CrawlJobs Logo
Aignostics Logo Aignostics · IT - Software Development

Senior Cloud Security Engineer

Germany, Berlin · Job Posted January 03, 2026
Apply Position
Job Link Share

Job Description

As a Senior Cloud Security Engineer at Aignostics, you will be a key member of our Platform Engineering & IT department, reporting to the Head of Platform Engineering & IT. Working hand in hand with our team and external collaborators in academia and industry, you will safeguard the infrastructure that powers digital pathology innovation. You'll own security end-to-end — from edge deployments at partner sites and workforce endpoint devices through to GKE clusters, Cloud Run, storage services, network architecture, central IAM, and AI training pipelines. You'll be responsible for conceptualizing, leading, and owning security initiatives that protect sensitive healthcare data, ensure compliance with industry standards, and enable our developers to build secure-by-default solutions.

Job Responsibility

  • Secure our cloud foundation in GCP and AWS: Design and implement security controls for our GCP and AWS infrastructure, including Kubernetes, storage services, VPCs, Cloud Run, and cloud-native workloads to protect sensitive healthcare data and AI models
  • Architect central identity management: Evolve our central Identity Provider (IDP) — unifying authentication, authorization, self-service access, and privileged access management across cloud services
  • Manage vulnerabilities at scale: Strengthen our CVE management processes and automate vulnerability scanning for containers and infrastructure
  • Automate security at scale: Develop security-as-code solutions using Terraform, create CI/CD security gates using policy-as-code, and build automated remediation workflows to embed security into our development lifecycle
  • Enable secure development: Partner with engineering and data science teams to provide security consultation, create self-service security patterns, and educate developers on security best practices

Requirements

  • 5+ years in cloud security or platform security engineering, with a track record of securing complex, cloud-native infrastructure in production environments
  • Deep experience securing GCP and/or AWS environments, with strong knowledge of IAM, PAM, network security, and container platforms
  • Proven experience conceptualizing and implementing centralized identity provider solutions, SSO & SCIM, and authentication frameworks
  • Experience building CVE management programs, implementing automated scanning solutions, and driving remediation processes
  • Strong programming and scripting abilities (Python, Bash, Go) to automate security processes, build security tools, and integrate security into CI/CD pipelines
  • Ability to explain complex security concepts to technical and non-technical audiences, drive security decisions, and collaborate across teams (fluent in English, German is a plus)
  • Understanding of security compliance frameworks (ISO 27001, GDPR, HIPAA) and experience implementing controls to meet regulatory requirements

Nice to have

  • GitOps expertise: Experience working with Argo CD, Terraform, GitOps pipelines, and implementing policy-as-code with tools like OPA/Gatekeeper or Kyverno
  • Security monitoring chops: Hands-on with Prometheus, Grafana (Loki/Tempo), SIEM platforms like OX Security, or GCP Security Command Center to detect and respond to threats
  • Secrets management experience: Practice with HashiCorp Vault, Google Secret Manager, or similar tools for secure credential management and rotation
  • DevSecOps mindset: Experience embedding security into CI/CD pipelines, implementing automated security scanning, and creating security gates without blocking developer velocity
  • Endpoint security knowledge: Familiarity with mobile device security policies, MDM solutions, and endpoint security in healthcare environments
  • Platform builder mentality: Experience creating internal security platforms or self-service security tools (like Backstage plugins) that enable developers to implement security correctly
  • Healthcare industry context: Experience in healthcare, life sciences, or regulated industries, with understanding of compliance requirements and data protection needs in medical technology

What we offer

  • Cutting-edge AI research and development, with involvement of Charité, TU Berlin and our other partners
  • Work with a welcoming, diverse and highly international team of colleagues
  • Opportunity to take responsibility and grow your role within the startup
  • Expand your skills by benefitting from our Learning & Development yearly budget of 1,000€ (plus 2 L&D days), language classes and internal development programs
  • Mentoring program, you’ll learn from great experts
  • Flexible working hours and teleworking policy
  • Enjoy your well-deserved time off within our 30 paid vacation days per year
  • We are family & pet friendly and support flexible parental leave options
  • Pick a subsidized membership of your choice among public transport, sports and well-being
  • Enjoy our social gatherings, lunches, and off-site events for a fun and inclusive work environment
  • Optional company pension scheme
Aignostics - All Job Offers

