[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"project-75-remote-cloud-security-risk-compliance-specialist-fmd":3,"similar-75-remote-cloud-security-risk-compliance-specialist-fmd":41},{"id":4,"slug":5,"title":6,"skills":7,"budget":24,"duration":25,"location":26,"onsitePercent":27,"contractType":28,"foundAt":29,"category":30,"description":34,"rawText":35,"webTitle":36,"webText":37,"language":38,"projectId":39,"sourceUrl":40},5367,"75-remote-cloud-security-risk-compliance-specialist-fmd","75% remote: Cloud Security Risk & Compliance Specialist (f\u002Fm\u002Fd)",[8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23],"Security architecture principles","Secure design patterns","DevSecOps","Cloud Security","Identity and Access Management (IAM)","Application Security","Incident Response and Resilience","Cryptography and Data Protection","Threat modeling","Risk assessment","ISO\u002FIEC 27001","CSA CCM","BSI Grundschutz","NIST CSF","Kubernetes","English C1","Verhandelbar","15.06.2026 - 31.12.2026++","Frankfurt am Main",25,"contracting","2026-05-22T08:01:06+00:00",{"id":31,"slug":32,"label":33},5,"it_infra_security","IT-Infrastruktur & Security","Cloud Security Risk & Compliance Specialist position focusing on embedding security and compliance practices throughout product portfolio and platform management. Role involves translating compliance requirements into technical controls, providing security guidance, and ensuring consistent adoption of security controls across the platform.","Jobtitel: 75% remote: Cloud Security Risk & Compliance Specialist (f\u002Fm\u002Fd)\nZahlungsintervall: Stündlich\nLohnsatz: Verhandelbar\nOrt: Remote & Frankfurt am Main\nJob veröffentlicht: 22-05-2026\nJob-ID: 75270\nName: Angelika Arghiani\nTelefonnummer: +4915119501559\nE-Mail: E-Mail: Angelika.Arghiani@nemensis.de Angelika.Arghiani@nemensis.de\n\nStellenbeschreibung\n\nFor our client we are looking for a Cloud Security Risk & Compliance Specialist (f\u002Fm\u002Fd).\n\nStart: 15.06.2026\nDuration: 31.12.2026++\nCapacity: 100%\nLocation: 75% Remote, 25% Frankfurt (occasionally, sometimes Berlin)\n1 week Frankfurt \u002F 3 weeks remote in rotation, up to 50% onsite in peak times\nLanguage: English is a must (C1), German is a plus (C1)\n\nTeam:\nInformation Security, Risk and Compliance (ISRC) is a vital and independent function which focuses on embedding robust security and compliance practices throughout the product portfolio, platform management and architecture.\nISRC consults designing and managing secure systems for the cloud platform through leading security design, threat modeling, and compliance\ninitiatives to ensure a resilient architectural foundation.\nEnsuring security related processes to enhance platform visibility and\nimplement streamlined, effective security workflows for operational integrity. Additionally, ISRC consults with all product lines to integrate DevSecOps practices, emphasizing secure code analysis, supply chain security, and automated security testing to deliver robust, secure product development lifecycles.\n\nTasks:\n- Translate control objectives and compliance requirements into actionable technical controls and non-functional\nrequirements (NFRs)\n- Drive and encourage of security review and consulting processes\n- Provide technical guidance to Product Line Security Champions\n- Ensure consistent adoption of controls and NFRs across the platform\n\nSkills (must-have):\n- Experience in security architecture principles, secure design patterns, DevSecOps and frameworks.