N26
Senior Cloud Security Engineer (Data Security)(m/w/x)
Full-timeWith HomeofficeManagement
Berlin
New Job?Nejo!
The AI Job Search Engine
MOMoss
Senior Security Engineer – Cloud Security & Security Operations(m/w/x)
Berlin
Full-timeWith Home OfficeSenior
Nejo AI Summary
GCP security architecture, IAM, and logging strategy development for a spend management SaaS product at a SaaS scale-up. Deep hands-on expertise in GCP security and operations required. Equity, 20 days work from abroad, and a €600 L&D budget.
Requirements
- Proven experience in security engineering
- Deep hands-on expertise in cloud security
- Deep hands-on expertise in security operations
- Strong practical experience securing GCP environments
- Experience with IAM
- Experience with Cloud Audit Logs
- Experience with organisational policies
- Experience with network architecture
- Strong experience securing Kubernetes environments
- Experience with RBAC
- Experience with service accounts
- Experience with Workload Identity
- Experience with network policies
- Experience with container risks
- Experience building and operating SIEM platforms
- Experience building and tuning detection rules
- Experience improving signal-to-noise ratio
- Experience increasing detection quality
- Experience with Cloud Security Posture Management tools
- Experience with risk-based remediation workflows
- Experience securing CI/CD pipelines
- Experience with identity federation
- Experience with secret management
- Strong understanding of cloud attack paths
- Strong understanding of identity risks
- Strong understanding of modern infrastructure threats
- Experience working in cloud-native environments
- Experience working in DevOps-driven environments
- Fluent English language skills (verbal and written)
- Systems thinker mindset
- Ability to design security systems and detection strategies
- Signal optimiser mindset
- Deep care for reducing noise and increasing meaningful coverage
- Cloud-native security engineer mindset
- Understanding of modern GCP environments
- Analytical problem solver mindset
- Ability to break down complex security events
- Collaborative team player mindset
- Ability to work closely with various teams
- Results oriented mindset
- Focus on measurable improvements
- Pragmatic builder mindset
- Ability to avoid overengineering
- Ability to implement scalable solutions
Tasks
- Design cloud security architecture in GCP
- Improve cloud security architecture in GCP
- Define IAM design in GCP
- Establish organizational policies in GCP
- Develop logging strategies in GCP
- Implement network controls in GCP
- Manage and evolve Cloud Security Posture Management in Wiz
- Prioritize and drive remediation for misconfigurations
- Prioritize and drive remediation for identity risks
- Prioritize and drive remediation for vulnerabilities
- Prioritize and drive remediation for runtime threats
- Collaborate with Platform Engineering
- Embed scalable, pragmatic security guardrails into infrastructure
- Manage and improve Datadog Cloud SIEM
- Develop, tune, and maintain detection rules for cloud logs
- Develop, tune, and maintain detection rules for identity systems
- Develop, tune, and maintain detection rules for SaaS integrations
- Develop, tune, and maintain detection rules for security-relevant application logs
- Improve signal quality by reducing noise
- Increase risk-based, actionable alerting
- Integrate critical systems into the SIEM
- Support SIEM integration during vendor onboarding
- Support SIEM integration during annual control reviews
- Improve alert routing
- Improve triage workflows
- Improve response coordination across Slack and Jira
- Translate threat scenarios and attack paths into effective detection coverage
- Improve log ingestion strategies for GCP
- Improve log ingestion strategies for Google Workspace
- Improve log ingestion strategies for Wiz
- Improve log ingestion strategies for Atlassian
- Improve log ingestion strategies for Jumpcloud
- Improve log ingestion strategies for other critical systems
- Identify visibility gaps
- Close visibility gaps pragmatically
- Define and track detection coverage improvements
- Define and track detection maturity improvements
- Investigate complex cloud and SaaS security events and incidents
- Improve incident response playbooks
- Improve post-incident reviews
- Improve learning loops
- Reduce Mean Time to Detect (MTTD)
- Improve overall response effectiveness
Work Experience
- 5 years
Education
- Bachelor's degreeOR
- Master's degree
Languages
- English – Business Fluent
Tools & Technologies
- GCP
- IAM
- Cloud Audit Logs
- Kubernetes
- RBAC
- Workload Identity
- SIEM
- Datadog
- Splunk
- Elastic
- Cloud Security Posture Management
- Wiz
- CI/CD
- GitHub Actions
Benefits
Competitive Pay
- Top-of-market compensation package
- Equity
Workation & Sabbatical
- 20 days work from abroad
Learning & Development
- 600EUR/GBP Learning & Development Budget
Find the original job posting in its most current version here. Nejo automatically captured this job from the website of Moss and processed the information on Nejo with the help of AI for you. Despite careful analysis, some information may be incomplete or inaccurate. Please always verify all details in the original posting! Content and copyrights of the original posting belong to the advertising company.
Not a perfect match?
- DWS International GmbH
Senior Security Engineer - Data Infrastructure(m/w/x)
Full-timeWith HomeofficeSeniorBerlin - Contentful
Cloud Security Engineer(m/w/x)
Full-timeRemoteNot specifiedBerlin - Unzer
Senior IT Security Engineer(m/w/x)
Full-timeWith HomeofficeSeniorBerlin - commercetools
Principal Engineer, Product Security(m/w/x)
Full-timeWith HomeofficeSeniorMünchen, Berlin
MOMoss
Senior Security Engineer – Cloud Security & Security Operations(m/w/x)
Berlin
Full-timeWith Home OfficeSenior
Nejo AI Summary
GCP security architecture, IAM, and logging strategy development for a spend management SaaS product at a SaaS scale-up. Deep hands-on expertise in GCP security and operations required. Equity, 20 days work from abroad, and a €600 L&D budget.
