Job description

We are looking for a colleague for our international partner company for the following position:

Cloud / DevOps Security Engineer

Responsibilities:

  • Operating and managing CSPM across cloud organizations and accounts, connecting native cloud security platforms and routing actionable findings to owners with defined SLAs through Jira.
  • Enforcing core cloud organization security policies, including storage access restrictions, identity and OAuth controls, logging, encryption and key management standards.
  • Building secure “paved road” solutions by delivering reusable infrastructure-as-code modules and blueprints with embedded security controls.
  • Implementing guardrails in development workflows through pre‑commit hooks and CI/CD policy checks that prevent insecure changes from being deployed.
  • Supporting secure network egress and posture-based access controls by collaborating with senior engineering stakeholders on cloud and network security initiatives.
  • Improving container and image security by introducing signing, scanning, minimal base images and secure secrets management patterns within CI/CD pipelines.
  • Managing certificate lifecycle processes by maintaining inventories, setting up alerts and establishing predictable renewal workflows.
  • Supporting identity-related cloud controls, including administrative MFA enforcement, break‑glass access processes and joiner‑mover‑leaver integrations affecting cloud access.

Requirements:

  • 4–7 years of experience in cloud or platform security across multi‑account or multi‑organization environments in GCP and/or AWS.
  • Hands-on experience operating CSPM solutions at scale and driving remediation through Jira-based workflows with defined SLAs.
  • Strong infrastructure‑as‑code experience using Terraform, including development of reusable, secure modules and policy-as-code checks.
  • Working knowledge of cloud organization-level security controls and the ability to balance strong security defaults with developer productivity.
  • Practical exposure to CI/CD environments from a security perspective, with an emphasis on enabling rather than blocking delivery teams.
  • Strong communication and documentation skills with experience presenting security posture through simple, actionable reporting.
  • Good English language communication skills.

Advantages:

  • Opportunity to shape cloud and platform security foundations in an international, technology-focused organization.
  • High ownership over CSPM, cloud policy enforcement and secure platform guardrails.
  • Close collaboration with engineering teams to enable secure-by-default cloud delivery.
  • Exposure to modern cloud, DevOps and container security practices.
  • Long-term impact through scalable, reusable security solutions.

What our partner company offers:

  • Competitive compensation package.
  • International corporate environment with strong technical standards.
  • Hybrid working model with up to two remote workdays per week.
  • Comprehensive benefits package, including healthcare, wellbeing and learning support.
  • Long-term career growth within a technology-driven investment firm.