Principal Information Security Engineer

With a global team of 5800 IT professionals, DHL IT Services connects people and keeps the global economy running by continuously innovating and creating sustainable digital solutions. We work beyond global borders and push boundaries across all dimensions of logistics. You can leave your mark shaping the technology backbone of the biggest logistics company in the world. Our locations in Malaysia, Czech Republic, and India earned the #GreatPlaceToWork certification, reflecting our commitment to exceptional employee experience.


At IT Services, we are passionate about Cloud Technologies and Information Security. Our SPCS Cloud Security, Compliance, and Resiliency team is continuously expanding. No matter your level of proficiency as a Principal Information Security Engineer, you can always grow within our diverse environment.

#DHL #DHLITServices #GreatPlace


As part of the SPCS Cloud Security, Compliance, and Resiliency team, you will support posture management and workload protection for DHL's public cloud platforms (Azure, GCP, OCI, AWS, etc.), using various tools. You will support engineering teams and stakeholders by identifying non-compliance security issues and working with them to address these issues as per requirements. Additionally, as threat landscapes evolve, defining and implementing new controls is essential.

• Extensive experience in securing cloud environments (Azure, AWS, GCP), with strong knowledge of cloud-native security services, IAM, network security, and encryption. Familiarity with securing IaaS, PaaS, and SaaS deployments and applying security best practices in cloud architecture.
• Deep understanding of security risk assessments, compliance standards (ISO 27001, SOC 2, GDPR), and cloud security frameworks (CIS, NIST). Skilled in risk mitigation, threat modeling, and profiling to anticipate vulnerabilities and ensure regulatory adherence.
• Proficiency in integrating security into DevOps pipelines via Infrastructure as Code (IaC) and CI/CD tools. Experience with automation tools for security monitoring, threat detection, and vulnerability management.
• Strong skills in designing secure, scalable, and resilient cloud architectures. Experience in security governance, policy definition, continuous monitoring, and incident response.
• Microsoft Azure and GCP certifications are highly recommended.

Experience with Cloud Security Posture Management and Vulnerability Management solutions is a significant advantage. Good knowledge of Cloud Security (Azure, GCP, OCI), posture management, and alert reporting is essential.

You should have a solid understanding of scripting languages such as Python, PowerShell, and CLI tools. Ability to work independently, prioritize tasks under pressure, and collaborate across regions in a multinational environment. Fluency in spoken and written English is required.

• Hybrid work arrangements balancing in-office and remote work
• Unlimited outpatient and inpatient medical coverage
• Flexible benefit plans for you and your family
• Option to choose days off from public holidays, including weekends and ad-hoc holidays
• Modern offices with free parking

DHL is an equal opportunity employer. We evaluate qualified applicants without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, veteran status, or any other protected characteristic.