Job
- Level
- Senior
- Job Field
- IT, Security
- Employment Type
- Full Time
- Contract Type
- Permanent employment
- Salary
- 85.000 to 110.000€ Gross/Year
- Location
- Berlin
- Working Model
- Onsite
Job Summary
In this role, you will audit the AWS environment, plan the security optimization of existing resources with Terraform, and develop proactive protection strategies with AWS WAF and security policies in collaboration with infrastructure teams.
Job Technologies
Your role in the team
- Partner closely with the existing Cloud Architecture and Engineering teams to audit the current AWS environment, identify security technical debt, and plan the refactoring of legacy resources into secure Terraform code.
- Design, deploy, tune, and maintain AWS WAF (Web Application Firewall) policies and rulesets to proactively protect corporate applications and APIs against application-layer attacks (OWASP Top 10, bots, and zero-day exploits).
- Establish and enforce cloud security guardrails, multi-account structures (AWS Organizations/Control Tower), and Service Control Policies (SCPs) in collaboration with the infrastructure team.
- Help define and audit AWS Identity and Access Management (IAM) strategies, guiding engineering teams to transition from over-privileged legacy roles toward the principle of least privilege.
- Manage and optimize cloud-native security monitoring and detection tools (AWS Security Hub, GuardDuty, CloudTrail, Inspector, or KMS).
- Assistance with incident response for AWS-specific security alerts, conducting cloud forensic analysis, and coordinating containment strategies.
- Ensure the AWS cloud ecosystem remains fully compliant with relevant financial regulations, internal policies, and security frameworks (NIST, CIS, BaFin requirements).
- Lead the security automatizations on the AWS environment.
- Understanding of AWS native AI capabilities (i.e., Bedrock or Quick).
This text has been machine translated. Show original
Our expectations of you
Education
- A degree in Computer Science, Cloud Computing, Cyber Security, Information Technology, or equivalent professional experience.
Qualifications
- Advanced Terraform & IaC: Strong proficiency in Terraform and auditing IaC templates for security drifts.
- AWS Security Governance: Mastery of AWS native security tools (IAM, KMS, Security Hub, GuardDuty) and multi-account security architecture.
- Understands agile workflows and lean principles.
- Technical leadership, cross-team collaboration, and cloud governance focus.
- Business proficient written and spoken English.
- Highly Valued Certification: AWS Certified Security - Specialty. AWS Certified Solutions Architect (Associate/Professional) is a strong plus.
- Exceptional diplomatic and communication skills to align security requirements with the objectives of the existing Architecture and Engineering teams.
- Thinking: Structured and analytical approach to untangling legacy cloud setups and defining clear, secure milestones.
- Empathic team player who avoids the "silo" mentality and focuses on enabling other teams to build securely.
- Proaktiver Kollege, der das Wachstum des Teams fördert.
- Neugieriger, ständig lernender Mensch, der bereit ist, sein Wissen mit anderen zu teilen.
Experience
- You have spent 5+ years of dedicated professional experience in Cloud Security Engineering, with a proven track record of securing complex AWS environments.
- AWS WAF & Edge Security: Deep hands-on experience designing, implementing, and fine-tuning AWS WAF, AWS Shield, and CloudFront to protect public-facing application endpoints.
- Collaboration with Engineering: Experience working alongside separate, established Cloud Architecture or DevOps teams, acting as a security consultant rather than a solo administrator.
This text has been machine translated. Show original
What we offer
- Home office budget.
- Learning & development budget of €1000 per year and a transparent growth framework to support your career goals.
- Competitive salary and a variable remuneration program.
- Monthly meal allowance.
- Germany ticket subsidy.
- 28 vacation days, increasing by 2 days after 2 years and 3 days after 3 years with Solaris.
- Opportunity to work abroad for up to 12 weeks per year.
This text has been machine translated. Show original
Benefits
Work-Life-Integration
Topics that you deal with on the job
Job Locations
This is your employer
SolarisBank
We are leveraging the power of Banking-as-a-Service to remove the barriers for companies to offer their own financial products. Our proprietary Banking-as-a-Service platform enables any business to integrate financial services into new contexts that were previously unimaginable.
Description
- Company Type
- Established Company
- Working Model
- Hybrid, Onsite
- Industry
- Banking, Finance, Insurance