Cloud Security Engineer (m/f/d)
Region: Cologne or Künzelsau (mobile work is possible)
Bereich: IT Security
READY FOR BERNER?
The BERNER Group is a European trading company for professionals in the mobility, construction and industry sectors. We are the leading B2B specialist and innovative manufacturer of chemical products. Our purpose is: "We are pushing the limits of the possible for the shapers of a better tomorrow". This means that our strong brands BERNER, BTI by BERNER and CCS help our customers to keep their business successful and running.
YOUR TASKS
1. Continue to establish a secure Microsoft Azure environment and support the migration from on-premises infrastructure to the cloud
2. Provide advisory on architectural decisions and cloud deployments to align with security best practices
3. Maintain and continuously develop cloud security controls and policies within Microsoft Azure
4. Collaborate with IT and infrastructure teams to ensure security in daily cloud operations
5. Manage and optimize Azure security services, including Defender for Cloud, Sentinel, and Identity Protection
6. Support IT and infrastructure in implementing and enhancing a zero-trust security model for cloud environments
7. Ensure best practices around Identity and Access Management (IAM) in Azure, including Conditional Access, Privileged Identity Management (PIM), and role-based access control (RBAC)
YOUR PROFILE
8. Completed a degree in IT Security, Computer Science, Computer Engineering, or a similar field
9. Strong knowledge of cloud security principles, ideally with a focus on Microsoft Azure (or similar platforms, e.g., AWS or GCP), including topics such as Identity & Access Management (IAM), Network Security Groups (NSG), Azure Policy, Defender for Cloud, and secure cloud architecture
10. Experience implementing and managing security monitoring, logging, and threat detection in cloud environments using tools like Microsoft Sentinel, Defender for Cloud, and Azure Monitor
11. Strong programming and automation skills, enabling the development of scripts and Infrastructure as Code (IaC) solutions using PowerShell, Python, ARM templates, Terraform, or similar tools
12. Experience developing CI/CD pipelines (e.g., GitHub, Bitbucket)
13. Curious with an analytical and risk-focused mindset
14. Fluency in English (written and spoken)
15. Additionally Desired Qualifications:
German language skills are helpful but not required Broad experience across various domains of security Knowledge of SAST and DAST tools
WHY BERNER?
16. permanent contract
17. mobile work is possible
18. structured onboarding
19. state-of-the-art workplace
20. Künzelsau: canteen with daily, freshly prepared dishes
21. Cologne: Pluxee meal vouchers
22. allowance for transportation costs
23. bike leasing (Jobrad)
24. EGYM Wellpass with more than 5. sport and fitness offers
25. company pension scheme and employee purchase with attractive conditions
26. many training and development opportunities within our future-oriented company