IT Security Engineer responsible for analyzing security risks and protecting cloud systems. Collaborating with diverse teams to implement security policies and manage incidents.
Responsibilities
Protect our systems and cloud environments: You continuously analyze security risks, implement modern security standards, and ensure the protection of our cloud infrastructure and critical enterprise systems
Define clear security policies and processes: You further develop our security policies, standardize security processes, and ensure their application across the organization
Drive security awareness and training: You raise security awareness through training, workshops, and proactive communication with all teams
Maintain structured incident and risk management: You detect security incidents early, coordinate their handling, produce analyses, and continuously improve our incident response procedures
Ensure compliance (PCI, ISO, NIS2): You support the company in meeting external standards, prepare audits, and guide departments through compliance requirements
Monitor our core security mechanisms: You analyze security-critical components, support our monitoring and audit processes, and provide transparency on security-relevant events
Collaborate closely with product, IT, and engineering teams: You assist other teams in designing secure solutions, reduce risks, simplify security processes, and contribute to a secure, scalable overall architecture
Ensure a secure software development process: You expand our secure software development lifecycle (SSDLC), advise teams on security-related issues, and ensure that security reviews are a reliable part of our processes.
Requirements
You identify security risks early and think proactively in terms of solutions
You have an excellent understanding of how software, infrastructure, and cloud systems interact
Assessing the security of systems, services, and processes is your passion
Nice-to-have: Experience with compliance standards such as ISO 27001, PCI DSS, or NIS2
Nice-to-have: Experience with security testing (e.g., SAST, DAST, vulnerability scans)
Understanding of secure development and infrastructure processes (SSDLC, cloud security, IAM, risk management)
Analytical thinking when evaluating security incidents and vulnerabilities
Strong communication skills – able to explain technical risks clearly
Basic knowledge of cloud environments (GCP/AWS) and automated workflows (e.g., CI/CD)
Nice-to-have: Familiarity with security tools & standards such as SIEM, SSO/MFA, audits, policies
Benefits
100% remote work, provided you can ensure a stable internet connection
The stability of an extremely successful German high-tech company that has retained its start-up spirit over the years
Regular on-the-job training and professional development
International team with strong camaraderie
Regular team events in various European countries
State-of-the-art technical equipment
Responsibility from day one
Work in a team with informal address (du), no dress code, and a culture of mutual respect
Hiring a Threat Modeler / Security Architect with development background for hybrid full - time role in Canada, focusing on application security, threat modeling, and DevSecOps.
Network and Perimeter Security IT Specialist I at Enbridge overseeing enterprise security architecture and leading large - scale security initiatives. Collaborating across teams to ensure secure solutions and compliance.
Network & Perimeter Security Specialist II - Firewall at Enbridge enhancing security architectures. Providing technical leadership and driving enterprise standards for firewall and network security.
Lead critical cybersecurity transformation programmes at Hewlett Packard Enterprise, ensuring alignment with enterprise priorities and delivering complex initiatives. Collaborate with IT, cybersecurity, and business leaders.
Staff Engineer responsible for designing scalable security solutions and collaborating with engineering at Twilio. Empowering security partnerships across products and platforms while mitigating risks.
Head of Infrastructure & Security responsible for cloud infrastructure on GCP and security programs. Leading SaaS development and technical teams at Rebus and Longbow Advantage.
Information Security Lead responsible for managing security programs at Dentons Canada. Overseeing security architecture, operations, incident response, and data protection initiatives.
Cybersecurity expert overseeing information defense, threat detection, and incident response at Investissement Québec. Leading security operations and leveraging AI for effective asset protection.
Lead cybersecurity initiatives and develop strategy for public broadcaster CBC/Radio - Canada. Shape technology road map, collaborate on enterprise architecture, and ensure policy compliance.