Team Lead - Application Security Team (all genders)

Join us as a Team Lead - Application Security Team (all genders) in our AppSec team and help shape the future of autonomous mobility!

The Application Security (AppSec) team is part of MOIA’s Platform Engineering organization and contributes directly to our secure-by-design approach. We operate as a service provider and partner to engineering teams, helping establish security best practices and guardrails across the development lifecycle. 

Our scope includes areas such as cloud security posture management, CI/CD hardening, threat modelling, compliance automation, incident response, and tool development to support other teams. We also create and maintain reusable security components and templates, like scanning boilerplates, and collaborate on topics such as security configuration policies and network protection mechanisms. 

The team has an international background and is based in Hamburg and Berlin. We value a hands-on, builder-oriented culture while integrating selected third-party tools where they add value. As a young and growing team, we emphasize practical learning — for example, by running Capture-the-Flag exercises or similar challenges to keep our skills sharp. 

What you will do

• Lead and drive MOIA’s cloud-based security projects and programs in their implementation, ensuring compliance with relevant standards and maintaining a strong security posture across the organization. 

• Support certification initiatives such as ISO 27001 and TISAX, preparing documentation and enabling audit activities for successful readiness. 

• Identify security gaps and risks, align with internal teams to define remediation actions, and continuously improve our security controls and processes. 

• Collaborate closely with Digital Workplace/IT, engineering, and compliance teams to integrate security principles into cloud and software development workflows. 

• Partner with external consultants for penetration tests, audits, and continuous improvement of cloud and application security. 

• Lead and establish Security Monitoring activities, ensuring a good proactive posture, proper incident response and investigation, as well as derived hardening measures. 

• Shape MOIA’s strategic Cloud Cybersecurity roadmap and align it with Vehicle Cybersecurity initiatives, as well as with other teams with a stake in cybersecurity. 

• Promote secure and responsible use of AI across development workflows, enabling teams to innovate safely and confidently. 

• Enable and support the use of code scanning, SBOM, compliance-as-code, identity-as-code, and similar security and compliance solutions across the organisation.

What will help you to fulfill your role 

• Proven experience in leading teams or people within cybersecurity or related technology domains, fostering collaboration and accountability. 

• Understanding of information security frameworks (e.g., ISO 27001, TISAX, NIS2) and hands-on experience with audits and/or certifications 

• Strong expertise in cloud security (AWS or GCP), combined with a strategic mindset to align cloud and vehicle cybersecurity domains. 

• Practical experience in security operations, including incident handling and response management. 

• Familiarity with AI technologies and enthusiasm for enabling secure AI adoption within development and operational teams. 

• Excellent communication and stakeholder management skills, both with internal teams and external partners. 

• Ability to balance strategic thinking with hands-on implementation in a fast-moving, cross-functional environment. 

• A continuous improvement mindset and a passion for building sustainable, secure, and innovative mobility solutions. 

• Good knowledge of application security frameworks and methodologies (e.g. OWASP Top 10, OWASP SAMM). 

• Ability to communicate fluently and effectively in English (must have) and German (nice to have).

We welcome applicants from diverse backgrounds — even if you don’t meet every requirement. If you’re excited about the role and MOIA’s mission, we’d love to hear from you!

Our benefits in a nutshell

• Competitive salary (including bonus)  
• Hybrid work setup: Work from home or one of our offices - you and your team decide how often to meet, blending flexibility with collaboration! 
• Flexible working hours and the possibility of flexible work arrangements depending on your needs (parenting, care work, volunteering, etc.) 
• Budget and monthly expense allowance for home office setup 
• Possibility of remote work from outside Germany for up to 6 weeks per year from over 35 countries - learn more in our blog!
• Public transport ticket (fully subsidized "Deutschlandticket") for commuting and travelling throughout Germany and discount on MOIA rides
• Subsidized fitness club membership or bike leasing 
• Learning environment with continuous learning days, job rotation, trainings and workshops, coaching, conferences, books, and language classes 
• Mental health support, 1:1 sessions with external professionals and mental unload workshops 
• 30 vacation days, sabbatical and unpaid leave option 
• Relocation support with service provider (visa, administration, etc.) 
• Dog-friendly offices

For student & internship positions, we have an adjusted set of benefits. You can find them here. 

Be who you are!

We are a member of Charta der Vielfalt and are dedicated to actively fostering a workplace that celebrates and promotes diversity in various aspects such as age, gender identity, race, sexual orientation, physical or cognitive ability, and ethnicity. At MOIA, we embrace a culture where people are accepted, respected, valued, appreciated, and included.

In our commitment to promoting diversity and inclusivity, we regularly provide unconscious bias training to all our employees. Furthermore, we continuously strive to enhance our hiring process by ensuring a diverse hiring panel.

How we work

At MOIA, our teams are typically distributed across locations and collaborate in a hybrid setup. We work together both remotely and on site, choosing the mode of collaboration that fits the context, the work at hand, and each team’s rhythm.

Spending time together in our offices is an important part of how we stay connected, build trust, and solve complex problems. At the same time, we value flexibility and give teams and individuals autonomy to shape their ways of working, with everyone having the freedom to organise their routines in a way that aligns with their work and their team’s needs.

If you’d like to learn more about how we work, visit our blog for insights into our culture and hiring process, or follow us on Instagram for a look behind the scenes at MOIA.

Who we are

At MOIA we’re reimagining the future of mobility – safe, autonomous and tailored to the needs of cities and their people. As a tech company with more than 400 employees, we build mobility solutions that truly move cities forward.

We launched our ridepooling service in Hamburg in 2019 and have been part of the city’s public transport system since 2023. Since launch, we have transported over 12 million passengers. Currently, MOIA is evolving from a mobility provider to a tech provider offering a scalable and safe turnkey solution for autonomous driving. 

With office locations in Berlin and Hamburg, our diverse and international team comprising more than 60 nationalities works together toward that shared mission. 

MOIA is more than a technology provider – we are a partner to cities and public transport operators committed to creating more livable spaces and delivering mobility solutions that are reliable, safe and comfortable.

Your application to MOIA

We value authenticity and personal insights in your application responses. While AI tools can be useful, we encourage you to answer the following questions based on your own experiences and understanding. This helps us keep a human touch and better evaluate your unique perspective and match for the role.

To reinforce an unbiased screening process, we kindly ask you not to include your picture, age, address, or any other details unrelated to your qualifications and suitability for the role. Additionally, we anonymize applications during the initial review phase by removing personally identifiable information. This ensures that our evaluation focuses solely on your skills, experience, and potential – supporting a fair and inclusive hiring experience for all candidates.