Systems Administrator managing IT support and compliance activities in a tech - oriented company. Leading infrastructure design and security measures while collaborating with managed service providers.
About the role
- Information Security Engineer improving cloud security and conducting risk assessments at fintech company. Collaborating with teams to ensure compliance and integrate security measures across the organization.
Responsibilities
- Evaluate and strengthen internal security controls and processes, driving continuous improvement of our Information Security Management System and related policies
- Participate in internal and external audits (e.g. ISO 270xx)
- Develop and enhance threat models for PAIR Finance resources and services, conducting security risk assessments and defining targeted mitigation strategies based on threat models
- Investigate end-to-end information-security incidents, preparation of comprehensive reports for management and regulators
- Monitor threat intelligence, hacking techniques, and CVEs affecting our AWS and M365 environments
- Collaborate with DevOps and Product teams to integrate security throughout the Software Development Lifecycle
- Utilize Wiz and similar platforms to identify, prioritize and remediate cloud security risks (CSPM/CIEM)
- Execute vulnerability scans, analyze DAST results, and support penetration testing activities
Requirements
- Strong communication skills in English (B2+) and German (B1 minimum, B2 preferred)
- Academic degree in Information Security, Cybersecurity, or equivalent field
- 3+ years hands-on experience securing cloud infrastructure (AWS, Azure, GCP); AWS expertise is highly desirable (SecurityHub, IAM, WAF, GuardDuty)
- Solid knowledge of security frameworks such as ISO 270xx, BSI Grundschutz, NIST, SOC2
- Practical experience with cloud security platforms and CSPM/CIEM (Wiz experience is a significant advantage)
- Ability to write and maintain clear technical documentation
- A level of technical expertise that would allow you to evaluate severity and applicability of vulnerabilities and quality of fixes in a cloud environment
- Proven track record with vulnerability management, DAST tools, and penetration testing methodologies (OWASP, PTES)
- Relevant certifications (nice-to-have): CISSP, CISM, CISA, ISO 27001 Lead Implementer / Lead Auditor, AWS Security Specialty, BSI Grundschutz Practitioner, AI‑related certifications (e.g. Certified AI Security Specialist)
Benefits
- Thriving, financially stable company
- Strong experienced international team to support and mentor you along the way, smooth onboarding process
- International team of 30+ nationalities with professionals and experts
- Flat hierarchy, transparent and appreciative feedback culture, monthly all hands meetings, annual feedback and evaluation cycle, regular 1-on-1s with your lead
- Well-structured onboarding process as well as supportive and welcoming colleagues
- Personal learning & development budget as well as German and English language courses
- Good salary for your strong performance
- Unlimited employment contract, flexible working hours and 28 vacation days for your work-life balance
- Company pension plan, partly covered Deutschlandticket (public transport) and access to “Corporate Benefits” voucher platform to ensure your full well-being
- Fun company summer and Christmas parties as well as regular team events
Job title
Job type
Experience level
Salary
Not specified
Degree requirement
Tech skills
Location requirements
Cyber Security Expert supporting project teams with structured risk assessments and compliance documentation at Nordex wind farms. Collaborating closely with Information Security to ensure secure operations.
OT Cybersecurity Engineer enhancing cybersecurity in industrial environments. Ensuring compliance with cybersecurity standards and collaborating across engineering, IT, and product teams.
Information Security Analyst implementing security solutions at one of Brazil's largest banks. Focus on information security and compliance with internal policies and best practices.
Security Intern collaborating with security teams to ensure compliance and develop secure processes in fintech environment. Engaging in hands - on experience with application security and risk management.
![[solidcore] logo](/api/images/solidcore.jpg)
Director overseeing IT operations and cybersecurity at [solidcore]. Ensuring system reliability and compliance for HQ and studio locations.
Senior Manager of Cybersecurity application and cloud security at Medtronic. Leading teams to enhance security in cloud - native environments and software development.
Security Engineer designing and implementing secure architecture solutions for Disney's global technology ecosystem. Collaborating with teams to assess threats and secure AI/ML implementations and technologies.
Head of Information Security at Thndr, leading security strategy and governance across Egypt, UAE, and KSA. Responsible for managing risk and building trusted security function.
Security Lead responsible for security across product, cloud infrastructure, and internal systems. Aiming to enhance security measures and practices within a SaaS environment.