Cloud & Infrastructure Security Engineer (Azure)

TL;DR

Cloud & Infrastructure Security Engineer (Azure): Securing cloud and endpoint environments for a space company with an accent on configuring complex security controls, auditing IT operations, and managing Identity and Access Management. Focus on defining hardening standards, automating defense, and investigating security incidents within the Microsoft ecosystem.

Location: Onsite in Ottobrunn, Bavaria, Germany

Company

hirify.global is a fast-growing company building modern space business to enable faster, better and cheaper access to space with sustainable launch solutions for satellites.

What you will do

• Secure the Microsoft ecosystem by defining and implementing policies in Intune and Office 365.
• Act as a technical auditor for the IT team, verifying configurations against security baselines and closing gaps.
• Manage Identity and Access Management (IAM) controls within Entra ID, enforcing MFA, Conditional Access, and PIM.
• Operate and tune security monitoring tools (SIEM, XDR) to investigate and coordinate incident remediation.
• Develop and maintain "Gold Standard" configuration baselines for Operating Systems and Cloud Services.
• Automate security checks, streamline incident response, and integrate security tools using scripting.

Requirements

• 3–5+ years of experience in Information Security, Security Engineering, or Cloud Infrastructure with a specific focus on the Microsoft ecosystem.
• Deep hands-on experience with Azure, Office 365, and Intune to configure policies.
• Experience with at least one major cloud platform (specifically Azure) and its native security services (Defender for Cloud, Sentinel).
• Ability to technically audit other teams' configurations against security benchmarks and internal standards.
• Proficiency in log analysis and security telemetry for troubleshooting security incidents.
• Basic to intermediate scripting skills (e.g., PowerShell, Python) to automate tasks and validations.

Nice to have

• Understanding of SASE platforms and network segmentation controls.
• Microsoft certifications such as SC-200, MS-500, or AZ-500.
• Experience applying CIS Benchmarks or similar hardening standards in a production environment.

Culture & Benefits

• Share in success through an Employee Participation Program with virtual company shares.
• Enjoy 30 days of vacation and a company pension plan with a 20% employer contribution.
• Stay energized with subsidised lunches and commute with ease using a fully financed Deutschlandticket.
• Stay fit with sponsored sports club memberships (EGYM Wellpass).
• Grow skills with an individual learning allowance and receive a childcare allowance for non-school-age children.