Job Drop BerlinYOUR WAY INTO BERLIN TECH
POST A JOBSAVED JOBSMEET A STARTUPREADSUBSCRIBE
NewsletterLinkedIn
AboutTermsImpressumPrivacy

IT Security Engineering Lead

EEnpal
Seniority
Senior
Model
In-Office
Sector
Climate tech
Salary
Undisclosed
Contract
Full-Time

About the role

We are looking for an IT Security Engineering Lead to join our CISO organization. In this role, you take ISO 27001, NIS2, and KRITIS requirements off the page and turn them into real work assessing our actual systems, finding where we fall short, collecting evidence, and making sure gaps get closed.

What you'll do

  • Break down ISO 27001, NIS2/BSIG, and KRITIS into concrete, prioritized actions and develop the right solutions or hand over to our CTO and IT teams that will take action.
  • Go hands-on across Azure, Entra ID, M365, Intune, Defender XDR, AKS, Terraform, CI/CD pipelines, and Datawarehouse to find where reality doesn't match the requirement.
  • Develop solutions that close gaps, respond to cyber security incidents, manage them and create plans to prevent the next occurrence.
  • Use AI tooling to automate evidence collection, speed up gap analysis, and generate structured audit documentation.
  • Track findings, coordinate with technical owners, escalate what's stuck, and verify that fixes actually hold.
  • Make regulatory requirements understandable for technical teams and security requirements understandable for everyone else.

What you'll need

  • 5+ years of experience in cyber security or a technical compliance role in a cloud-first environment.
  • Technical fluency across Azure, Entra ID, Microsoft 365, Intune, and Defender, and comfortable enough with Kubernetes, IaC, Terraform, CI/CD, and APIs to assess whether a configuration meets a control objective.
  • Experience with security tooling and automation across domains like SAST, SCA, DAST, CNAPP, CWPP.
  • Insights on what ISO 27001:2022, NIS2/BSIG, and KRITIS require.
  • Use AI tools in your daily work and know how to apply them to compliance and security operations.
  • Clear communication in English, spoken and written.

Nice to have

  • Knowledge of BSI-Grundschutz or BSI C5.
  • Certifications like CISSP, OSCP, CISM, CRISC, AZ-500, SC-100, GCIH, or OSIR.
  • Knowledge of German.

What they offer

  • Shape security at Germany's first green unicorn and make a real dent in climate change.
  • Team of 65+ nationalities that is smart, driven, and genuinely collaborative.
  • On-site in Berlin-Friedrichshain modern office with height-adjustable desks, table tennis, and barista coffee.
  • Real ownership from day one with short decision paths and an open feedback culture.
  • 29 + 2 vacation days, Wellhub membership, and corporate benefits.
APPLY →