IT Security Engineer (Cloud) - 100% Remote (m/w/d)

Please do NOT apply without checking our and our company . We are looking for team members who share our vision and carry out our culture. Would you really like to work with us? And can you really live our values?

• We are a fast-growing technology company with a clear vision: We shape the digital future.
• Our mission? To empower people around the world to share their knowledge online and build their own successful businesses. With our platform, we enable millions of people to access valuable knowledge and provide them with the tools they need to truly achieve their goals.
• What makes us special: We are a team of around 200 highly motivated employees who don’t wait for instructions but actively shape their day-to-day work and continuously improve it – just like our customers.
• Our team is as diverse as our ideas: People from over 40 different countries of birth work together toward one shared vision. What unites us are our values, our drive, and our ambition to truly make an impact. We’re not big talkers – we’re doers. We love to perform.
• As we continue to grow, we are expanding our teams in a focused and sustainable way and are looking for individuals who take ownership, think proactively, and want to shape the future with us.

• Protect our systems and cloud environments: You continuously analyze security risks, implement modern security standards, and ensure the protection of our cloud infrastructure and critical business systems.
• Establish clear security policies and processes: You further develop our security policies, standardize security processes, and ensure their adoption across the entire organization.
• Drive security awareness and training initiatives: You strengthen security awareness throughout the company through training sessions, workshops, and proactive communication with all teams.
• Ensure structured incident and risk management: You identify security incidents at an early stage, coordinate their handling, prepare analyses, and continuously improve our incident response procedures.
• Ensure compliance with standards and regulations (PCI, ISO, NIS2): You support the company in meeting external compliance requirements, prepare audits, and guide business units through compliance processes.
• Monitor our core security mechanisms: You analyze security-critical components, support monitoring and audit processes, and ensure transparency regarding security-relevant events.
• Collaborate closely with Product, IT, and Engineering teams: You support other teams in designing secure solutions, reducing risks, simplifying security processes, and contributing to a secure, scalable overall architecture.
• Ensure a secure software development lifecycle: You expand our secure development lifecycle (SSDLC), support teams on security-related topics, and ensure that security reviews are a reliable part of our processes.

Your superpower(s)

• You identify security risks at an early stage and proactively think in terms of solutions.
• You have a strong understanding of how software, infrastructure, and cloud systems interact.
• Assessing the security of systems, services, and processes is your passion.
• Nice-to-have: Experience with compliance standards such as ISO 27001, PCI DSS, or NIS2.
• Nice-to-have: Experience with security testing (e.g., SAST, DAST, vulnerability scans).
• Understanding of secure development and infrastructure processes (SSDLC, Cloud Security, IAM, Risk Management).
• Strong analytical thinking when evaluating security incidents and vulnerabilities.
• Excellent communication skills – able to explain technical risks in a clear and understandable way.
• Basic knowledge of cloud environments (GCP/AWS) and automated workflows (e.g., CI/CD).
• Nice-to-have: Experience with security tools and standards such as SIEM, SSO/MFA, audits, and policies.

• … you do not enjoy identifying and minimizing security risks.
• … you struggle with structured analytical work and forward-thinking planning.
• … you are not interested in continuously learning about security topics: IT security is constantly evolving.
• … you do not enjoy working independently on security-critical projects.
• … you tend to avoid conflicts: security sometimes means addressing clear risks openly and directly.
• … you do not feel comfortable working in an international team.
• … you do not identify with our values.

• Monitoring & Analysis: You review security alerts, logs, and notifications from our systems and initiate appropriate actions.
• Security Reviews: You work on security-related topics such as SSDLC improvements, risk analyses, policies, or cloud security hardening.
• Incident Response: You analyze reported security incidents, assess risks, and contribute to sustainable solutions.
• Projects: You support initiatives such as policy development, compliance preparation, vulnerability management, or company-wide security awareness measures.

=> Please take a REALLY close look at the . Are you ready to live them?