Senior Systems Engineer (d/f/m)

People, Workplace & IT
Full Time
Berlin
Apply now

Personio's intelligent HR platform helps small and medium-sized organizations unlock the power of people by making complicated, time-consuming tasks simple and efficient. Our team of 1,500 Personios is building user-friendly products that delight our 15,000+ customers and their 1.5 million employees. Ready to make an impact from day one?

This role requires 3 days per week in the office and is based in Berlin.

AppMan Engineering is a senior IT engineering team within Personio's IT function. We own and operate the identity platform, employee lifecycle automation, Google Workspace, AWS-hosted IT infrastructure, monitoring and alerting, and internal IT application development. We work closely with Security, DevOps, Data, and business system owners across the company.

This is a senior individual contributor role with real ownership from day one. The identity platform is the central system through which every Personio employee's access to every application is governed. You own it: the access model, the lifecycle automation that keeps it accurate, the integrations that connect it to the rest of the business, and the self-service and governance layers on top. You also contribute to the broader IT infrastructure, automation tooling, and internal application development that AppMan runs.

The role suits someone with a solid IT engineering or DevOps background who solves problems before they become tickets, communicates clearly with both technical and non-technical stakeholders, and knows how to get things done in a small team.

 


Role Responsibilities: What you'll do

  • Own Personio's identity platform Okta: the access model and group hierarchy, access policies, user lifecycle, and the automation that provisions and deprovisions access across 150+ applications as employees join, move, and leave; Personio HRIS is the source of truth

  • Build and operate the self-service and governance layers: access request workflows, approval routing, entitlement reviews, and the reporting that makes access decisions auditable

  • Build and maintain integrations across key business platforms including Google Workspace, Slack, Atlassian, Salesforce, and CrowdStrike using Python, AWS Lambda, Okta Workflows, and n8n

  • Build and maintain Terraform-managed configuration for IT-owned platforms; contribute to CI/CD practices, observability, and operational resilience

  • Maintain monitoring, alerting, and backup solutions using Datadog, CloudWatch, and OpsGenie; support security controls including EDR, DLP, VPN, and conditional access

  • Partner with stakeholders across IT, Security, Data, and DevOps; mentor junior engineers and act as a senior escalation point for complex platform and integration issues

Role Requirements: What you need to succeed

  • 4-6 years in IT engineering, systems engineering, platform engineering, or a broad DevOps-oriented role

  • Hands-on experience operating an enterprise identity platform at scale: designing access models, building lifecycle automation for joiner, mover, and leaver flows, and working with provisioning protocols including SAML, OIDC, OAuth 2.0, SCIM, and LDAP; Okta or an equivalent platform preferred

  • Experience building automation using Python, scripting, low-code / iPaaS tooling, and serverless technologies such as AWS Lambda; hands-on Terraform in a production environment

  • Practical familiarity with AWS services including Lambda, S3, DynamoDB, Step Functions, EventBridge, and CloudWatch

  • Working knowledge of DevOps practices: version control, CI/CD, testing, and configuration management; experience with security controls including EDR, VPN, DLP, and conditional access

  • Clear written and verbal communication in English; comfortable working across technical and non-technical stakeholders; familiarity with SOC2, ISO 27001, or GDPR through delivery is a plus

Why Personio

Personio is an equal opportunities employer, committed to building an integrative culture where everyone feels welcomed and supported. We embrace uniqueness and understand that our diverse, values-driven culture makes us stronger. We are proud to have an inclusive workplace environment that will foster your development no matter your gender, civil status, family status, sexual orientation, religion, age, disability, education level, or race.

At Personio, we value in-person collaboration while also offering flexibility. This role is office-based, with 3 days per week required in your contracted office location. The remaining days can be worked from home or in the office if you prefer. In addition, you’ll have 20 Flex Days per year to work remotely from other locations.

Aside from our people, culture, and mission, check out some of the other benefits that make Personio a great place to work:

  • Receive a competitive reward package – reevaluated each year – that includes salary, benefits, and pre-IPO equity

  • Enjoy 28 days of paid vacation, plus an additional day after 2 and 4 years

  • Make an impact on the environment and society with 1 Impact Day per year

  • Receive generous family leave, child support, mental health support, and sabbatical opportunities

  • We enjoy gathering for meals, cultural initiatives, and events like local Summer Sessions and year-end celebrations. There's also healthy snacks, drinks, and a weekly catered lunch.

Apply now