Cloud Security Engineer (AWS, M365)

Astec IT Services provides consulting, custom software development and cloud services. We have helped market leaders to unlock their potential by delivering digital innovation in the automotive, energy and telecom sectors since 1993. Astec teams are hired to advise clients on innovation and to design, build, maintain and support compliant enterprise software solutions.

We are looking for a long-term employee or contractor who will support our work in the following area:

Cloud Security on AWS and M365

We are looking for a cybersecurity professional skilled in securing AWS cloud infrastructure, essential for the reliable hosting of client applications. The ideal candidate should have expertise in managing and securing Microsoft 365 environments, including Entra, Defender for Business, and Intune.

How You’ll Work

• Location: 100% remote or office in Poznan, Wroclaw or Zielona Gora
• Technology Stack: AWS, Microsoft 365, Entra, Intune, Defender for Business, Windows, macOS, Linux
• Language: Polish or English for communication with team members and documentation
• Hardware: modern laptop
• Benefits: access to private medical care and MultiSport card

What You’ll Do

As a vital part of our Cyber Security team, your role will involve utilizing diverse tools and methodologies to investigate, evaluate, and address security weaknesses and regulatory matters within our Cloud environment. Your responsibilities will include executing projects for integrating cloud security and handling ongoing operations. You will also offer expert advice to our Software Development teams, emphasizing the implementation of AWS security engineering principles to develop and expand cloud-based infrastructure and applications securely.

• Advanced Security Architecture Expertise: Possessing in-depth knowledge of security architecture across various cloud models (IaaS, PaaS, SaaS, hybrid) and their integration with existing IT solutions. Special focus on AWS and Microsoft 365 cloud environments.
• Comprehensive Cloud Security Analysis: Skilled in conducting thorough security assessments of public cloud infrastructures, specifically focusing on AWS and M365 platforms.
• Vulnerability and Configuration Error Identification: Expertise in pinpointing and rectifying configuration errors and vulnerabilities within cloud technologies, ensuring robust security measures are in place.
• Seamless Security Systems Integration: Demonstrated ability in integrating security systems effectively with cloud-based systems and services, enhancing overall security posture.
• Proactive Architectural Investigation: Capable of meticulously investigating existing cloud architectures, identifying potential vulnerabilities, and proposing strategic enhancements to fortify security and efficiency.

Skills You Have

• At least two years of experience in deploying cloud solutions on AWS
• At least one year of experience in managing M365 environments with Entra, Intune and Defender for Business
• Competence in setting up native security features within AWS
• Familiarity with security solutions tailored for cloud environment protection
• Proficiency in IT with a solid understanding of IT processes and methodologies, particularly ITIL
• Knowledge about enterprise cloud software architecture
• Ability to confidently communicate with clients
• Good knowledge of English language (level B2 or better)

Nice To Haves

• Experience with integrating cloud services with various security systems, including Data Loss Prevention (DLP), Endpoint Security, and Email Gateway solutions
• Certified Cloud Security Professional (CCSP) certificate
• Any certificates related to AWS and Microsoft 365 solutions
• Ability to administer Windows and Linux operating systems
• Familiarity with Virtualized Data Center environments
• Knowledge of German language (B1 or better)

Why Apply

• You want to work on software that makes the web a safer place
• You love collaborating with, teaching, and learning from high-performing peers on software projects

Steps After You Apply

1. You'll be invited to an online meeting with our recruiter
2. Afterwards, we'll ask you to do a small assignment, which will then be discussed with one of our technical leads
3. If everything goes well, we will make you an offer and invite you to a final interview