholders, e.g. architects and delivery.

• Facilitation of meetings and presentation of technical concepts in simple terms to medium sized audiences.

• Providing guidance to other development stakeholders

• Ensuring on-time delivery of application features and/or entire software components.

Skills (must-have):

- 8+ Year of Experience in professional Software Development using High-Level programming languages.

- Advanced Python (3.9+) proficiency. Strong command of asynchronous programming (asyncio, aiohttp, etc.), multiprocessing, and concurrency models.

- Extensive experience with Python frameworks for building scalable APIs and services, specifically FastAPI.

- Expertise in modular software design, with an emphasis on separation of concerns and maintainable codebases.

- Strong grasp of type hinting, dependency injection, and automated testing frameworks (pytest, unittest, or equivalent).

- Experience working with multiple database paradigms: Relational (PostgreSQL), NoSQL (Redis, MongoDB, ArangoDB/Neo4J). Experience with database libraries like SQLAlchemy.

- Deep understanding of microservice design principles, including service boundaries, state management, inter-service communication (REST, gRPC, or message queues) and API design.

- Thorough understanding of application and API security principles and related frameworks and technologies OAuth2 OIDC.

Skills (should-have):

- Proficient in database integration for microservices — able to design schema and data models per service and manage data consistency and performance.

- Hands-on experience with containerizing services.

Mehr Jetzt Bewerben

75% remote: Atlassian Suite Engineer (f/m/d)

Zwickau

Job-ID:

75138

Job veröffentlicht am:

21-05-2026

Zusammenfassung

For our client we are looking for an Atlassian Suite Engineer (f/m/d).

Start: 29.06.2026
Duration: 31.12.2026++
Capacity: 100%
Location: 75% Remote, 25% Frankfurt (occasionally, sometimes Berlin)
1 week Frankfurt / 3 weeks remote in rotation, up to 50% onsite in peak times
Language: English is a must (C1), German is a plus (C1)- nice to have

Team:
Organizational Development (OD) is one of the supporting functions, covering the procedural organization as well as the structural organization and parts of the program governance. One main artifact owned by OD is the operating model which covers, amongst others, the structural organization (Org Chart, Roles, Team Structures), the procedural organization (Process Management Framework, Process Landscape) and the governance structure

Tasks:
- Analyze existing and target processes together with process owners, functional leads and implementation teams
- Derive functional and non-functional requirements for Jira, Confluence, JSM and related plug-ins from the processes
- Translate requirements into concrete tool capabilities like Jira project configurations, issue types, fields, statuses, transitions, permissions, automations, reports and dashboards
- Develop and continuously improve workflow concepts for teams, ensuring alignment with program-wide standards while allowing sufficient flexibility for team-specific needs
- Document implemented workflows, configuration decisions, process-tool mappings and usage guidelines in a structured and reusable way
- Identify gaps between current process execution and current tool usage, and propose pragmatic improvements or new tool capabilities
- Conceptualization of the design and implementation of templates, boards, spaces, documentation structures and onboarding flows within the Collaboration Suite
- Create, maintain and optimize reports, filters, queries and dashboards to increase process transparency, progress tracking and decisions
- Coordination with architecture, IAM, platform, security and toolchain stakeholders to ensure that process-driven requirements are feasible within the broader Collaboration Suite architecture
- Contribute to the evaluation of plug-ins, extensions and software enhancements by defining the underlying process need, expected value, usage scenarios and acceptance criteria
- Consulting on the definition of role and permission models from a process perspective and coordinate implementation with IAM and platform stakeholders
- Facilitate workshops with stakeholders to collect requirements, validate workflow proposals and give recommendations on adoption across project teams
- Act as the functional bridge between process design, product management, implementation and technical platform/tooling stakeholders

