Senior Infrastructure Security Engineer (m / f / d)

Responsibilities

1. Manage and secure a multi-account AWS architecture, applying security controls and best practices across multiple AWS accounts and environments.
2. Manage cloud identities to ensure secure, compliant, and least-privileged access for users and service accounts, minimizing security risks.
3. Secure applications and network infrastructure to prevent malicious traffic, mitigate potential attacks, and protect the network perimeter.
4. Implement security guardrails and policies, automate monitoring, compliance checks, patch management, and remediation processes to enhance operational efficiency and prevent misconfigurations.
5. Work with CWP, CSPM, and CIEM tools to implement and manage centralized security operations, streamline compliance, and improve infrastructure visibility.
6. Monitor cloud infrastructure to identify vulnerabilities and misconfigurations, ensuring proactive security controls, early risk detection, and timely patching.
7. Harden host and container OS following security benchmarks and industry best practices for robust security.
8. Secure Kubernetes clusters, containerized environments, and workloads following container security and runtime protection best practices.
9. Integrate SIEM systems for centralized logging, real-time threat detection, and incident response enhancement.
10. Conduct periodic reviews, monitor networks, analyze logs, and assess systems to prevent unauthorized use and ensure service availability.
11. Assist with compliance audits by preparing documentation and providing evidence.
12. Review engineering proposals, offer feedback, and suggest improvements to security and operational efficiency.
13. Implement the latest security tools and techniques to improve the organization’s security posture beyond compliance.
14. Identify cost reduction opportunities, propose innovative solutions, and contribute to roadmap and priority setting aligned with OKRs.

Your Profile

1. 5+ years of experience in securing cloud infrastructures, preferably AWS, managing multi-account architectures, and designing security systems.
2. Relevant certifications such as AWS Certified Security – Specialty are advantageous.
3. Hands-on experience with AWS security services like CloudTrail, GuardDuty, IAM, Config, WAF, Shield, Inspector, and KMS.
4. Strong foundation in security architecture, Linux, IAM, and network security.
5. Expertise in Kubernetes and container security, including runtime protection and OS hardening.
6. Experience in vulnerability management, incident response, and automation for compliance enforcement.
7. Experience with SIEM systems like Splunk.
8. Proficiency in IaC and tools like Terraform, Ansible, Packer, and programming languages such as Python for automation.
9. Passionate about security, eager to learn, and aware of emerging threats and technologies.
10. Understanding of EU regulations and standards like GDPR, ISO/IEC 27001, DORA, or similar frameworks is a plus.
11. Knowledge of DevOps/SRE principles and integrating security into CI/CD workflows.

Join Our Mission

At Raisin, we value an open, inclusive environment with a diverse team of over 75 nationalities. Our modern office in Kreuzberg offers a vibrant working environment with views of the Spree River, well-connected transportation, and nearby amenities.

Benefits

• €2,000 Employee Development Budget and four training days annually.
• Access to Babbel for language learning.
• Snacks, fresh fruit, and drinks at the office.
• Flexible hours, home office options, and 30 vacation days.
• Over 50 sports options via Urban Sports Club, subsidized by us.
• Bike leasing through JobRad with tax benefits and insurance covered by Raisin.
• Company pension scheme with 20% contribution.
• Subsidized Deutschland Ticket for commuting.
• Relocation support for international candidates.

Position: Senior Infrastructure Engineer • Frankfurt a. M.

#J-18808-Ljbffr