Вакансия из Telegram канала - Мэтч & Сопровод
Покажет вашу совместимость и напишет письмо
Описание вакансии
Senior Platform Security Engineer (d/f/m).
Location: #Berlin, Germany.
Salary: Competitive.
Employer: Aignostics.
Responsibilities:
• Secure our cloud foundation in GCP and AWS: Design and implement technical security controls for our GCP and AWS infrastructure, including Kubernetes, storage services, VPCs, Cloud Run, and cloud-native workloads to protect sensitive healthcare data and AI models in alignment with our existing ISO 27001 controls.
• Secure our working environment: Support the integration of platform components and services into our Central Identity Provider (IDP) and the improvement of self-service access, and privileged access management across cloud services.
• Manage vulnerabilities at scale: Strengthen our CVE management processes and automate vulnerability scanning for containers and infrastructure.
• Automate security at scale: Develop security-as-code solutions using Terraform, create CI/CD security gates using policy-as-code, and build automated remediation workflows to embed security into our development lifecycle.
• Enable secure development: Partner with engineering and data science teams to provide technical platform security consultation, create self-service security patterns, and educate developers on security best practices in alignment with Security Awareness Program.
Requirements:
• Proven experience: 5+ years in cloud security or platform security engineering, with a track record of securing complex, cloud-native infrastructure in production environments.
• Cloud security expertise: Deep experience securing GCP and/or AWS environments, with strong knowledge of IAM, PAM, network security, and container platforms.
• Identity and access management: Proven experience conceptualizing and implementing centralized identity provider solutions, SSO & SCIM, and authentication frameworks.
• Vulnerability management: Experience building CVE management programs, implementing automated scanning solutions, and driving remediation processes.
• Security automation skills: Strong programming and scripting abilities (Python, Bash, Go) to automate security processes, build security tools, and integrate security into CI/CD pipelines.
• Outstanding communicator: Ability to explain complex security concepts to technical and non-technical audiences, drive technical platform security decisions, and collaborate across teams (fluent in English, German is a plus).
• Critical eye: Contribute to the discovery, prioritization and mitigation of technical vulnerabilities.
• Compliance knowledge: Understanding of security compliance frameworks (ISO 27001, GDPR, HIPAA) and experience implementing controls to meet regulatory requirements.
⚡
#Офис #ИБ
Location: #Berlin, Germany.
Salary: Competitive.
Employer: Aignostics.
Responsibilities:
• Secure our cloud foundation in GCP and AWS: Design and implement technical security controls for our GCP and AWS infrastructure, including Kubernetes, storage services, VPCs, Cloud Run, and cloud-native workloads to protect sensitive healthcare data and AI models in alignment with our existing ISO 27001 controls.
• Secure our working environment: Support the integration of platform components and services into our Central Identity Provider (IDP) and the improvement of self-service access, and privileged access management across cloud services.
• Manage vulnerabilities at scale: Strengthen our CVE management processes and automate vulnerability scanning for containers and infrastructure.
• Automate security at scale: Develop security-as-code solutions using Terraform, create CI/CD security gates using policy-as-code, and build automated remediation workflows to embed security into our development lifecycle.
• Enable secure development: Partner with engineering and data science teams to provide technical platform security consultation, create self-service security patterns, and educate developers on security best practices in alignment with Security Awareness Program.
Requirements:
• Proven experience: 5+ years in cloud security or platform security engineering, with a track record of securing complex, cloud-native infrastructure in production environments.
• Cloud security expertise: Deep experience securing GCP and/or AWS environments, with strong knowledge of IAM, PAM, network security, and container platforms.
• Identity and access management: Proven experience conceptualizing and implementing centralized identity provider solutions, SSO & SCIM, and authentication frameworks.
• Vulnerability management: Experience building CVE management programs, implementing automated scanning solutions, and driving remediation processes.
• Security automation skills: Strong programming and scripting abilities (Python, Bash, Go) to automate security processes, build security tools, and integrate security into CI/CD pipelines.
• Outstanding communicator: Ability to explain complex security concepts to technical and non-technical audiences, drive technical platform security decisions, and collaborate across teams (fluent in English, German is a plus).
• Critical eye: Contribute to the discovery, prioritization and mitigation of technical vulnerabilities.
• Compliance knowledge: Understanding of security compliance frameworks (ISO 27001, GDPR, HIPAA) and experience implementing controls to meet regulatory requirements.
#Офис #ИБ
Будьте осторожны: если вас просят войти в iCloud/Google, прислать код/пароль, запустить код/ПО, не делайте этого - это мошенники. Обязательно жмите "Пожаловаться" или пишите в поддержку. Подробнее в гайде →
Текст вакансии взят без изменений
Источник -