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Suggested Tags: Frontend Developer Secretary Talent Manager Salesforce Administrator Data Analyst
Similar Jobs for

Senior Cloud Security Engineer

8 matching positions

Senior Cloud Security Engineer

Take the next step in your career with this exciting 7 month extendable contract...
Location
Location
Canada , Calgary
Salary
Salary:
Not provided
https://www.randstad.com Logo
Randstad
Expiration Date
July 03, 2026
Flip Icon
Requirements
Requirements
  • At least 7 years of experience in security engineering with a focus on cloud environments
  • Hands-on expertise with Zscaler (ZIA/ZPA) and the CrowdStrike suite of tools
  • Strong technical background in AWS security technologies and best practices
  • Proficiency in scripting and automation using tools like PowerShell, Python, or Bash
  • Excellent communication skills with the ability to work effectively with internal stakeholders
Job Responsibility
Job Responsibility
  • Design and maintain security controls across AWS and other multi-cloud environments
  • Manage and optimize Zscaler Internet Access and Private Access deployments to ensure secure connectivity
  • Administer Proofpoint environments to protect against email threats and data loss
  • Deploy and manage the CrowdStrike Falcon platform for endpoint protection and incident response
  • Investigate security events and coordinate remediation efforts across the organization
  • Develop automation scripts using Python or PowerShell to improve security workflows
  • Conduct regular security reviews and risk assessments for hybrid cloud infrastructures
What we offer
What we offer
  • Access to a long-term contract with the potential for extension or permanent conversion based on performance
  • Work with a modern, industry-leading security stack including Zscaler, Crowdstrike, and Proofpoint
  • Gain high visibility as the primary technical specialist for security governance and enforcement
  • Collaborate within a large, diverse team of 30 security and infrastructure experts
  • Engage in a role that values autonomy and empowers you to lead security projects from start to finish
  • Fulltime
!
Read More
Arrow Right

Senior Cloud Security Engineer

We’re searching for a Senior Cloud Security Engineer. You will be part of the Cl...
Location
Location
United States , San Francisco
Salary
Salary:
162000.00 - 235000.00 USD / Year
aurora.tech Logo
Aurora Innovation
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5+ years of progressive experience in security engineering
  • Understanding of fundamental security concepts such as Authentication, Authorization, Zero-Trust, and their application to cloud native infrastructure and applications
  • Hands-on experience in securing cloud and Kubernetes environments
  • Experience with Kubernetes admission controllers, vulnerability management, supply-chain security, network security, and use of mTLS and PKI to secure infrastructure
  • Ability to design and implement security controls for Kubernetes, including strong knowledge of authorization models, admission controllers, and security best practices
  • Understanding of modern Identity and Access Management (IAM) standards and technologies such as OAuth2/OIDC, SAML
  • Proficiency in at least one modern programming/scripting language (e.g., Python or Go) for building security automation
  • Experience writing and using Terraform.
Job Responsibility
Job Responsibility
  • Secure Aurora’s cloud environment in the areas of but not limited to: Manage IAM roles and policies
  • Enforce security controls
  • Construct security boundaries for resources and services
  • Provide security guidance involving Cloud and Kubernetes
  • Create automation to solve security problems at the root
  • Design, build, and configure security infrastructure clouds such as like AWS, Azure, or GCP
  • Manage the security posture of workloads deployed on Kubernetes environments.
What we offer
What we offer
  • Annual bonus
  • Equity compensation
  • Benefits.
  • Fulltime
Read More
Arrow Right