Requirements
- Proven experience in security engineering
- Deep hands-on expertise in cloud security
- Deep hands-on expertise in security operations
- Strong practical experience securing GCP environments
- Experience with IAM
- Experience with Cloud Audit Logs
- Experience with organisational policies
- Experience with network architecture
- Strong experience securing Kubernetes environments
- Experience with RBAC
- Experience with service accounts
- Experience with Workload Identity
- Experience with network policies
- Experience with container risks
- Experience building and operating SIEM platforms
- Experience building and tuning detection rules
- Experience improving signal-to-noise ratio
- Experience increasing detection quality
- Experience with Cloud Security Posture Management tools
- Experience with risk-based remediation workflows
- Experience securing CI/CD pipelines
- Experience with identity federation
- Experience with secret management
- Strong understanding of cloud attack paths
- Strong understanding of identity risks
- Strong understanding of modern infrastructure threats
- Experience working in cloud-native environments
- Experience working in DevOps-driven environments
- Fluent English language skills (verbal and written)
- Systems thinker mindset
- Ability to design security systems and detection strategies
- Signal optimiser mindset
- Deep care for reducing noise and increasing meaningful coverage
- Cloud-native security engineer mindset
- Understanding of modern GCP environments
- Analytical problem solver mindset
- Ability to break down complex security events
- Collaborative team player mindset
- Ability to work closely with various teams
- Results oriented mindset
- Focus on measurable improvements
- Pragmatic builder mindset
- Ability to avoid overengineering
- Ability to implement scalable solutions
Tasks
- Design cloud security architecture in GCP
- Improve cloud security architecture in GCP
- Define IAM design in GCP
- Establish organizational policies in GCP
- Develop logging strategies in GCP
- Implement network controls in GCP
- Manage and evolve Cloud Security Posture Management in Wiz
- Prioritize and drive remediation for misconfigurations
- Prioritize and drive remediation for identity risks
- Prioritize and drive remediation for vulnerabilities
- Prioritize and drive remediation for runtime threats
- Collaborate with Platform Engineering
- Embed scalable, pragmatic security guardrails into infrastructure
- Manage and improve Datadog Cloud SIEM
- Develop, tune, and maintain detection rules for cloud logs
- Develop, tune, and maintain detection rules for identity systems
- Develop, tune, and maintain detection rules for SaaS integrations
- Develop, tune, and maintain detection rules for security-relevant application logs
- Improve signal quality by reducing noise
- Increase risk-based, actionable alerting
- Integrate critical systems into the SIEM
- Support SIEM integration during vendor onboarding
- Support SIEM integration during annual control reviews
- Improve alert routing
- Improve triage workflows
- Improve response coordination across Slack and Jira
- Translate threat scenarios and attack paths into effective detection coverage
- Improve log ingestion strategies for GCP
- Improve log ingestion strategies for Google Workspace
- Improve log ingestion strategies for Wiz
- Improve log ingestion strategies for Atlassian
- Improve log ingestion strategies for Jumpcloud
- Improve log ingestion strategies for other critical systems
- Identify visibility gaps
- Close visibility gaps pragmatically
- Define and track detection coverage improvements
- Define and track detection maturity improvements
- Investigate complex cloud and SaaS security events and incidents
- Improve incident response playbooks
- Improve post-incident reviews
- Improve learning loops
- Reduce Mean Time to Detect (MTTD)
- Improve overall response effectiveness
Work Experience
- 5 years
Education
- Bachelor's degreeOR
- Master's degree
Languages
- English – Business Fluent
Tools & Technologies
- GCP
- IAM
- Cloud Audit Logs
- Kubernetes
- RBAC
- Workload Identity
- SIEM
- Datadog
- Splunk
- Elastic
- Cloud Security Posture Management
- Wiz
- CI/CD
- GitHub Actions
Benefits
Competitive Pay
- Top-of-market compensation package
- Equity
Workation & Sabbatical
- 20 days work from abroad
Learning & Development
- 600EUR/GBP Learning & Development Budget
Find the original job posting in its most current version here. Nejo automatically captured this job from the website of Moss and processed the information on Nejo with the help of AI for you. Despite careful analysis, some information may be incomplete or inaccurate. Please always verify all details in the original posting! Content and copyrights of the original posting belong to the advertising company.
About the Company
Moss
Industry
FinancialServices
Description
Moss is a SaaS scale-up founded in Berlin, aiming to power SMBs' spend across Europe with a fully digital, AI-driven solution.
Not a perfect match?
- N26
Senior Cloud Security Engineer (Data Security)(m/w/x)
Full-timeWith HomeofficeManagementBerlin - DWS International GmbH
Senior Security Engineer - Data Infrastructure(m/w/x)
Full-timeWith HomeofficeSeniorBerlin - Contentful
Cloud Security Engineer(m/w/x)
Full-timeRemoteNot specifiedBerlin - Unzer
Senior IT Security Engineer(m/w/x)
Full-timeWith HomeofficeSeniorBerlin - commercetools
Principal Engineer, Product Security(m/w/x)
Full-timeWith HomeofficeSeniorMünchen, Berlin