×
Bewerbung Bewerbung Stellen posten Stellen posten Startseite
Hier anmelden um sich kostenlos auf Stellen zu bewerben oder Stellenanzeigen aufzugeben. X
Mehr Jobs:
Cyber-Sicherheit Systemingenieur Netzwerksicherheit Cloud Computing

Cloud & Infrastructure Security Engineer

in 85521, Ottobrunn, Bayern, Deutschland
Unternehmen: Isar Aerospace Technologies GmbH
Vollzeit position
Verfasst am 2025-12-31
Berufliche Spezialisierung:
  • IT/Informationstechnik
    Cyber-Sicherheit, Systemingenieur, Netzwerksicherheit, Cloud Computing
Gehalts-/Lohnspanne oder Branchenbenchmark: 60000 - 80000 EUR pro Jahr EUR 60000.00 80000.00 YEAR
Stellenbeschreibung
Stellenbezeichnung: Cloud & Infrastructure Security Engineer (m/f/d)
Location: Ottobrunn

Ottobrunn, Bavaria, Germany

Mission Brief

You are the technical guardian of our digital infrastructure. At Isar Aerospace, securing the cloud and endpoint environment that builds our rockets is mission critical.

We are looking for a hands‑on Cloud & Infrastructure Security Engineer who bridges the gap between Security Architecture and IT Operations. You are not just a consultant; you are a builder and an auditor. You wear two hats: the Engineer who configures complex security controls in Azure and Intune, and the Technical Auditor who verifies that IT operations meet the high standards required for a space company.

You will act as the technical conscience of our environment, specifically within the Microsoft ecosystem (Azure, O365, Intune).

Your Role in Our Space Mission :

  • Secure the Microsoft Ecosystem: Go deep into the configurations of Microsoft Intune (Endpoint Manager) and Office 365. You will define and implement the exact policies required to secure our devices and applications.
  • The Technical Auditor: You don't just trust; you verify. Act as the technical auditor for the IT team, checking their configurations against security baselines and providing guidance to close gaps.
  • Identity & Access Architect: Implement and maintain the keys to the kingdom. You will manage Identity and Access Management (IAM) controls within Entra  (Azure AD), ensuring strict MFA, Conditional Access, and Privileged Identity Management (PIM) enforcement.
  • Defend the Perimeter: Operate and tune our security monitoring tools (SIEM, XDR) to separate signal from noise. When an alert fires, you investigate the root cause and coordinate remediation.
  • Define the Hardening Standard: Develop and maintain the "Gold Standard" configuration baselines for our Operating Systems (Windows, Linux, macOS) and Cloud Services. You define what "secure" looks like.
  • Automate the Defense: Use scripting to automate security checks, streamline incident response, and integrate disparate security tools.
  • Collaborate & Document
    :
    Produce clear technical documentation and engineering standards. You translate complex security requirements into runbooks that the IT team can execute.
Qualification Checklist
  • Experience
    : 3–5+ years of experience in Information Security, Security Engineering, or Cloud Infrastructure, with a specific focus on the Microsoft ecosystem.
  • Azure & Intune Mastery: Deep hands‑on experience with Azure
    , Office 365
    , and Intune
    . You are comfortable navigating these portals to configure policies, not just view them.
  • Cloud Security Fluency: Experience with at least one major cloud platform (specifically Azure) and its native security services (Defender for Cloud, Sentinel).
  • Technical Audit Mindset: You can "check the homework" of other teams. You know exactly where to look to verify if a server or endpoint is truly compliant with CIS benchmarks or internal standards.
  • Incident Response Skills
    :
    Proficiency in log analysis and security telemetry. You can troubleshoot a security incident across network, endpoint, and cloud logs to find the smoking gun.
  • Scripting Capability
    :
    Basic to intermediate scripting skills (e.g., Power Shell, Python) to automate administrative tasks and security validations.
Bonus Skills
  • Network Security
    :
    Understanding of how SASE platforms (e.g., Netskope, Zscaler etc.) enforce protection at the network edge and network segmentation controls.
  • Certifications
    :
    Microsoft certifications such as SC-200 (Security Operations Analyst), MS-500 (Security Administrator), or AZ-500 (Azure Security Technologies).
  • Framework Knowledge
    :
    Experience applying CIS Benchmarks or similar hardening standards in a production environment.
  • Network Security
    :
    Understanding of SASE principles and network segmentation controls.
  • Employee Participation Program
    :
    Share in our success through our virtual company share program.
  • 30 days of vacation
    :
    Enjoy the days off to relax and recharge.
  • Company pension plan
    :
    Secure your future with our company pension plan, featuring a 20% employer contribution after the probation period.
  • Subsidised lunch
    :
    Stay energised with delicious, subsidised lunches every day.
  • Public transport ticket
    :
    Commute with ease using a fully financed…
Bitte beachten Sie, dass derzeit keine Bewerbungen aus Ihrem Zuständigkeitsbereich für diese Stelle über diese Jobseite akzeptiert werden. Die Präferenzen der Kandidaten liegen im Ermessen des Arbeitgebers oder des Personalvermittlers und werden ausschließlich von diesen bestimmt.
Um nach Stellen zu suchen, sie anzusehen und sich zu bewerben, die Bewerbungen aus Ihrem Standort oder Land akzeptieren, klicken Sie hier, um eine Suche zu starten:
 
 
 
Suchen Sie hier nach weiteren Stellen:
(nach Beruf, Fähigkeit)
Standort
Increase search radius (miles)

Sprache der Stellenausschreibung
Lebenslauf-Kategorie
Bildungsgrad
Filter
Mindest-Bildungsgrad für die Stelle
Mindest-Berufserfahrung für die Stelle
Veröffentlicht in den letzten:
Gehalt
Fortgeschritten