Senior Cloud Security Engineer

Aurora’s Cloud Security team’s mission is to design and build security capabilit...
Location
Location
United States , Seattle
Salary
Salary:
162000.00 - 235000.00 USD / Year
aurora.tech Logo
Aurora Innovation
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5+ years of progressive experience in software, platform, or security engineering
  • Minimum of 3+ years focusing exclusively on public cloud security (AWS required)
  • Experience in identifying and managing security risk
  • Expert-level, hands-on experience securing and operating complex environments in AWS, including expertise with IAM, VPC Networking, Security Hub, Config, GuardDuty, and KMS
  • Proven ability to design and implement security controls for Kubernetes (EKS), including strong knowledge of authorization models, admission controllers, and security best practices
  • Expertise in one or more Identity and Access Management (IAM) standards and technologies: PKI, OAuth2/OIDC, SAML, and commercial solutions like Okta
  • Strong proficiency in at least one modern programming/scripting language (e.g., Python or Go) for building security automation, tools, and remediation services
  • Experience writing, reviewing, and scaling infrastructure with Terraform
Job Responsibility
Job Responsibility
  • Design, implement, and maintain the next generation of security infrastructure, controls, and primitives natively within AWS and across our Kubernetes (EKS) platform
  • Define Security as Code: Drive the adoption of Infrastructure as Code (IaC) principles (e.g., Terraform) to codify, deploy, and continuously monitor security controls and policies in an auditable and scalable manner
  • Strategic Threat Modeling: Lead threat modeling exercises for critical systems and architectures, translating risks into prioritized security requirements and verifiable controls
  • Architectural Guidance: Provide security guidance and consulting for product and platform engineering teams, conducting in-depth security design reviews and providing pragmatic, hands-on recommendations for securing complex microservice architectures
  • Automate Remediation: Identify systemic security weaknesses and create robust, scalable automation (e.g., Python/Go-based tools, Lambda functions, EKS controllers) to eliminate classes of vulnerabilities at the source
What we offer
What we offer
  • Annual bonus
  • Equity compensation
  • Fulltime
Read More
Arrow Right

Senior Cloud Security Engineer

Aurora’s Cloud Security team’s mission is to design and build security capabilit...
Location
Location
United States , Pittsburgh
Salary
Salary:
146000.00 - 211000.00 USD / Year
aurora.tech Logo
Aurora Innovation
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5+ years of progressive experience in software, platform, or security engineering
  • Minimum of 3+ years focusing exclusively on public cloud security (AWS required)
  • Experience in identifying and managing security risk, and the ability to navigate the organizational friction to manage these risks
  • Expert-level, hands-on experience securing and operating complex environments in AWS, including expertise with IAM, VPC Networking, Security Hub, Config, GuardDuty, and KMS
  • Proven ability to design and implement security controls for Kubernetes (EKS), including strong knowledge of authorization models, admission controllers, and security best practices
  • Expertise in one or more Identity and Access Management (IAM) standards and technologies: PKI, OAuth2/OIDC, SAML, and commercial solutions like Okta
  • Strong proficiency in at least one modern programming/scripting language (e.g., Python or Go) for building security automation, tools, and remediation services
  • Experience writing, reviewing, and scaling infrastructure with Terraform
Job Responsibility
Job Responsibility
  • Design, implement, and maintain the next generation of security infrastructure, controls, and primitives natively within AWS and across our Kubernetes (EKS) platform
  • Define Security as Code: Drive the adoption of Infrastructure as Code (IaC) principles (e.g., Terraform) to codify, deploy, and continuously monitor security controls and policies in an auditable and scalable manner
  • Strategic Threat Modeling: Lead threat modeling exercises for critical systems and architectures, translating risks into prioritized security requirements and verifiable controls
  • Architectural Guidance: Provide security guidance and consulting for product and platform engineering teams, conducting in-depth security design reviews and providing pragmatic, hands-on recommendations for securing complex microservice architectures
  • Automate Remediation: Identify systemic security weaknesses and create robust, scalable automation (e.g., Python/Go-based tools, Lambda functions, EKS controllers) to eliminate classes of vulnerabilities at the source
What we offer
What we offer
  • Annual bonus
  • Equity compensation
  • Fulltime
Read More
Arrow Right