Skills (must-have):
- Proven experience in translating business, organizational, or process requirements into practical workflows, configurations, and functional designs within Jira, Confluence, JSM, and/or related Atlassian tools
- Experience in analyzing existing process landscapes, identifying improvement potential, and deriving tool-based solutions that support efficient collaboration, transparency, and governance
- Ability to structure ambiguous requirements and translate them into clear functional specifications, user stories, configuration concepts, and implementation-ready requirements
- Experience and solid understanding of product delivery (Scrum, SAFe, Mutli-Release Management, Platform Engineering)
- Profound knowledge of the Atlassian Suite, namely Jira, Confluence and JSM
- Strong understanding of Jira workflow design, including issue types, fields, statuses, transitions, permissions, boards, filters, dashboards, reports, and automation concepts
- Hands-on attitude with the ability to work closely with process owners, product management, implementation teams, board owners, and technical platform/tooling teams
- Experience in defining and maintaining reporting structures, dashboards, filters, and queries to support process transparency, progress tracking, and decision-making
- Good understanding of role and permission concepts within Jira, Confluence, and/or JSM, including coordination with IAM or platform teams where required
- Experience in creating structured documentation, guidelines, templates, and onboarding material for the use of Atlassian-based collaboration tools across teams

Skills (shloud-have):
- Experience and solid understanding of product operations (ITIL / ITSM, DevOps, SRE, etc.) Familiarity with service management processes such as incident, change, and request management
- Experience defining governance principles for workflows, permissions, templates, naming conventions, and reporting standards
- Experience in evaluating plug-ins, extensions, or software enhancements from a functional and process-driven perspective, including defining usage scenarios, expected value, and acceptance criteria
- Experience deriving integration requirements for Atlassian tools, e.g. CMDB, external ticketing, GitLab, notification or reporting tools

Mehr Jetzt Bewerben

75% remote: Cloud Security Operations Engineer (f/m/d)

Frankfurt am Main, Remote

Job-ID:

75072

Job veröffentlicht am:

21-05-2026

Zusammenfassung

For our client we are looking for a Cloud Security Operations Engineer (f/m/d).

Start: 29.06.2026

Duration: 31.12.2026++

Capacity: 100%

Location: 75% Remote, 25% Frankfurt (occasionally, sometimes Berlin)

1 week Frankfurt / 3 weeks remote in rotation, up to 50% onsite in peak times

Language: English is a must (C1), German is a plus (C1)

Team:

Information Security, Risk and Compliance (ISRC) is a vital and independent function which focuses on embedding robust security and compliance practices throughout the product portfolio, platform management and architecture.

ISRC consults designing and managing secure systems for the cloud platform through leading security design, threat modeling, and compliance

initiatives to ensure a resilient architectural foundation.

Ensuring security related processes to enhance platform visibility and

implement streamlined, effective security workflows for operational integrity. Additionally, ISRC consults with all product lines to integrate DevSecOps practices, emphasizing secure code analysis, supply chain security, and automated security testing to deliver robust, secure product development lifecycles.

Tasks:

- SecOps Tooling Engineering

- Incident Response activities

- Detection engineering

Skills (must-have):

- Experience with engineering background in SIEM/SOAR, EDR platforms, log ingestion, telemetry pipelines, scripting (Python, PowerShell, Go), and cloud-native security tooling

- Experience with infrastructure-as-code, CI/CD toolchains, and container orchestration platforms (Kubernetes

- Experience with threat modelling, detection engineering frameworks, developing TTP matrixes, and MITRE ATT&CK

- Experience creating architectural diagrams, interface specifications, and onboarding guidelines

- Experience in Logging and detection solutions for cloud architecture

Skills (should-have):

- Experience with Wazuh

- Experience with Observability platforms and Open Telemetry

- Experience in SOC Analyst Tier 1-3 roles or understanding of security operations centers

- Experience in security frameworks (BSI, ISO 27001, MITRE ATT&CK, etc.)

- Experience in GCP or public cloud provider

- Experience in related DFIR or blue team domains (CySA+, GIAC, GCIH, BTL)

- Experience in Kubernetes security (CKS or CNCF related)

Mehr Jetzt Bewerben

80% Remote: SAP FI Tester (m/w/d) Öffentlicher Sektor - Kostenlose Einarbeitung

Nürnberg & Remote

Job-ID:

74907

Job veröffentlicht am:

21-05-2026

React / ChatBot Frontend Developer

Job-ID:

75039

Job veröffentlicht am:

21-05-2026

Ihre Suchanfrage

Our use of cookies

Ihre Suchanfrage

Senden Sie mir ähnliche Jobs

Our use of cookies