.msg Romania is a tech company with strong knowledge in software development, business consulting, and various project and product development methodologies, with a large portfolio of clients from different domains such as Automotive, Insurance, Banking, etc. We are part of the msg group, an international consortium of companies with over 10,000 experts in 28 countries represented in the world's most important markets.

• Deep experience with core cloud services: AWS: EC2, S3, RDS (incl. Multi-AZ), KMS, Security Hub, Config, Inspector, Systems Manager, Control Tower
• Azure: Compute, Storage, Database, Networking, IAM, Defender for Cloud, Blueprints, Key Vault, Azure Monitor
• Expertise in cloud security architectures and multi-region / multi-AZ redundancy
• Skilled in automation and orchestration of security controls (Infrastructure as Code, e.g. Terraform, CloudFormation, ARM Templates)
• Experience with container security and Kubernetes best practices (EKS, AKS)
• Proven expertise in vulnerability management and continuous security monitoring
• Certifications such as CCSP, CISSP, CISM, CISA are desirable
• Knowledge of security and compliance frameworks (ISO 27001, NIST, IEC 62443)
• Clear and effective communicator
• Flexible and adaptable team player
• Efficient problem-solver
• Analytical and structured
• Proficient in English and German will be considered an advantage

• Subject-matter expert on security controls across: Identity & Access Management (IAM): policies, roles, permissions and Network Security (VPC / Virtual Network): security groups, NACLs, firewalls
• Logging & Monitoring: AWS CloudTrail, CloudWatch, Azure Monitor, Defender for Cloud
• Data & Application Security: encryption (KMS, Azure Key Vault), secrets management
• Vulnerability Management: automated scans (Inspector, Azure Security Center), penetration testing
• Advise on secure configuration and hardening of cloud platforms (e.g. AWS Control Tower, Azure
• Blueprints)
• Conduct regular security assessments, audits, and compliance checks (e.g. ISO 27001, NIST, IEC62443)
• Review cloud architectures, perform threat modeling and risk analysis
• Support and advise on embedding security controls in CI/CD pipelines (tools e.g. SonarQube, Contrast Assess, Gatling)

• Performance Bonus
• 30 RON/day meal tickets
• Up to 30 days of annual leave
• Private health insurance (Regina Maria)
• Flexible schedule
• Access to technical events
• 7Card or other sports choices
• Bookster subscription
• Internal support programs for parents