Senior Cloud Security Engineer

Aurora’s Cloud Security team’s mission is to design and build security capabilit...
Location
Location
United States , Mountain View
Salary
Salary:
162000.00 - 235000.00 USD / Year
aurora.tech Logo
Aurora Innovation
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5+ years of progressive experience in software, platform, or security engineering
  • Minimum of 3+ years focusing exclusively on public cloud security (AWS required)
  • Experience in identifying and managing security risk, and the ability to navigate the organizational friction to manage these risks
  • Expert-level, hands-on experience securing and operating complex environments in AWS, including expertise with IAM, VPC Networking, Security Hub, Config, GuardDuty, and KMS
  • Proven ability to design and implement security controls for Kubernetes (EKS), including strong knowledge of authorization models, admission controllers, and security best practices
  • Expertise in one or more Identity and Access Management (IAM) standards and technologies: PKI, OAuth2/OIDC, SAML, and commercial solutions like Okta
  • Strong proficiency in at least one modern programming/scripting language (e.g., Python or Go) for building security automation, tools, and remediation services
  • Experience writing, reviewing, and scaling infrastructure with Terraform
Job Responsibility
Job Responsibility
  • Design, implement, and maintain the next generation of security infrastructure, controls, and primitives natively within AWS and across our Kubernetes (EKS) platform
  • Define Security as Code: Drive the adoption of Infrastructure as Code (IaC) principles (e.g., Terraform) to codify, deploy, and continuously monitor security controls and policies in an auditable and scalable manner
  • Strategic Threat Modeling: Lead threat modeling exercises for critical systems and architectures, translating risks into prioritized security requirements and verifiable controls
  • Architectural Guidance: Provide security guidance and consulting for product and platform engineering teams, conducting in-depth security design reviews and providing pragmatic, hands-on recommendations for securing complex microservice architectures
  • Automate Remediation: Identify systemic security weaknesses and create robust, scalable automation (e.g., Python/Go-based tools, Lambda functions, EKS controllers) to eliminate classes of vulnerabilities at the source
What we offer
What we offer
  • Annual bonus
  • Equity compensation
  • Fulltime
Read More
Arrow Right

Senior Cloud Security Engineer

The Cyber Security Engineer will support the Information Security team in safegu...
Location
Location
United States , Fremont
Salary
Salary:
137000.00 - 287000.00 USD / Year
lamresearch.com Logo
Lam Research
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Solid foundation in Information Security Engineering with deep hands-on experience in Azure security
  • Experience in one or more of the following tools: Defender for Cloud, Wiz, Orca
  • Bachelor’s degree or Advanced Degree in Computer Science, Information Technology, Cybersecurity, or related discipline
  • 7+ years of experience in an Information Security role
  • 5+ years of experience with Microsoft Azure
  • Strong vulnerability management fundamentals
  • At least one of the following processional certifications required: Security+, CISSP, CISA, CISM, CEH, OSCP, GMON
  • Ability to communicate effectively, both verbal and written to a variety of audiences (immediate team, management, other business units) to provide guidance and direction when resolving technical challenges
Job Responsibility
Job Responsibility
  • Own configuration, policy, and governance for Microsoft Defender for Cloud or other CSPM tools
  • Manage and operate cloud security posture management (CSPM) platforms (such as Wiz, Orca, or Defender for Cloud) including configuring policies, monitoring findings, analyzing risks, and working with stakeholders to remediate vulnerabilities
  • Provide technical expertise in interpreting findings, correlating them to risk and translating them into actionable remediation plans
  • Perform security reviews and architecture assessments of cloud solutions to identify gaps and recommend mitigation strategies
  • Develop KPIs and executive reporting metrics to measure cloud security program effectiveness and communicate outcomes to leadership
  • Work closely with Information Systems, Cloud Operations, and other Infosec teams to assure remediation and architecture changes to align with security recommendations
  • Contribute to the development and implementation of security principles, standards, baselines, and blueprints tailored for Azure
  • Fulltime
Read More
Arrow Right

