Job Description

Your IT Future, Delivered.

Principal Security Engineer – Cloud Architecture

With a global team of 5600+ IT professionals, DHL IT Services connects people and keeps the global economy running by continuously innovating and creating sustainable digital solutions. We work beyond global borders and push boundaries across all dimensions of logistics. You can leave your mark shaping the technology backbone of the biggest logistics company of the world. All our offices have earned #GreatPlaceToWork certification, reflecting our commitment to exceptional employee experiences.

Digitalization. Simply delivered.

At IT Services, we are passionate about Cloud Technologies and Security. Our SPCS Cloud Security and Compliance and Resiliency team is continuously expanding. No matter your level of Principle Consultant Cloud Security and Architecture proficiency, you can always grow within our diverse environment.

#DHL #DHLITServices #GreatPlace #CloudSecurity

Grow together.

SPCS cloud security team works with relevant ITS and BU team on design, build and maintain cloud environment and identify security loopholes and work with respective stakeholders to remediate them as per requirements. also the team have continuous monitoring on existing compliance requirements and need to strategize how to prioritize enhance the cloud security posture and reduce the attack surface. Due to the nature of this role, learning new skills and problem solving would be really helpful.
For any issues related to cloud related telecommunication/security systems within the DHL Group environment, you are our superhero. The same applies when it comes to managing, proposing and implementing all necessary changes to production security devices in public cloud environments, providing global availability to key DHL Group services.

Ready to embark on the journey? Here’s what we are looking for:

As a Principal Security Engineer, having Cloud Security Architecture skill set is a huge plus. Very good knowledge of cloud security and ISO 27001 security requirements will also be an integral part of this role.

You are a technology aficionado; therefore, you have a good understanding of infrastructure architecture, AKS/GKE container security, Identity and access management, in Public Cloud environments. You are able to work independently, prioritize and organize your tasks under time and workload pressure. Working in a multinational environment, you can expect cross-region collaboration with teams around the globe, thus being advanced in spoken and written English will be certainly useful.
 

Cloud Security Architect – Skills & Capabilities Requirements:

1. Cloud Security Architecture & Design

· Expertise in Azure, GCP, and AWS security architecture, including multi-cloud strategy and hybrid cloud environments.

· Ability to design and implement scalable, resilient, and secure cloud architectures.

· Hands-on experience in secure cloud infrastructure, IAM, networking, and workload protection.

· Strong knowledge of zero-trust security principles and architecture patterns.

· Experience in secure cloud migration strategies and secure DevOps (DevSecOps) implementation.

2. Hands-on Technical Experience

· Infrastructure as Code (IaC): Terraform, ARM templates, CloudFormation.

· Container Security: Kubernetes security (AKS, GKE, EKS), container runtime protection.

· Identity & Access Management (IAM): Azure AD, Google IAM, AWS IAM, least privilege enforcement.

· Data Protection: Encryption (KMS, HSM, customer-managed keys), DLP, tokenization.

· Cloud Security Controls: CSPM, CWPP, SIEM integration

· Threat Detection & Incident Response: Cloud-native security tools and XDR solutions.

3. Threat Modeling & Risk Management

· Strong experience in threat modeling methodologies

· Ability to identify attack vectors, vulnerabilities, and security gaps in cloud environments.

· Expertise in risk assessment and mitigation strategies for cloud-native applications.

· Deep understanding of modern attack techniques such as supply chain attacks, API security threats, and lateral movement in cloud environments.

4. Compliance, Audit & Governance

· Experience in cloud security compliance frameworks, including:

o ISO 27001, ISO 27017, ISO 27018

o NIST CSF, NIST 800-53, NIST 800-171

o CIS Benchmarks for Azure, GCP, and AWS

o CMMC, PCI-DSS, SOC 2, GDPR

· Ability to design and implement security controls to meet regulatory and compliance requirements.

· Hands-on experience in audit readiness, security assessments, and continuous compliance monitoring.

5. Security Automation & Engineering

· Proficiency in automating cloud security processes using Python, PowerShell, or Bash.

· Experience in integrating security tools into CI/CD pipelines for continuous security enforcement.

· Knowledge of security orchestration and automation (SOAR) for cloud incident response.

6. Collaboration & Stakeholder Management

· Strong ability to communicate technical security concepts to business and engineering teams.

· Experience in working with internal security teams, cloud engineers, and external auditors.

· Ability to drive cloud security adoption across Business Units and ensure alignment with enterprise security strategy.

This role is critical for scaling cloud security capabilities, ensuring secure cloud adoption, and aligning with DHL Security Requirements.

An array of benefits for you:

  • Hybrid work arrangements to balance in-office collaboration and home flexibility.
  • Annual Leave: 42 days off apart from Public / National Holidays.
  • Medical Insurance: Self + Spouse + 2 children. An option to opt for Voluntary Parental Insurance (Parents / Parent -in-laws) at a nominal premium covering pre existing disease.
  • In House training programs: professional and technical training certifications. 

Apply for this Position

Ready to join ? Click the button below to submit your application.

Submit Application