Founding Full-Stack Engineer (Python) (m/f/d)

Pinnipedia is a new Berlin startup building a cloud platform that automates and assists the creation of audit-ready IT-security concepts (e.g., BSI-Grundschutz, C5). We’re IGP-funded (2025/26) and co-develop with FU Berlin and pilot users from industry and security consulting. We’re hiring a Full-Stack Engineer (Python) to build our multi-tenant SaaS: secure services & APIs, a pragmatic web app, auth/RBAC, audit logging, and CI/CD with quality gates. You’ll own features end-to-end (design → code → tests → deploy → observe) and work closely with our Product Owner and AI Engineer. Tasks Backend & APIs (~60%) Design and implement Python services (FastAPI/Django), REST/JSON (OpenAPI), background jobs. Model data and write performant SQL (PostgreSQL); maintain migrations. Add tests (pytest), logging/metrics, and sensible error handling. Frontend & integration (~15–20%) Build/extend a modest UI (React/Vue or server-rendered) for admin workflows. Integrate authentication/authorization (OIDC/OAuth2), file handling, and external APIs. Platform, quality & security (~15–20%) Containerise (Docker), automate CI/CD (GitHub Actions), review PRs, enforce code quality. Apply privacy/security by design (RBAC, audit trails, config secrets, least privilege). Collaboration (~10%) Work from a clear backlog; estimate, deliver, and document changes; participate in sprint rituals. Requirements Must-have 4+ years Python building production web backends/APIs. Strong SQL/PostgreSQL; testing with pytest; CI/CD and code reviews. Comfort with containers (Docker) and cloud deployment basics. Product mindset, clean code, and good documentation; English required (German nice-to-have). Nice-to-have React/Vue or server-rendered UIs; OAuth/OIDC; event-driven patterns. Kubernetes/Terraform; observability (Prometheus/Grafana); security/audit logging. Benefits Hybrid, full-time with flexible scheduling; occasional on-site days near Berlin/Brandenburg (Ketzin/Havel). Competitive salary: 60.000–85.000 € base (higher possible for exceptional seniors). Small, focused team; direct collaboration with the Product Owner, AI Engineer, and partners. Modern tooling, ownership, and a learning budget for relevant training/certs. Impact: help SMEs meet rising security requirements with less friction. Apply on JOIN with your CV (PDF) and a short note (max 200 words) on how you’d structure service boundaries, logging, and metrics for a new FastAPI service. Process: 20-min intro → 90-min practical (coding + system design) → 45-min team chat → references. We review applications within 5 business days.