Cyber Security Engineer

Job Title: Senior Cloud Security Engineer

Employment Type: Permanent, Full-time

Locations: Kraków or Warsaw, Poland (Hybrid)

Language Requirement: Fluent German & proficient English

About the Role

We’re looking for a German-speaking Cloud Security Engineer who can own the design, deployment, and continuous improvement of a modern Cloud-Native Application Protection Platform (CNAPP) across AWS, Azure, and GCP. You’ll work with international teams and enterprise clients to harden cloud environments, automate prevention and detection controls, and lead the response to emerging threats.

What You’ll Do

Platform & Engineering

• Implement, operate, and tune Sysdig (or comparable CNAPP) for CSPM, CWPP, KSPM, CIEM and CDR use-cases.
• Onboard multi-cloud accounts, subscriptions, and Kubernetes clusters; resolve agent and connectivity issues end-to-end.
• Integrate CNAPP with SIEM, ticketing, and other third-party security tools; automate policy enforcement.
• Build and refine compliance, vulnerability, and drift-prevention policies mapped to CSA CCM, CIS Benchmarks, NIST, ISO 27001, etc.

Cloud Security Architecture

• Design and review secure architectures and guardrails for IaaS, PaaS, and SaaS.
• Deploy native controls such as Azure Defender, AWS GuardDuty, and GCP Security Command Center.
• Guide customers through cloud security assessments, remediation projects, and managed services.

Incident Response & Leadership

• Drive escalation, communication, and resolution of zero-day or high-severity cloud incidents.
• Provide technical leadership to internal and client teams; develop SOPs that improve operational stability.
• Mentor junior engineers; deliver workshops that upskill developers in cloud security fundamentals.

What You’ll Bring

Must-Have Skills & Experience

AreaRequirements

Cloud Security

5+ years in cybersecurity, 3+ years hands-on cloud security (Azure preferred, plus AWS/GCP).

CNAPP

Proven end-to-end deployment and administration of Sysdig, Wiz, Prisma Cloud, or equivalent.

Native Controls

Deep knowledge of at least three toolsets across Azure, AWS, and GCP (Defender Suite, GuardDuty, Chronicle, etc.).

Container & K8s Security

Practical experience securing containers, images, and Kubernetes clusters.

Scripting & IaC

Proficiency with PowerShell, Python, KQL, Terraform, Ansible, JSON/YAML; able to automate security controls.

Languages

Fluent German (B2+), strong written and spoken English.

Certifications (one or more required)

• Azure AZ-500, SC-200/300, or AZ-104
• AWS Security Specialty or Solutions Architect (Associate/Pro)
• GCP Cloud Security Engineer (CDL)
• CCSP, CCSK, or relevant CNAPP vendor certification (Sysdig, Wiz, Prisma)

Nice to Have

• CISSP, OSCP, or other advanced security certifications
• Experience leading cross-functional cloud security programs at enterprise scale
• Knowledge of governance standards such as FedRAMP, GDPR, or GovCloud

Why Join Us?

• Impact: Shape security for mission-critical, multi-cloud environments used by global enterprises.
• Growth: Continuous learning budget, certification sponsorships, and exposure to cutting-edge CNAPP technologies.
• Culture: Collaborative, international teams with a strong engineering and knowledge-sharing mindset.
• Flexibility: Hybrid work model with modern offices in Kraków and Warsaw.