\n- SME-Experience in at least one following security domains:\no Security Architecture and Design, Cloud Security,\no Identity and Access Management (IAM), Application Security,\no DevSecOps and Automation,\no Incident Response and Resilience,\no Cryptography and Data Protection\n- Experience in translating technical security requirements into actionable designs and documentation\n\nSkills (should-have):\n- Experience to design and implement security and compliance controls for platforms.\n- Experience with threat modeling methodologies and risk assessment.\n- Experience with DevSecOps practices and tools for integrating security into platform development\n- Experience with cloud posture management and detection tools (CSPM, KSP, Workload protection)\n- Good command and understanding of security & compliance standards and frameworks including ISO\u002FIEC 27001, CSA CCM, BSI Grundschutz, CSI, NIST CSF, NIST OSCAL, etc.\n- Experience in sector-specific regulations (e.g. NIS2, CRA, KRITIS, BSI C5, …)\n- Good understanding of CNCF-related ecosystems (e.g. Kubernetes, KeyCloak, Kyverno, Trivy, etc.)","Cloud Security Risk & Compliance Specialist (f\u002Fm\u002Fd)","Wir suchen einen erfahrenen Cloud Security Risk & Compliance Specialist (f\u002Fm\u002Fd) für ein spannendes Projekt im Bereich Information Security, Risk and Compliance. Die Position bietet eine flexible Arbeitsweise mit 75% Remote-Anteil und gelegentlichen Terminen vor Ort.\n\nAls Teil des ISRC-Teams werden Sie robuste Sicherheits- und Compliance-Praktiken in das gesamte Produktportfolio, Plattformmanagement und die Architektur einbetten. Sie beraten bei der Gestaltung und Verwaltung sicherer Systeme für Cloud-Plattformen durch führende Sicherheitsdesigns, Bedrohungsmodellierung und Compliance-Initiativen.\n\nIhre Hauptaufgaben umfassen die Übersetzung von Kontrollzielen und Compliance-Anforderungen in umsetzbare technische Kontrollen und nicht-funktionale Anforderungen. Sie treiben Sicherheitsüberprüfungs- und Beratungsprozesse voran, bieten technische Anleitung für Product Line Security Champions und stellen die konsistente Einführung von Kontrollen und NFRs plattformübergreifend sicher.\n\nWir erwarten Erfahrung in Sicherheitsarchitekturprinzipien, sicheren Designmustern, DevSecOps und Frameworks. Expertise in mindestens einem Sicherheitsbereich wie Security Architecture, Cloud Security, IAM, Application Security, DevSecOps, Incident Response oder Kryptographie ist erforderlich. Zusätzlich sollten Sie Erfahrung in der Übersetzung technischer Sicherheitsanforderungen in umsetzbare Designs haben.\n\nVorteilhaft sind Kenntnisse in Threat Modeling, DevSecOps-Tools, Cloud Posture Management sowie Verständnis für Sicherheits- und Compliance-Standards wie ISO\u002FIEC 27001, CSA CCM, NIST CSF und branchenspezifische Regulierungen.\n\nExzellente Englischkenntnisse (C1) sind erforderlich, Deutschkenntnisse von Vorteil.","en","75270","https:\u002F\u002Fjobs.nemensis.de\u002Fjob\u002F75270\u002F75-remote-cloud-security-risk-compliance-specialist-f-m-d",{"items":42},[43,66,83,99,119,141,161,179,196,213,227,255,275,288,307],{"id":44,"slug":45,"title":46,"skills":47,"budget":59,"duration":60,"location":61,"onsitePercent":62,"contractType":63,"foundAt":64,"category":65},5764,"it-security-consultant","IT-Security Consultant",[48,49,50,51,52,53,54,55,56,57,58],"IT-Security","OT-Security","ISO 27001","IEC 62443","ISMS","SIEM","Auditing","TISAX","NIS2","Netzwerk-Technologien","Firewall-Technologien","45.000-90.000 EUR\u002FJahr",null,"Neuss",40,"permanent","2026-05-22T18:09:10+00:00",{"id":31,"slug":32,"label":33},{"id":67,"slug":68,"title":69,"skills":70,"budget":79,"duration":60,"location":80,"onsitePercent":62,"contractType":63,"foundAt":81,"category":82},5756,"it-architekt-cloud-enterprise-architecture","IT-Architekt Cloud & Enterprise