(Technical) Cloud and Platform Security Lead

Tasks

The position as (Technical) Cloud and Platform Security Lead includes the following tasks:

• Partner directly with the platform, engineering, and product teams to secure the cloud platform and digital assets.
• Reviewing, challenging, and improving technical specifications and solution designs in the following areas:
  • Cloud architecture and landing zones (AWS & Azure)
  • Platform, application, and Kubernetes-based microservices deployment
  • Third-party integrations and network connectivity
• Ownership and continuous improvement of SSDLC capabilities through direct collaboration with engineering teams on CI/CD controls
• Own the configuration, baseline, and day-to-day operation of security tooling to ensure results are integrated into engineering and operational workflows
• Design, review, and reinforce infrastructure-as-code to create secure defaults, safeguards, and reusable patterns for production deployment.
• Designing logging, monitoring, and detection architecture for platform and application security events
• Design and review encryption and key management solutions, including key lifecycle controls, signing workflows, and approval chains for digital assets.

Requirements

Our ideal candidate has:

• 7+ years of hands-on experience in IT and security, with deep technical expertise in cloud-native, platform, or product security roles
• Demonstrable ability to design, implement, and operate technical security controls in AWS and Azure environments
• Deep technical expertise in Kubernetes and container platforms
• Practical experience embedding security into modern software delivery and SSDLC workflows, including CI/CD pipelines and developer tools
• Ability to design, configure, and execute cloud-native security solutions from start to finish
• Comfortable working with technical configuration files, security policies, and code-based definitions (e.g., IaC, automation, policy-as-code)
• Experience working with SOC teams to define detection and response strategies
• Fluent in English, German is a plus

Further advantages

The following experience is very beneficial:

• Experience working with Web3 product components, such as digital assets, transaction signing workflows, or tokenization platforms
• Previous experience in security engineering, offensive security, or operations roles
• Relevant industry certifications (e.g., cloud security, Kubernetes, etc.) are a plus, but practical experience and technical judgment are more important.

We offer

We offer a comprehensive package of benefits for all team members, including:

• A dynamic, global team that builds a trustworthy connection between tradition