Senior Manager - Infrastructure Security (Cloud Security)

TL;DR

Senior Manager - Infrastructure Security (Cloud Security): Leading the strategy for protecting cloud and corporate environments with an accent on "Secure by Design" philosophy and automated guardrails. Focus on driving the transition toward Security-as-Code and implementing preventive controls to ensure the platform scales securely by default.

Location: Hybrid (Berlin, Germany) — Must be based in or be able to relocate to Berlin, Germany (attendance in office 2 days a week)

Company

The world's pioneering local delivery platform operating in approximately 65 countries, headquartered in Berlin.

What you will do

• Lead and mentor a high-performing team of security engineers, fostering a culture of technical excellence and growth.
• Define the strategic roadmap for core security domains across global cloud and corporate infrastructure.
• Replace reactive manual checkpoints with automated policy-as-code and admission controls to validate changes before production.
• Architect unified, version-controlled security standards to eliminate ad-hoc configurations across all assets.
• Design scalable vulnerability governance processes and automation to prioritize and remediate infrastructure risks.
• Partner with SRE, DevOps, and Platform Engineering teams to co-design security solutions that maintain developer velocity.

Requirements

• Proven engineering leadership experience building teams in complex global environments.
• Deep technical knowledge of AWS and GCP security architectures, including identity boundaries and network isolation.
• Proficiency in driving automation via Terraform, CloudFormation, or similar Infrastructure as Code (IaC) tools.
• Experience implementing admission controllers and policy engines such as OPA, Gatekeeper, or Kyverno.
• Ability to translate complex technical vulnerabilities into clear business risks for prioritization.
• Experience architecting large-scale vulnerability management programs focusing on patching and configuration drift.

Nice to have

• Experience managing security consistency across complex, multi-account environments in both AWS and GCP.
• Familiarity with implementing technical controls for SOC2, ISO 27001, or PCI DSS.
• Professional certifications such as AWS Security Specialty, Google Professional Cloud Security Engineer, or CISSP.

Culture & Benefits

• Hybrid working model with 2 days a week at the Berlin campus.
• 27 days of holiday, with increases based on years of service.
• €1,000 educational budget, language courses, and access to Udemy Business.
• Health checkups, meditation, and subsidies for gym and bicycle.
• Employee Share Purchase Plan, Corporate Pension Plan, and Life & Accident Insurance.
• Digital and food vouchers, along with corporate discounts.