Architecture",[71,72,73,74,75,76,77,78],"IT-Architektur","Cloud-Architekturen","Plattform-Architekturen","Hybride Architekturen","TOGAF","Lösungsarchitektur","Systemintegration","Security","78.000-90.000 EUR\u002FJahr","Frankfurt am Main, Stuttgart oder Schwalmstadt-Ziegenhain","2026-05-22T18:07:22+00:00",{"id":31,"slug":32,"label":33},{"id":84,"slug":85,"title":86,"skills":87,"budget":95,"duration":60,"location":96,"onsitePercent":62,"contractType":63,"foundAt":97,"category":98},5753,"1st-level-support","1st Level Support",[88,89,90,91,92,93,94],"IT-Support","Helpdesk","Windows","Office 365","Ticketsystem","SLA-Überwachung","Wissensdatenbank","3.500-3.800 EUR\u002FMonat","Lüneburg","2026-05-22T18:06:42+00:00",{"id":31,"slug":32,"label":33},{"id":100,"slug":101,"title":102,"skills":103,"budget":114,"duration":60,"location":115,"onsitePercent":116,"contractType":63,"foundAt":117,"category":118},5752,"teamleiter-it-infrastructure-security-services","Teamleiter IT Infrastructure & Security Services",[104,105,57,106,107,108,109,110,111,112,113],"IT Infrastructure","Security Services","Security-Technologien","Cisco","Managed Services","SLAs","SIEM\u002FSOC","Datacenter-Lösungen","Teamführung","Mentoring","75.000-95.000 EUR\u002FJahr","Berlin, Frankfurt, Hamburg, Leipzig, München oder Stuttgart",50,"2026-05-22T18:06:27+00:00",{"id":31,"slug":32,"label":33},{"id":120,"slug":121,"title":122,"skills":123,"budget":137,"duration":60,"location":138,"onsitePercent":116,"contractType":63,"foundAt":139,"category":140},5751,"senior-it-consultant-security","Senior IT Consultant Security",[124,125,126,107,127,128,129,130,131,132,133,134,135,136],"IT Security","Network Security","Data Center Security","Fortinet","Check Point","F5","CrowdStrike","Proofpoint","Zscaler","Palo Alto","Security-Architekturen","CCNP Security","Fortinet Certified Professional","70.000-85.000 EUR\u002FJahr","Hamburg oder München","2026-05-22T18:06:14+00:00",{"id":31,"slug":32,"label":33},{"id":142,"slug":143,"title":144,"skills":145,"budget":60,"duration":155,"location":156,"onsitePercent":157,"contractType":158,"foundAt":159,"category":160},5724,"manager-mwd-fuer-projekt-it-sicherheit","Manager (m\u002Fw\u002Fd) für Projekt IT-Sicherheit",[146,147,148,149,150,151,152,153,154],"IT-Sicherheit","BSI-IT-Grundschutz","IT-Grundschutztools","SAVe-Tool","IT-Sicherheitskonzepte","Informationssicherheitskonzepte","Projektmanagement","Deutsch","Englisch","24 Monate mit Option auf Verlängerung","Bremen",60,"temp_work","2026-05-22T17:40:09+00:00",{"id":31,"slug":32,"label":33},{"id":162,"slug":163,"title":164,"skills":165,"budget":60,"duration":60,"location":60,"onsitePercent":60,"contractType":63,"foundAt":177,"category":178},5693,"systemadministrator-it-infrastruktur-mwd","Systemadministrator IT-Infrastruktur (m\u002Fw\u002Fd)",[166,167,168,169,170,171,172,173,174,175,176],"Windows Server 2016","IIS-NLB","SQL Server Always On","SharePoint 2016","PowerShell","Monitoring-Tools","Checkmk","Failovercluster-Manager","Zertifikatsverwaltung","VMware","Backup","2026-05-22T17:18:06+00:00",{"id":31,"slug":32,"label":33},{"id":180,"slug":181,"title":182,"skills":183,"budget":60,"duration":60,"location":60,"onsitePercent":60,"contractType":63,"foundAt":194,"category":195},5669,"it-systemadministrator-mwd-2","IT-Systemadministrator (m\u002Fw\u002Fd)",[184,185,186,187,188,189,190,175,191,48,192,193],"Windows Server Administration","Active Directory","Gruppenrichtlinien","Client-Management","Microsoft 365","Exchange Online","Netzwerkkomponenten","Hyper-V","Backup-Lösungen","Monitoring","2026-05-22T17:16:12+00:00",{"id":31,"slug":32,"label":33},{"id":197,"slug":198,"title":199,"skills":200,"budget":60,"duration":60,"location":60,"onsitePercent":60,"contractType":28,"foundAt":211,"category":212},5657,"consultant-linux-security-engineer-wmd","Consultant