Role Description:

In this role the following responsibilitieswill be expected from you:

• Perform TARA analysis ona cloud system by analyzing architecture diagrams identifying importantdata and components list components that need protection and apply STRIDEor attack trees to find analyze and evaluate threats.
• Identify how cloud featureswill be used to protect the system and build cybersecurity concepts cybersecurityplan and risk reports.
• Derive cybersecuritygoals and requirements
• Identify cloudmisconfiguration and analyze their impact on system vulnerability.
• Test access rules andperform IAM privilege escalation tests and trust abuse.
• Ensure API protectionand login security.
• Perform container/runtimescanning by running vulnerability scans and using CVE scanners to scanDocker images and base OS.
• Ensure runtime security byperforming DAST SAST and SCA.
• Perform secure codereview to detect insecure code patterns and run language specific scans andsecure code review automation.
• Build vulnerabilityreports with problems and suggested solutions.
• Build security policiesby developing REST API security rules and well architected frameworks.
• Perform policy testingby enforcing guardrails (SCPs and RCPs)
• Enforce CI/CD hardeningusing IaC or other methods.
• Implement GitOps-baseddeployment and security workflows using tools like ArgoCD or Flux.
• Enforce continuousmonitoring by using CNAPP for auditing.
• Develop and maintainincident response playbooks and support root cause analysis post-incident
• Automate security workflowsand remediation steps using scripting (Python Bash) or tools like AWS LambdaCloud Functions.
• Enforce cybersecurityprocesses such as vulnerability management and defining how to handlefindings and patching.
• Support audits andcreate documentation for compliance (SOC 2 GDPR HIPPA etc.)
• Share knowledge and leadteams of developers and testers.
• Serve as a bridge betweenDevOps and InfoSec to align goals and priorities.

Qualifications and Education Requirements:

• Bachelors or mastersdegree in computer science Information Security Software Engineering orrelated field.
• 3 years of relevantexperience.
• Strong experience withCI/CD pipelines and tools (e.g. Jenkins GitLab CI GitHub Actions AzureDevOps).
• Deep knowledge of securityintegration in DevOps workflows (SAST DAST IAST).
• Proficiency withcontainerization and orchestration (Docker Kubernetes Helm).
• Familiarity withinfrastructure-as-code (IaC) tools (Terraform Ansible Pulumi).
• Experience with cloudplatforms (AWS Azure GCP) including IAM key management security groups andVPCs.
• Knowledge of code scanningdependency scanning and secrets management tools (e.g. SonarQube CheckmarxSnyk HashiCorp Vault AWS Secrets Manager or Azure Key Vault).
• Experience integratinglogging and monitoring tools with SIEM systems (Splunk ELK etc.) to detectanomalies and security threats.
• Understanding of securitystandards and frameworks (OWASP NIST ISO 27001 CIS Benchmarks).
• Strong collaboration andcommunication skills across DevOps security and development teams.
• Analytical mindset with theability to respond to vulnerabilities or incidents effectively.
• Self-drivenand proactive in improving security posture through automation.

What makes us special:

• International team with a collegial working atmosphere and motivating team spirit.
• Lived culture of innovation and Regular employee events.
• Continuous internal trainings and external trainings.
• Outstanding benefits health insurance multiple optional allowances and pension plans.
• Flexible working hours work from home option to ensure Work-life balance.
• An environment where you can develop and grow your skills capabilities and future.

Data privacy:

All the information shared in this document are only intended to the recipient. Any attempt to copy or re-use the document in part or whole will be considered a violation to the data privacy and will put the person under the law responsibility.