Manager, Cloud & Infrastructure Security
Mainz, Rheinland-Pfalz, Germany
Full Time
4 hours ago
No H1B
Key skills
AWSAzureCloudCyber SecurityIAMLeadershipCommunicationNetwork SecurityCloud SecurityZero Trust
About this role
Role Overview
- Support the security design for BioNTech’s global cloud and on‑premises infrastructure.
- Translate security requirements into implementable controls.
- Coordinate with platform and operations teams.
- Ensure secure‑by‑design adoption of security standards and guidelines.
- Execute design reviews, support the definition of logging/monitoring needs, and ensure compliance with regulatory and internal security requirements.
- Contribute to the definition and maintenance of security baselines, guardrails, and hardening standards for cloud and on‑prem infrastructure.
- Conduct security design and configuration reviews for infrastructure and cloud projects; identify security gaps and provide recommendations.
- Design and maintain security logging and monitoring requirements (e.g., cloud audit logs such as CloudTrail, network and endpoint telemetry) to enable effective detection and incident response.
- Maintain and update cloud and infrastructure security documentation (e.g., handbooks, playbooks).
- Support execution of cloud security initiatives such as landing zones, vulnerability remediation alignment, Zero Trust components, and platform hardening.
- Support compliance activities (ISO 27001, KRITIS) by contributing evidence, documentation, and remediation support.
Requirements
- University degree in Computer Science, Cyber Security, Engineering, or equivalent professional experience.
- 8+ years of experience in IT security, cloud, and/or infrastructure security, with proven experience in security design.
- Professional experience with cloud security tools and platforms (e.g., CSPM, CNAPP, CWPP, native cloud security services).
- Good understanding of IAM, network security, encryption, logging/monitoring, and DevSecOps concepts.
- Experience working with Infrastructure‑as‑Code and cloud configuration standards.
- Relevant certifications preferred: CISSP, CISM, CCSP, Azure or AWS security certifications.
- Strong communication skills with the ability to explain security concepts (in both English and German) to technical teams and management.
- Familiarity with security frameworks (ISO 27001/27k, CIS Benchmarks, NIST CSF, SOC 2, KRITIS, NIS2) is an advantage.
- Experience in regulated environments (pharma, biotech, healthcare) is a plus.
- Practical experience with Wiz and its capabilities for posture management, risk visibility, and remediation workflows is a strong plus.
Tech Stack
- AWS
- Azure
- Cloud
- Cyber Security
Benefits
- flexible hours
- vacation account
- Digital Learning
- Performance & talent development
- leadership development
- Apprenticeships
- LinkedIn Learning
- Your voice at the table
- Culture on an equal footing
- Opportunities to shape & impact
- Support for your full potential
- Company bike
- Job ticket
- Deutschlandticket
- Employer-funded pension
- Childcare