Linux Security Engineer (w\u002Fm\u002Fd)",[201,202,203,204,205,206,207,54,208,209,210],"Linux-Systemadministration","Systemhärtung","System- und Netzwerksicherheit","Google Cloud Platform","SELinux","AppArmor","iptables\u002Fnftables","Security-Frameworks","CIS Benchmarks","BSI-Grundschutz","2026-05-22T17:14:51+00:00",{"id":31,"slug":32,"label":33},{"id":214,"slug":215,"title":216,"skills":217,"budget":60,"duration":60,"location":60,"onsitePercent":60,"contractType":63,"foundAt":225,"category":226},5643,"senior-consultant-linux-mwd","(Senior-) Consultant Linux (m\u002Fw\u002Fd)",[218,219,220,221,222,223,224],"Linux","Ubuntu","CentOS","Systemadministration","IT-Infrastruktur","Beratung","Consulting","2026-05-22T17:12:28+00:00",{"id":31,"slug":32,"label":33},{"id":228,"slug":229,"title":230,"skills":231,"budget":60,"duration":250,"location":251,"onsitePercent":252,"contractType":28,"foundAt":253,"category":254},5635,"implementierungsberater-fuer-it-sicherheit","Implementierungsberater für IT-Sicherheit",[232,233,234,235,236,237,238,239,240,241,242,185,243,244,245,246,107,247,248,249],"IT-Security Beratung","Anforderungsanalyse","Datenmodellierung","Wallix","Cyber Ark","MS Projects","Scrum","Security Monitoring","Splunk","Identity & Access Management","Omada Identity","Vulnerability Management","Tenable","Firewalls","Fortigate","Checkpoint","Privileged Access Management","PowerDesigner","12 Monate +","Frankfurt",100,"2026-05-22T16:30:43+00:00",{"id":31,"slug":32,"label":33},{"id":256,"slug":257,"title":258,"skills":259,"budget":60,"duration":60,"location":272,"onsitePercent":60,"contractType":63,"foundAt":273,"category":274},5508,"it-security-specialist-mwd-cyber-security","IT-Security Specialist (m\u002Fw\u002Fd) Cyber-Security",[260,261,262,263,53,264,265,266,267,268,269,270,50,271],"Cyber Security","Detection Engineering","Threat Hunting","Cyber Threat Intelligence","EDR","XDR","KQL","SPL","Sigma","YARA","MITRE ATT&CK","Informationssicherheitsmanagement","Bayreuth","2026-05-22T14:05:48+00:00",{"id":31,"slug":32,"label":33},{"id":276,"slug":277,"title":278,"skills":279,"budget":60,"duration":60,"location":60,"onsitePercent":60,"contractType":28,"foundAt":286,"category":287},5449,"fachberater-secunet-sbc-wmd","Fachberater Secunet SBC (w\u002Fm\u002Fd)",[280,281,282,283,284,285,150],"Secunet SBC","IP-Netzwerke","Netzwerksicherheit","VoIP-Systeme","SBC-Systeme","Kommunikationsinfrastruktur","2026-05-22T12:35:15+00:00",{"id":31,"slug":32,"label":33},{"id":289,"slug":290,"title":291,"skills":292,"budget":60,"duration":303,"location":304,"onsitePercent":116,"contractType":28,"foundAt":305,"category":306},5443,"netzwerkkonzeption-betriebsueberfuehrung-rechenzentrumsinfrastruktur","Netzwerkkonzeption & Betriebsüberführung Rechenzentrumsinfrastruktur",[293,294,295,296,297,298,299,300,301,302],"Netzwerk-Engineering","Rechenzentrumsumgebungen","Technische Konzepte","Architekturdesigns","IT-Infrastrukturen","Betriebsübergabe","Dokumentation","Performance","Verfügbarkeit","Sicherheit","1 Woche (15.06.-19.06.2026)","Hamburg","2026-05-22T12:26:55+00:00",{"id":31,"slug":32,"label":33},{"id":308,"slug":309,"title":310,"skills":311,"budget":60,"duration":314,"location":60,"onsitePercent":315,"contractType":28,"foundAt":316,"category":317},5391,"ibm-security-verify-governance-experte-mwd","IBM Security Verify Governance Experte (m\u002Fw\u002Fd)",[312,313],"IBM Verify Identity Governance (IVIG)","IBM Security Verify Governance","15.06.2026 - 31.12.2026 + Option",0,"2026-05-22T09:40:56+00:00",{"id":31,"slug":32,"label":33}]