At Enpal, we are pursuing the dream of building the largest renewable energy community in Europe. We rent out solar systems, electricity storage, wall boxes, and smart meters at an all-inclusive rate, all intelligently connected through our AI-powered platform Enpal One+. True to the motto “digital, decentralized, and 100% renewable”, our heart beats for both the rapid growth of a company and for combating the greatest challenge of our generation - climate change.

Job Description

We are looking for a IT Security Engineering Lead to join our CISO organization. In this role, you are the person who takes ISO 27001, NIS2, and KRITIS requirements off the page and turns them into real work assessing our actual systems, finding where we fall short, collecting evidence, and making sure gaps get closed.

You’ll work across the full Enpal tech stack: cloud infrastructure, identity, endpoints, applications, and different platforms. You’ll sit with engineers in IT and CTO center, review configurations, challenge architectures, and use AI tools to move faster. This is not a governance-from-a-distance role - you get hands-on.

We offer speed, agility, and steep career growth. Our vision to make sustainable solar energy available to everyone can only come to life through close collaboration across security, engineering, and product. Join us, take part in the energy revolution, and help build the compliance foundation that keeps Enpal trusted and resilient. We look forward to your application.

At Enpal, you would be

• building secure solutions. We are serious about delivering incremental value in each iteration, and we celebrate when we improve people's experience with our solution, make an impact towards our climate goals. Adopting Shift-Left and Zero-Trust approaches in all our units.
• translating regulations into tasks. You break down ISO 27001, NIS2/BSIG, and KRITIS into concrete, prioritized actions. You will develop the right solutions or hand over to our CTO and IT teams that will take action.
• assessing our tech stack for gaps. You go hands-on across Azure, Entra ID, M365, Intune, Defender XDR, AKS, Terraform, CI/CD pipelines, Datawarehouse and other platforms to find where reality doesn’t match the requirement.
• Making us resilient and respond to threats. Developing solutions that close the gaps-Respond to cyber security incidents, manage them and create plans to prevent the next occurrence. Developing and automating SIEM and SOAR solutions in collaboration with our SOC helps us in multiple dimensions.
• leveraging AI to work smarter. You use AI tooling to automate evidence collection, speed up gap analysis, and generate structured audit documentation and you spot where the rest of the team can benefit too.
• driving remediation to closure. You track findings, coordinate with technical owners, escalate what’s stuck, and verify that fixes actually hold. Open issues don’t sit idle.
• being the bridge between compliance and engineering. You make regulatory requirements understandable for technical teams and security requirements understandable for everyone else.
  
  

Qualifications

We are looking for roughly a 50% fit with for what we ask. The other 50% is a surprise to us, it is the magic you bring to the table and the diversity in which you make us grow.

• you have a security-first mindset, and appreciate developer experience as a close second
• you have 5+ years of experience in cyber security or a technical compliance role in a cloud-first environment.
• you are technically fluent across Azure, Entra ID, Microsoft 365, Intune, and Defender, and comfortable enough with Kubernetes, IaC, Terraform, CI/CD, and APIs to assess whether a configuration meets a control objective.
• you have experience with security tooling and automation across domains like SAST, SCA, DAST, CNAPP, CWPP etc.
• you have insights on what ISO 27001:2022, NIS2/BSIG, and KRITIS require us to do.
• you use AI tools in your daily work and know how to apply them to compliance and security operations.
• you communicate clearly in English, spoken and written. Knowledge of German is a plus.
• you are inspired by the energy transition and want to make a difference. We are one of the biggest players in the solar business and want to make this change with you.
• you want to work somewhere where ownership and initiative are genuinely valued not just said.
• knowledge of BSI-Grundschutz, BSI C5 is a plus.
• certifications like CISSP, OSCP, CISM, CRISC, AZ-500, or SC-100, GCIH, OSIR are a plus.
  
  

Additional Information

We’re offering

• The chance to shape security at Germany’s first green unicorn and make a real dent in climate change while you’re at it.
• A team of 65+ nationalities that is smart, driven, and genuinely collaborative.
• On-site in Berlin-Friedrichshain our modern office with height-adjustable desks, table tennis, barista coffee, and all the rest.
• Real ownership from day one short decision paths, an open feedback culture, and space for your ideas.
• A strong kick-start onboarding day, welcome bag, and a buddy who actually helps.
• 29 + 2 vacation days, Wellhub membership, corporate benefits, and unforgettable team events.
  
  

At Enpal, we are proud of the diversity of our team. No decisions are made on the basis of skin colour, religion or religious belief, ethnic or national origin, nationality, gender identity, sexual orientation, disability or age, either during recruitment or employment. We strongly encourage women, neurodivergent people, people of colour, and LGBTQ(+) people to apply. Enpal stands for a safe workplace and takes action against discrimination and harassment of any kind.