Cloud Security Architect

The Information Security team at Shine

At Shine, our Security team operates as a strategic driver rather than a support function. We work directly with leadership to integrate resilience into the company’s core, navigating the complex intersection of cloud‑native architecture, AI innovation, and rigorous regulatory standards like DORA and ISO 27001. By partnering cross‑functionally with Engineering and Risk, we aren’t just maintaining a perimeter; we are building a scalable, high‑visibility security framework that defines the future of digital operational excellence in the fintech space.

Your role as a Cloud Security Architect

Shine is looking for a Cloud Security Architect to define, govern, and evolve our cloud security architecture across multiple business units and cloud environments. Reporting directly to the CISO, you will play a pivotal role in ensuring our cloud platforms are secure, compliant and resilient while enabling the digital transformation.

This role offers strong visibility, architectural ownership, and the opportunity to translate regulatory and security requirements into scalable, pragmatic cloud solutions.

Your responsibilities will include:

• Define and maintain the cloud security architecture and reference patterns across multi‑cloud and hybrid environments (e.g. AWS, Azure, GCP).
• Define and govern the use of AI assisted cloud security tooling (e.g. CSPM, CWPP, CNAPP) and integrate with SOC.
• Embed security‑by‑design and Zero Trust principles into cloud platforms, applications and data services.
• Ensure cloud architectures comply with regulatory and internal requirements (e.g. DORA, ISO 27001, MaRisk, NIST).
• Own and mature cloud security controls covering IAM, network security, encryption, key management, logging, and monitoring.
• Partner closely with IT, Cloud Engineering, DevOps, Risk, and Compliance teams to enable secure cloud adoption.
• Support audits, regulatory reviews, and management reporting related to cloud security.
• Act as a trusted advisor to business units on secure cloud usage, trade‑offs, and risk mitigation.

Job located in Berlin or Paris, with possibility of two remote working days per week, or full remote.

Not within commuting distance of Berlin or Paris? Don't hesitate to apply anyway.

About you

• Degree in Computer Science, Information Security, or a comparable field.
• Several years’ experience in cloud security architecture or engineering, ideally within a regulated financial services environment.
• Strong hands‑on knowledge of public cloud platforms (AWS, Azure and/or GCP) and secure cloud design patterns.
• Solid understanding of IAM, network segmentation, encryption, logging, and monitoring in cloud environments.
• Familiarity with DORA, ISO 27001 and financial‑sector regulatory expectations.
• Ability to communicate complex technical topics clearly to engineers, risk teams and senior management.
• Good English skills; German is a strong advantage.

Equal Opportunity Employer

We follow the principle of equal treatment to consider all job applicants and do not discriminate based on their gender, sexual orientation, color, racial or ethnic origin, religion, disability, etc. as per applicable law.