Senior Cloud Security Engineer

Senior Cyber Engineer - Cloud Security. Evolve and disrupt within the Cloud Secu...
Location
Location
United Kingdom
Salary
Salary:
Not provided
immersivelabs.com Logo
Immersive Labs
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Track record of working in production-critical infrastructures and Cloud environments with a security focus
  • Extensive knowledge of a cloud platform or technology, such as Azure, AWS, GCP or Kubernetes - including expertise with security, identity & access
  • Experience with cloud SIEMs, such as Microsoft Sentinel or Google SecOps
  • Experience with CSPM or CNAAP tooling
  • Solid containerisation experience, specifically using Docker and Kubernetes
  • Familiar with serverless technologies
  • Knowledgeable in network, firewall and security best practices
  • Experience with infrastructure automation and deployment, specifically Terraform
  • Understanding of cloud monitoring and security tooling
  • Hands-on experience cloud infrastructure, IT services, networking, and security
Job Responsibility
Job Responsibility
  • Utilising knowledge of cloud technology to plan, write and improve cloud security labs, challenges and online learning content on the Immersive platform
  • Produce multi-format content utilising various teaching methods
  • practical exercises, questions & gamification
  • Test Cloud Security labs to ensure they function as expected
  • Work with the Engineering and Content teams on new projects/products and how best to deploy them
What we offer
What we offer
  • Time off, flexible and remote working
  • 25 days annual leave + 2 volunteering days and your birthday off
  • Enhanced parental leave
  • Mindfulness groups
  • Critical illness cover
  • 7% matched pension
  • Private healthcare plan
  • Career and learning development through the platform
  • Dedicated professional development fund
  • 'Learn Anything' fund
  • Fulltime
Read More
Arrow Right

Senior Cloud Security Engineer

We’re looking for a hands-on Cloud Security Engineer to help design, implement a...
Location
Location
United States , New York
Salary
Salary:
Not provided
rearc.io Logo
Rearc
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Strong hands-on experience in at least one public cloud (AWS, GCP, or Azure)
  • Strong hands-on Terraform experience in public cloud environments, including writing and maintaining modules, managing environments, and reviewing infrastructure changes via PRs
  • Solid understanding of cloud IAM concepts (roles, policies, least privilege, cross-account access)
  • Experience working with Git-based workflows and PR-driven change management
  • Comfort operating in CI/CD environments and reviewing infrastructure changes via PRs
  • Working understanding of Kubernetes from a security and infrastructure perspective (e.g. cluster access, workload identity, network exposure, and visibility)
  • Working understanding of core security concepts: Risk vs threat vs vulnerability
  • Security posture and coverage gaps
  • Impact and prioritisation
  • Experience implementing or supporting cloud security tooling, such as: CSPM / CNAPP platforms (e.g. Wiz)
Job Responsibility
Job Responsibility
  • Implement and support cloud security tooling integrations across AWS, GCP, and Azure using Infrastructure as Code
  • Configure permissions, integrations, and coverage for security platforms (e.g. Wiz)
  • Work closely with security stakeholders (CSOC, Threat & Vulnerability Management, central security teams) to: Interpret findings
  • Assess real-world risk
  • Prioritise remediation
  • Translate security concepts into clear, actionable guidance for engineering teams
  • Participate in infrastructure and application PR reviews as a security-minded cloud SME
  • Help standardise secure-by-default patterns that scale across hundreds of teams
What we offer
What we offer
  • Health Benefits
  • Generous time away
  • Maternity and Paternity leave
  • Educational resources and reimbursements
  • 401(k) plan with a company contribution
Read More
Arrow Right