(Technical) Cloud and Platform Security Lead (80-100%)

Tasks

The position as (Technical) Cloud and Platform Security Lead includes the following tasks:

• Partner directly with the platform, engineering, and product teams to secure the cloud platform and digital assets.
• Reviewing, challenging, and improving technical specifications and solution designs in the following areas:
  • Cloud architecture and landing zones (AWS & Azure)
  • Platform, application, and Kubernetes-based microservices deployment
  • Third-party integrations and network connections
• Ownership and continuous improvement of SSDLC capabilities through hands-on work with engineering teams on CI/CD controls to enable and enhance the developer experience.
• Own the configuration, baseline, and day-to-day operation of security tooling to ensure results are integrated into engineering and operational workflows.
• Design, review, and reinforce infrastructure-as-code to create secure defaults, safeguards, and reusable patterns for production deployment.
• Design tagging, monitoring, and detection architecture for platform and application security events.
• Design and review encryption and key management solutions, including key lifecycle controls, signing workflows, and approval chains to support digital assets.

Requirements

Our ideal candidate has:

• 7+ years of hands-on experience in IT and security, with deep technical expertise in cloud-native, platform, or product security roles.
• Demonstrable ability to design, implement, and operate technical security controls in AWS and Azure environments.
• Deep technical expertise in the security of Kubernetes and container platforms.
• Hands-on experience embedding security into modern software delivery and SSDLC workflows, including CI/CD pipelines and developer tools.
• Ability to design, configure, and operate cloud-native security solutions from start to finish.
• Familiarity with technical configuration files, security policies, and code-based definitions (e.g., IaC, automation, policy-as-code).
• Experience working with SOC teams to define detection and response strategies.
• Fluent in English, German is a plus.

Further advantages

The following experience is advantageous:

• Experience working with Web3 product components, such as digital assets, transaction signing workflows, or tokenization platforms.
• Previous experience in security engineering, offensive security, or operations roles.
• Relevant industry certifications (e.g., cloud security, Kubernetes, etc.) are a plus, but hands-on experience and technical judgment are more important.

We offer

At Sygnum, we offer:

• A comprehensive package of benefits for all team members.
• A dynamic