Cloud Security Engineer (d/f/m)
At Personio, your work transforms the way millions of people experience work every day. Join our Product & Technology team, where we drive our customers’ outcomes by designing, developing and delivering innovative and high quality products. Be empowered to take ownership of your areas and make an impact on your team, our product, and our customers.
Security is a first class priority in Personio, and we are looking for an experienced Cloud Security Engineer to join our Product & Engineering organization on the mission to implement best in class infrastructure security controls and automation practices. Personio processes highly sensitive data for thousands of customers, and security is a cornerstone of all processes, empowering us to build a fortified foundation for our customer success. Our Security Team is expanding to serve the needs of our customers and our internal engineering teams. You will partner with the infrastructure engineering teams and SREs in a hands-on fashion to ensure that Personio infrastructure is designed and built securely.
Role Responsibilities: What you'll do- Identify risks on the scope of Cloud Security and propose scalable solutions for it
- Interface with our Site Reliability Engineering team to ensure we get the most security impact while complementing the SREs goals to deliver a scalable on-demand infrastructure by being the subject matter expert (SME) in security
- Implement security control that prevents misconfigurations of cloud resources, security observability of best practices about cloud infrastructure
- Update and improve Cloud Security Standards by working with the SRE team, detecting drift between standards and provisioned infrastructure in production
- Participate in security operations, responding to security incidents and providing security expertise for Personio customers and internal stakeholders
- Keep yourself up to date about the cloud native technologies that Personio uses and how it overall impacts security
- Provide guidance inside the Security team on the golden path for provisioning infrastructure
- BS in Computer Science, Information Security, System administration or equivalent professional experience
- Good understanding of security fundamentals (CIA triad) and computer networks (OSI model, TLS)
- Development experience in any modern programming language or scripting skills (E.g: Typescript, Python, Go, Kotlin, Bash, etc.)
- Proven track record of experience with AWS. Experience with other CSPs are a plus
- Familiarity with the shared responsibility model
- Experience with shipping infrastructure changes with baseline quality on tests, scalability and security
- Experience with container orchestration. Kubernetes and ECS is a plus
- Demonstrated capacity to work with CI pipelines, preferable Gitlab CI/CD
- Experience with any paradigm of Infrastructure-as-Code (IaC), preferable Terraform, Cloudformation. Any experience with AWS CDK is a plus
- Capacity to execute investigations and troubleshoot problems in a multi-account architecture
- Excellent English written and verbal communication skills and the ability to adapt messaging to executive, technical, and non-technical audiences
Personio is an equal opportunities employer, committed to building an integrative culture where everyone feels welcomed and supported. We embrace uniqueness and understand that our diverse, values-driven culture makes us stronger. We are proud to have an inclusive workplace environment that will foster your development no matter your gender, civil status, family status, sexual orientation, religion, age, disability, education level, or race.Aside from our people, culture, and mission, check out some of the other benefits that make Personio a great place to work:
- Receive a competitive reward package – reevaluated each year – that includes salary, benefits, and pre-IPO equity
- Enjoy 28 days of paid vacation, plus an additional day after 2 and 4 years (because we love what we do, but we also love vacation!)
- Make an impact on the environment and society with 2 (fully paid) Impact Days – one for an individual project of your choice and one for a company-wide initiative
- Receive generous family leave, child support, mental health support, and sabbatical opportunities with PersonioCares
- Find your best way to work with our office-led, remote-friendly PersonioFlex! Most teams offer a roughly 50% remote, 50% in-office working framework
- Invest in your development with an annual personal development budget to use on professional memberships, external certifications, conferences, and more
- Connect with your fellow Personios at regular company and team events like All Company Culture Week and local year-end celebrations
- Engage in a high-impact working environment with flat hierarchies and short decision-making processes