Cloud Security Engineer (m/w/d) MI-SC

📍 Job Overview

• Job Title: Cloud Security Engineer (m/w/d) MI-SC
• Company: Kuehne + Nagel IT Service Centre AS
• Location: Porto, Portugal & Tallinn, Estonia
• Job Type: Hybrid
• Category: Cybersecurity & Information Security
• Date Posted: 2025-07-28
• Experience Level: Mid-Senior level (5-10 years)

🚀 Role Summary

• Key Responsibilities: Manage, develop, and support technology infrastructure for global logistics operations, ensuring reliable, high-performance, and customer-oriented solutions.
• Key Technologies: Cloud Security, AWS, Risk Assessments, Vulnerability Scans, Penetration Testing, Security Policies, Compliance Frameworks, CNAPP, CSPM solutions.

📝 Enhancement Note: This role involves working in a cross-functional team to design, implement, and maintain security controls for the company's cloud infrastructure, with a focus on AWS. The ideal candidate will have a strong background in cloud security and experience working with compliance frameworks.

💻 Primary Responsibilities

• Cloud Security: Collaborate with cross-functional teams to design, implement, and maintain security controls for the company's cloud infrastructure (AWS).
• Risk Assessment & Vulnerability Management: Conduct risk assessments, vulnerability scans, and penetration testing to identify and address security gaps.
• Security Policy & Compliance: Develop and enforce security policies, standards, and best practices. Maintain a "Cloud Readiness" assessment for applications and perform regular cloud security compliance reports.
• Incident Response: Monitor and respond to security incidents, interacting with the company's Computer Incident Response Team (CIRT).

📝 Enhancement Note: This role requires a strong focus on incident response and risk management, with the ability to work effectively in a team environment and prioritize tasks.

🎓 Skills & Qualifications

Education: Bachelor's or Master's degree in Computer Science, Engineering, Information Security, or related fields.

Experience:

• Proven experience in cloud security, including hands-on work with cloud platforms (AWS).
• Familiarity with compliance frameworks (GDPR, HIPAA, ISO 27001).
• Experience with CNAPP/CSPM solutions.

Required Skills:

• Strong experience in cloud security, risk assessments, vulnerability scans, and penetration testing.
• Knowledge of security policies, standards, and best practices.
• Ability to work effectively in a team environment and communicate complex security concepts clearly.

Preferred Skills:

• Relevant certifications (AWS Certified Security Specialty, CISSP, CCSP, CCSK, CISM, GSEC).
• Experience with incident response and security incident management.

📝 Enhancement Note: While relevant certifications are preferred, the company values practical experience and a strong understanding of cloud security principles.

📊 Portfolio & Project Requirements

• Portfolio Essentials: Not specified.
• Technical Documentation: Not specified.

📝 Enhancement Note: As this role focuses on security engineering and incident response, a portfolio showcasing relevant projects, case studies, or security assessments would be beneficial.

💵 Compensation & Benefits

Salary Range: €45,000 - €65,000 per year (Estimated, based on market research and regional adjustments for Portugal and Estonia)

Benefits:

• Hybrid work model
• Extensive health benefits
• Culture of continuous learning and career growth

Working Hours: 40 hours per week, with flexible scheduling for incident response and maintenance windows.

📝 Enhancement Note: The salary range is estimated based on market research for cloud security engineers in Portugal and Estonia. The company offers a competitive benefits package, including health benefits and a hybrid work model.

🎯 Team & Company Context

🏢 Company Culture

Industry: Global logistics and supply chain management.

Company Size: Large (50,000+ employees worldwide).

Founded: 1890 (Switzerland).

Team Structure:

• The IT team is organized into various departments, with a focus on collaboration and cross-functional projects.
• The Cloud Security team is a newly established department, focused on creating a dedicated Cloud Security Hub.

Development Methodology:

• Agile/Scrum methodologies for software development and project management.
• Collaborative development processes, including code reviews and peer programming.
• Regular team meetings and stand-ups to ensure effective communication and coordination.

Company Website: Kuehne + Nagel

📝 Enhancement Note: Kuehne + Nagel is a global leader in logistics, with a strong heritage and a vision to move the world forward. The company offers a safe, stable environment where employees can make a real difference in both ordinary and special moments in people's lives.

📈 Career & Growth Analysis

Cloud Security Engineer Role Level: Mid-Senior level, with opportunities for growth into senior roles, team leadership, or architecture positions.

Reporting Structure: The Cloud Security Engineer will report directly to the Cloud Security Manager and collaborate with cross-functional teams, including software development, infrastructure, and operations teams.

Technical Impact: The Cloud Security Engineer will play a crucial role in ensuring the security and compliance of the company's cloud infrastructure, enabling reliable and secure logistics services for customers worldwide.

Growth Opportunities:

• Technical skill development and specialization in cloud security.
• Leadership and mentoring opportunities within the Cloud Security team.
• Architecture and design decisions, contributing to the company's overall security strategy.

📝 Enhancement Note: This role offers significant growth opportunities, with a focus on technical skill development and leadership potential within the Cloud Security team.

🌐 Work Environment

Office Type: Hybrid work model, with offices in Porto, Portugal, and Tallinn, Estonia.

Office Location(s): Porto, Portugal; Tallinn, Estonia.

Workspace Context:

• Collaborative workspaces, designed to facilitate team interaction and communication.
• Access to multiple monitors, testing devices, and development tools.
• Flexible scheduling for incident response and maintenance windows.

Work Schedule: 40 hours per week, with flexible scheduling for incident response and maintenance windows.

