Johann Wiedmeier

DevSecOps & Security Engineer

I help regulated organisations ship securely — and pass the audit.

Cloud-native security for critical-infrastructure environments. 10+ years across the public sector, healthcare, and payments — including the Deutsche Rentenversicherung, AOK, and Deutsche Bahn — securing Kubernetes/OpenShift delivery and CI/CD against NIS2 · DORA · BSI.

Johann Wiedmeier
AWS Certified Solutions Architect - Associate Oracle Certified Associate Java Programmer 8 iSAQB Certified Professional for Software Architecture - Foundation Level

Experience across

Deutsche Rentenversicherung AOK Deutsche Bahn Deutsche Telekom Vorwerk

Public sector & KRITIS · Healthcare (ePA/Gematik) · Payments · Mobility · Telecommunications

What I do

DevSecOps & Security

  • Kubernetes & OpenShift Hardening
  • Secure CI/CD Pipelines
  • Security Reviews & Secure SDLC
  • Container & Supply-Chain Security

Cloud & Platform

  • AWS Cloud
  • Kubernetes & OpenShift
  • CI/CD & GitOps (ArgoCD)
  • Infrastructure as Code

Architecture & Backend

  • Java, Spring & Quarkus
  • Microservices & DDD
  • Cloud-native Architecture
  • iSAQB CPSA-F

Selected Projects

DevSecOps & Security Champion

Deutsche Rentenversicherung Bund

Securing cloud-native delivery in a KRITIS environment: secure CI/CD, security reviews, and Secure Development Lifecycle.

Kubernetes OpenShift Security

Electronic Health Record (ePA)

AOK Systems GmbH

Secure data processing for 37 million insured in a regulated healthcare environment (mTLS, Gematik).

mTLS Gematik Kubernetes

Payments & Subscription Platform

Vorwerk Services GmbH

Subscription and payment systems with pentest support, 3-D Secure, and hardened external integrations.

Payments Pentest AWS