Senior Cloud Security Engineer (f/m/d)

Company Description

At Enpal, we are pursuing the dream of building the largest renewable community in Europe. We make solar energy accessible by renting out solar systems, electricity storage, and wall boxes at all-inclusive rates, complemented by a green electricity tariff. Our approach is digital, decentralized, and 100% renewable, aiming to combat climate change while fostering rapid company growth.

Job Description

We are looking for a Senior Cloud Security Engineer (f/m/d) with extensive experience in cloud security, a deep understanding of cloud platforms, and the ability to implement and manage security measures. You will ensure the security and integrity of our cloud-based systems and data.

Join us to develop your professional skills, participate in the energy revolution, and help drive sustainable change worldwide. We look forward to your application.

Responsibilities include:

• Designing, implementing, and managing cloud security solutions, delivering incremental value and improving user experience.
• Adopting Shift-Left and Zero-Trust security approaches to stay ahead of threats.
• Collaborating with cross-functional teams to integrate security best practices.
• Conducting Threat Modeling & Risk Assessments, leading secure design and reviews.
• Implementing continuous monitoring and incident response.
• Enforcing security policies, standards, and reusable security patterns across teams.

Qualifications
We seek candidates with roughly 50% of the listed qualifications; the remaining 50% is a unique contribution you bring.

• Minimum of 5 years in cloud security engineering.
• Understanding of Cloud Control Matrix and shared responsibility models.
• Experience with MITRE Cloud and Kubernetes Threat Matrices.
• Knowledge of cloud architecture and design patterns; Azure is a plus.
• Proficiency with cloud-native security tools (e.g., security groups, private endpoints, firewalls).
• Knowledge of Non-Human Identity management and Microsoft Identity Platform.
• Experience with hardening cloud workloads and orchestrators.
• Experience with security tooling and automation (e.g., CNAPP, CWPP).
• Familiarity with DevSecOps practices and tools.
• Relevant certifications (CCSP, CCSK, CKS, Azure Security) are a plus.
• Understanding of information security frameworks, standards, and policies.
• Excellent English communication skills; German is a plus.
• Passion for energy transition and sustainability.
• Desire to grow, take responsibility, and influence company direction.
• Alignment with agile and lean principles, valuing people over processes and minimal documentation.

Additional Information

• Work in Germany's first green unicorn and shape the solar energy revolution.
• Join a diverse team with over 65 nationalities.
• Hybrid working model with office in Berlin-Friedrichshain.
• Modern office amenities including ping-pong, yoga, roof terrace, and stocked drinks.
• Comprehensive onboarding and continuous learning opportunities.
• Participate in team events and feedback culture to foster growth.