📝 Enhancement Note: The hybrid work model allows for a flexible balance between remote work and on-site collaboration, with offices in Porto, Portugal, and Tallinn, Estonia.

📄 Application & Technical Interview Process

Interview Process:

1. Technical Phone Screen: Assessment of cloud security fundamentals, risk management, and incident response skills.
2. On-site Technical Interview: Deep dive into cloud security architecture, hands-on exercises, and case study presentations.
3. Behavioral Interview: Assessment of communication skills, teamwork, and problem-solving abilities.
4. Final Evaluation: Review of technical skills, cultural fit, and career growth potential.

Portfolio Review Tips:

• Highlight relevant cloud security projects, case studies, and incident response examples.
• Demonstrate a strong understanding of cloud security principles, risk management, and compliance frameworks.
• Showcase technical documentation, code quality, and responsive design standards.

Technical Challenge Preparation:

• Brush up on cloud security fundamentals, risk management, and incident response techniques.
• Familiarize yourself with AWS security best practices and relevant compliance frameworks (GDPR, HIPAA, ISO 27001).
• Prepare for hands-on exercises and case study presentations, focusing on cloud security architecture and design.

ATS Keywords: Cloud Security, AWS, Risk Assessment, Vulnerability Scan, Penetration Testing, Security Policy, Compliance Framework, CNAPP, CSPM, Incident Response, Cloud Infrastructure, Security Incident Management, Cloud Security Architecture.

📝 Enhancement Note: The interview process focuses on assessing the candidate's technical skills, problem-solving abilities, and cultural fit within the Cloud Security team. The portfolio review and technical challenge preparation should emphasize cloud security fundamentals, risk management, and incident response techniques.

🛠 Technology Stack & Web Infrastructure

Cloud Platform: AWS

Security Tools:

• CNAPP/CSPM solutions (e.g., Prisma Cloud, Palo Alto Cortex XDR, etc.)
• Security Information and Event Management (SIEM) systems (e.g., Splunk, IBM QRadar, etc.)
• Intrusion Detection Systems (IDS) and Intrusion Prevention Systems (IPS)

Incident Response & Management:

• Security Orchestration, Automation, and Response (SOAR) platforms (e.g., Palo Alto Cortex XSOAR, IBM Resilient, etc.)
• Ticketing systems (e.g., Jira Service Management, ServiceNow, etc.)

📝 Enhancement Note: The technology stack focuses on cloud security, risk management, and incident response, with a strong emphasis on AWS and relevant security tools.

👥 Team Culture & Values

Cloud Security Values:

• Customer-oriented focus, ensuring reliable and secure logistics services.
• Collaborative teamwork, fostering open communication and knowledge sharing.
• Continuous learning and improvement, staying up-to-date with emerging threats and best practices.
• Responsible and ethical handling of sensitive data and systems.

Collaboration Style:

• Cross-functional integration between cloud security, software development, and infrastructure teams.
• Regular team meetings and stand-ups to ensure effective communication and coordination.
• Collaborative development processes, including code reviews and peer programming.

📝 Enhancement Note: The Cloud Security team values customer orientation, collaboration, and continuous learning, with a strong focus on open communication and knowledge sharing.

⚡ Challenges & Growth Opportunities

Technical Challenges:

• Staying up-to-date with emerging threats and best practices in cloud security.
• Managing and mitigating security incidents and vulnerabilities in a large, global cloud infrastructure.
• Collaborating with cross-functional teams to ensure security is integrated into the software development lifecycle.

Learning & Development Opportunities:

• Technical skill development and specialization in cloud security.
• Leadership and mentoring opportunities within the Cloud Security team.
• Architecture and design decisions, contributing to the company's overall security strategy.

📝 Enhancement Note: The technical challenges and learning opportunities focus on cloud security, risk management, and incident response, with a strong emphasis on staying up-to-date with emerging threats and best practices.

💡 Interview Preparation

Technical Questions:

• Cloud Security Fundamentals: Explain key cloud security principles, risk management, and incident response techniques.
• AWS Security: Describe AWS security best practices, Identity and Access Management (IAM), and security groups.
• Incident Response: Walk through a real-life incident response scenario, demonstrating your problem-solving skills and technical expertise.

Company & Culture Questions:

• Company Culture: Describe what you appreciate about Kuehne + Nagel's company culture and how it aligns with your personal values.
• Team Dynamics: Explain how you would collaborate with cross-functional teams, fostering open communication and knowledge sharing.
• Career Growth: Discuss your long-term career goals and how this role can contribute to your professional development.

Portfolio Presentation Strategy:

• Highlight relevant cloud security projects, case studies, and incident response examples.
• Demonstrate a strong understanding of cloud security principles, risk management, and compliance frameworks.
• Showcase technical documentation, code quality, and responsive design standards.

📝 Enhancement Note: The interview preparation focuses on assessing the candidate's technical skills, problem-solving abilities, and cultural fit within the Cloud Security team. The portfolio presentation strategy should emphasize cloud security fundamentals, risk management, and incident response techniques.

📌 Application Steps

To apply for this Cloud Security Engineer (m/w/d) MI-SC position:

1. Submit your application through the Kuehne + Nagel careers portal.
2. Customize your resume, highlighting relevant cloud security experience, skills, and certifications.
3. Prepare a portfolio showcasing relevant cloud security projects, case studies, and incident response examples.
4. Research Kuehne + Nagel's company culture, focusing on their commitment to customer orientation, collaboration, and continuous learning.

⚠️ Important Notice: This enhanced job description includes AI-generated insights and cloud security industry-standard assumptions. All details should be verified directly with Kuehne + Nagel before making application decisions.