devjobs.de

Manager Cloud & Infrastructure Security

BioNTech AG · Mainz | Deutschland · Onsite

Gehalt auf Anfrage

Gefunden am 05.06.2026

Match

84%

Fit in Skills, Kultur und Entwicklungspfad.

Beschreibung

Job Zusammenfassung In dieser Position entwickelst du technische Sicherheitskonzepte für die Cloud- und Infrastrukturumgebungen, führst Design-Reviews durch und sicherst die Einhaltung von Sicherheitsstandards und -anforderungen. Job Zusammenfassung In dieser Position entwickelst du technische Sicherheitskonzepte für die Cloud- und Infrastrukturumgebungen, führst Design-Reviews durch und sicherst die Einhaltung von Sicherheitsstandards und -anforderungen. Deine Rolle im Team The Cloud & Infrastructure Security Manager supports the security design for BioNTech's global cloud and on-premises infrastructure. The role focuses on translating security requirements into implementable controls, coordinating with platform and operations teams, and ensuring secure-by-design adoption of security standards and guidelines. The position works within established security frameworks and standards developed by Cyber & Information Security (C&IS). The Manager executes design reviews, supports the definition of logging/monitoring needs, and ensures compliance with regulatory and internal security requirements. Contribute to the definition and maintenance of security baselines, guardrails, and hardening standards for cloud and on-prem infrastructure. Conduct security design and configuration reviews for infrastructure and cloud projects; identify security gaps and provide recommendations. Design and maintain security logging and monitoring requirements (e.g., cloud audit logs such as CloudTrail, network and endpoint telemetry) to enable effective detection and incident response. Translate security requirements into practical controls and designs, focusing on what needs to be implemented. Coordinate with security architects, platform engineers, DevOps, and operational teams to ensure security requirements are properly integrated into solution designs and CI/CD processes. Maintain and update cloud and infrastructure security documentation (e.g., handbooks, playbooks). Support execution of cloud security initiatives such as landing zones, vulnerability remediation alignment, Zero Trust components, and platform hardening. Support compliance activities (ISO 27001, KRITIS) by contributing evidence, documentation, and remediation support. Unsere Erwartungen an dich Ausbildung University degree in Computer Science, Cyber Security, Engineering, or equivalent professional experience. Qualifikationen Good understanding of IAM, network security, encryption, logging/monitoring, and DevSecOps concepts. Relevant certifications preferred: CISSP, CISM, CCSP, Azure or AWS security certifications. Strong communication skills with the ability to explain security concepts (in both English and German) to technical teams and management. Familiarity with security frameworks (ISO 27001/27k, CIS Benchmarks, NIST CSF, SOC 2, KRITIS, NIS2) is an advantage. Erfahrung 8+ years of experience in IT security, cloud, and/or infrastructure security, with proven experience in security design. Professional experience with cloud security tools and platforms (e.g., CSPM, CNAPP, CWPP, native cloud security services). Experience working with Infrastructure-as-Code and cloud configuration standards. Experience in regulated environments (pharma, biotech, healthcare) is a plus. Practical experience with Wiz and its capabilities for posture management, risk visibility, and remediation workflows is a strong plus. Unser Angebot Your flexibility: flexible hours | vacation account Your growth: Digital Learning | Performance & talent development | leadership development | Apprenticeships | LinkedIn Learning Your value: Your voice at the table | Culture on an equal footing | Opportunities to shape & impact | Support for your full potential Your health and lifestyle: Company bike Your mobility: Job ticket | Deutschlandticket Your life phases: Employer-funded pension | Childcare Benefits Work-Life-Integration ⏰ Flexible Arbeitszeiten 🏠 Home Office 🍼 Kinderbetreuung Mehr Netto 🚎 Verkehrsmittel-Zuschuss 👴🏻 Betr. Altersvorsorge Themen mit denen du dich im Job beschäftigst Cloud Computing Cyber/Security Metadaten Level: Senior Job Feld: IT, Security Anstellung: Vollzeit Vertragsart: Unbefristetes Dienstverhältnis Arbeitsmodell: Onsite Unternehmenstyp: Etablierte Firma Branche: Pharma, Chemie, Biotech Ort: Mainz | Deutschland

Tech Stack

AWSAzure

Warum passt du zu dieser Stelle?

Fit technisch: Stark auf Backend und API-Architektur.

Gaps: Fehlende Tool-Erfahrung in 1-2 Schlüsselbereichen.

Success-Wahrscheinlichkeit: Hoch bei schneller Einarbeitung.