Cloud Security Engineer (m/f/x)
Europe (Remote)
Applications have closed
commercetools
Discover the world’s leading composable commerce platform. Sign up now for a free trial and transform your digital commerce experience.commercetools - we are:
- The competitive sort: We didn’t become the fastest growing, highest ever valued SaaS software company in digital commerce with nearly 100% year-over-year growth by sitting on the sidelines.
- Inspired: Continually exploring what’s possible — the innovators of headless commerce, the visionaries behind MACH — our patented tech has radically disrupted the world of enterprise ecommerce software - and we are just getting started.
- Valued: Smart, strong, passionate individuals hailing from over 50 countries across the globe, speaking over 43 languages, and collectively embracing diversity, encouraging inclusion, and fostering a culture of caring.
- Driven: We push the limits, technology, and ourselves to retain the trust of some of the world’s leading and fastest growing brands every single day.
The Opportunity:
We are looking for a security specialist experienced with all layers of our tech stack, from IaaS / PaaS over APIs to single-page web applications. If you are a seasoned product security expert and want to work with a team that is committed to security, this job is for you. This is a hands-on role where you need to dig into all layers , linux, cloud and code, to ensure security. We love e-commerce and that comes with a need to secure PII data and build high scalability applications. To enable this we are putting security first at all layers. We are looking forward to your contribution to our product!
Please note that for this role, we can currently offer full-remote work for candidates based in the European Union and in the United Kingdom.
Your Mission:
- Introducing security by design flows and principles
- You code and implement security measures on all levels
- Running threat modeling workshops
- Conducting risk analysis for planned implementations
- Designing automated processes that ensure security in a CI/CD world
- Organizing or conducting security tests together with external companies
- Supporting the corporate security and legal team in audits
- Working with the security special interest group
- Make sure security topics are addressed in product roadmap planning
What you need to succeed:
- Experience with cloud infrastructure and cloud security
- Experience with Automated security principles like, DAST, SAST and IAST
- Previous experience in a technology/software oriented role in a technology company
- Solid experience in working with product teams on security
- Experience with penetration testing
- Sound knowledge of Linux systems, Kubernetes, API, and web application security
- Practical experience in DevSecOps, including Proficiency in at least one scripting language (javascript , go ..)
- Security Certifications such as OSCP, Certified Kubernetes Security Specialist, or GCP security certification
- Good English writing/documentation skills
- Experience communicating with stakeholders (legal, c-level, engineering)
- Research new topics in a short period of time, to help teams with new technologies
- Be comfortable with agile development principles
- (Preferable) Experience with European and international privacy laws
Team Values:
Positivity. Negativity is the enemy of progress.
Trust & Transparency. Promote direct and continuous feedback.
Learning. Be proud if you’ve failed at something. Think big, start small, learn fast!
Tech at commercetools:
We Are Open Source And Innovative By Design
🚀 We make rapid progress by being early adopters of React, Scala, and GraphQL
📋 We share & contribute to the open source community: https://github.com/sangria-graphql
⚙️ We <3 Automation and Machine Learning
We care about your Growth and Well-being
☀️ Remote Work: Up to 60 days/year from a country different from your base country
💻 Open Learning & Development Budget
📚 ct Academy: Regular internal training sessions
⌚️ Flexibility: Morning person or night owl? We believe in outcome and motivated employees
🚀 Mindset & Growth: A diverse, creative workspace with an international culture & learning environment
Are you ready? Come grow with us!
🔍 Are you looking for something else? Check out our Career Page and our Website for more information.
We are all different and that is what makes us stronger! We hire great people from a wide variety of backgrounds, not just because it’s the right thing to do, but because it makes our company better.
commercetools celebrates being a diverse environment and is proud to be an equal opportunities employer. If your professional profile aligns with our specific hiring requirements and company culture, then we encourage you to apply. We will assess your competencies, future potential, approach to learning and self-development and passion, and not your age, color, national origin, religion, gender, gender identity or expression, sexual orientation, familial status, genetics, or disability.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Agile APIs Application security Audits Automation C CI/CD Cloud DAST DevSecOps E-commerce Ecommerce GCP GitHub IaaS IAST JavaScript Kubernetes Linux Machine Learning Open Source OSCP PaaS Pentesting Privacy Product security Risk analysis SaaS SAST Scala Scripting
Perks/benefits: Career development Startup environment Transparency
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Information Security Specialist jobs
- Open Senior Cyber Security Engineer jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Principal Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Staff Security Engineer jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Product Security Engineer jobs
- Open Manager Pentest H/F jobs
- Open Cyber Security Specialist jobs
- Open Senior Information Security Analyst jobs
- Open Cybersecurity Analyst jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Chief Information Security Officer jobs
- Open IT Security Analyst jobs
- Open Cybersecurity Consultant jobs
- Open Consultant SOC / CERT H/F jobs
- Open Senior Information Security Engineer jobs
- Open Security Specialist jobs
- Open Senior Penetration Tester jobs
- Open Security Researcher jobs
- Open Cybersecurity Specialist jobs
- Open Senior Security Architect jobs
- Open IT Security Engineer jobs
- Open Security Operations Analyst jobs
- Open CISM-related jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open ISO 27001-related jobs
- Open Pentesting-related jobs
- Open Application security-related jobs
- Open Agile-related jobs
- Open GCP-related jobs
- Open Vulnerability management-related jobs
- Open SaaS-related jobs
- Open CISA-related jobs
- Open Analytics-related jobs
- Open IAM-related jobs
- Open Threat intelligence-related jobs
- Open APIs-related jobs
- Open Java-related jobs
- Open Security assessment-related jobs
- Open Malware-related jobs
- Open DevOps-related jobs
- Open Security Clearance-related jobs
- Open IDS-related jobs
- Open EDR-related jobs
- Open CEH-related jobs
- Open Forensics-related jobs
- Open Kubernetes-related jobs