Expert Information Security (gn) fulltime/parttime (hybrid)

This role is for a Cloud Security Engineer – Integration Services responsible for delivering secure, compliant and resilient integration solutions and ensuring the secure operation and continuous development of interfaces, data flows, integration platforms (e.g., APIM, Kafka, Kubernetes) and self‑service capabilities.

Responsibilities

• Support Integration Services in delivering secure, compliant, and resilient integration solutions and ensure the secure operation and continuous development of interfaces, data flows, integration platforms (e.g., APIM, Kafka, Kubernetes), and self‑service capabilities.
• Define, document, and own security concepts for integration platforms and solutions, ensuring compliance with internal security guidelines.
• Support the implementation of regulatory and normative requirements such as ISO27001, NIS‑2, DORA, and SCA, and represent integration platforms and solutions in all security‑relevant audits.
• Advise business units and technical stakeholders on the design of secure integration architectures (API, event streaming, file‑based integration) and on IAM, Zero Trust, least privilege, secrets management, and network segmentation.
• Conduct threat analyses and threat modeling for integration solutions, assess complex risk scenarios, and derive appropriate mitigation measures.
• Collaborate closely with the Security Operations Center (SOC), analyze and escalation security‑relevant incidents, support incident response and forensic activities, and define clear security monitoring KPIs while fostering a strong security‑by‑design culture.

Qualifications

• Several years of experience in cloud security (Azure), API security, network security, IAM, Zero Trust architectures, and business continuity management in a comparable environment.
• Strong knowledge of security frameworks and standards such as BSI, NIST, and ISO27001, as well as experience in penetration testing, threat modeling, and security log analysis.
• Expertise in integration solutions and platforms, web and mobile applications, ERP systems, and compliance and audit topics; an ethical hacker certification is a plus.
• Works in a structured, analytical, and risk‑oriented manner, proactively identifies and escalates security‑relevant topics.
• Communicates complex technical topics clearly and appropriately to both technical and non‑technical stakeholders.
• Takes strong ownership, demonstrates a high willingness to continuously learn, has awareness of new risk vectors (e.g., AI‑driven risks), and translates security requirements into practical recommendations for action.

This position can be full‑time or part‑time (min. 30 h/week). Severely disabled applicants will be given preference if equally qualified. Regardless of age, gender, origin, sexual identity or orientation, all applicants are welcome.