Cyber Security Engineer

Job Title: Cloud Security Engineer

📍 Location: Remote, Germany (Hybrid)

🗣 Language Requirement: German (C1 level proficiency required)

Job Overview

We are looking for a Cloud Security Engineer to monitor, remediate, and support cloud security posture management in multi-cloud environments. The ideal candidate will have hands-on experience with CNAPP platforms, particularly Sysdig, to ensure compliance, manage vulnerabilities, and enhance cloud security controls.

Key Responsibilities

Cloud Security Monitoring & Incident Management

• Monitor & Remediate cloud security posture in multi-cloud environments.

• Utilize Sysdig CNAPP platform for asset discovery, compliance reporting, and workflow incident management.

• Create dashboards, CSPM (Cloud Security Posture Management), CDR (Cloud Detection & Response), and vulnerability reports in Sysdig.

• Triage security events, analyze cloud security alerts, and implement necessary remediation actions.

• Troubleshoot agent connectivity issues and upgrade to the latest Sysdig agent versions.

• Threat Hunting & Analysis: Create queries for threat detection and fine-tune threat response policies.

Incident Handling & Compliance

• Analyze security alerts in cloud-native and non-native security controls and take remediation actions.

• Raise and track ITSM tickets, ensuring incidents are assigned to the correct teams and resolved efficiently.

• Generate weekly/monthly cloud security assessments and remediation plans.

• Maintain compliance with security frameworks (CIS, NIST, ISO, CCMM, MITRE ATT&CK) and cyber regulations (GDPR, PCI-DSS, HIPAA, HITRUST, FISMA, SOX, CCPA).

• Map cloud assessments to CIS cloud benchmarks (AWS, Azure, GCP, Kubernetes, Docker) and provide remediation plans.

Reporting & Documentation

• Prepare incident reports, weekly/monthly security status updates, and RCA (Root Cause Analysis) documents.

• Conduct COC (Call of Coordination) meetings with stakeholders for major security incidents.

• Maintain and update SOPs (Standard Operating Procedures) and lessons learned documentation.

Leadership & Stakeholder Management

• Act as a senior member of the Cloud Security Engineering team, guiding support teams and managing resource planning.

• Mentor and provide technical guidance to stakeholders on cloud security incidents and remediation.

• Follow ITIL processes and best practices in security incident response.

• Work closely with internal and external auditors for security due diligence and compliance.

• Identify opportunities for enhancing cloud security standards and processes.

Required Qualifications & Skills

Technical Skills & Experience

✅ Cloud Security & CNAPP: Hands-on experience with Sysdig CNAPP platform for monitoring, compliance, and security incident management.

✅ Threat Detection & Incident Response: Ability to troubleshoot security issues, manage cloud security incidents, and conduct threat hunting.

✅ Compliance & Frameworks: Strong knowledge of cloud security benchmarks, CIS compliance, and regulatory requirements (GDPR, PCI-DSS, HIPAA, etc.).

✅ Monitoring & Reporting: Experience in creating dashboards, compliance reports, and vulnerability reports.

✅ Multi-cloud Environments: Experience with AWS, Azure, and GCP security configurations and controls.

✅ Scripting & Automation (Preferred): Familiarity with Terraform, Python, or PowerShell for security automation.

Certifications (Preferred, but not mandatory)

• Microsoft: AZ-500 (Azure Security Engineer), SC-200, SC-300, AZ-104

• AWS: AWS Certified Security – Specialty, AWS Solutions Architect (Associate/Professional)

• Google Cloud: GCP Cloud Security Certification, GCP CDL

• Industry Certifications: CCSP, CCSK

• CNAPP-specific Certifications: Any relevant Sysdig or CNAPP certification

Educational Background

🎓 Bachelor’s degree in Computer Science, Cybersecurity, Information Security, or a related technical field. Equivalent professional experience may be considered.

Why Join Us?

• Work remotely from Germany.

• Opportunity to work with cutting-edge security tools in multi-cloud environments.

• A dynamic, collaborative team with opportunities for career growth and certifications.

• Exposure to global security frameworks and compliance regulations.

If you meet the qualifications and are passionate about cloud security and compliance, we encourage you to apply! 🚀