Assignment Description

Our client is looking for an IT Security Architect with experience in information security, specializing in the development of comprehensive security architectures for global organizations. You will be an expert in leading the design and implementation of security solutions to mitigate risks and ensure compliance.

Mandatory Qualifications and Skills:

• Bachelor’s or Master’s degree in Computer Science, Information Security, or related field, and/or equivalent relevant experience
• Significant experience in cloud and on-prem security architecture and design, with a focus on major cloud platforms (e.g., AWS, Azure, GCP).
• Proven experience designing and implementing security solutions for cloud-based systems, including IAM, network security, data protection, and compliance.
• Strong understanding of security best practices, encryption, authentication, authorization, and audit capabilities in hybrid environments.
• Familiarity with security frameworks and standards (e.g., NIST, CIS, ISO 27001) and their application in hybrid environments.
• Experience with security assessment tools, vulnerability management, and penetration testing methodologies.
• Excellent communication skills to articulate complex security concepts to technical and non-technical stakeholders.
• Ability to prioritize projects, comfortable working in a fast-paced environment with excellent communications skills
• Strong problem-solving skills, attention to detail, and the ability to work effectively both independently and as part of a team.
• You are a problem solver with strong analytic ability, creativity and customer and business drive.
• You show commitment and ownership and demonstrate attention to detail and accuracy.
• You are open to change and humble about not always knowing everything, so you ask.
• You are an effective team player that can express technical concepts, ideas, feelings, opinions, and conclusions to peers and people with an only limited technical background and contribute positively to your team environment.

Desired Qualifications and Skills:

• Strong command of orchestration technologies, continuous integration / continuous deployment and GitOps managed environments.
• Strong experience developing and operating microservice, containerised, or serverless applications.
• Experience in working with architecture for Siemens Teamcenter for PLM
• Relevant certifications such as Certified Cloud Security Professional (CCSP), Certified Information Systems Security Professional (CISSP), or cloud platform-specific certifications are a plus.

What you’ll be doing:

• Advising in the designing and development of IT- and cyber security architecture,
• Driving, developing, implementing and maintaining Cyber Security related Use Cases,
• Detecting and acting upon Cyber Security and Compliance risk,
• Participating in technology projects, ensuring appropriate controls are designed and implemented,
• Collaborate with stakeholders, software architects, and DevOps teams to design and implement security solutions for cloud-based and hybrid systems across multiple cloud and on prem platforms (e.g., AWS, Azure, GCP).
• Develop and maintain a comprehensive understanding of the organization’s cloud infrastructure, applications, and data flows
• Lead threat modelling and risk assessments to identify potential security threats and vulnerabilities. Develop and execute strategies to mitigate and address these risks.
• Evaluate and recommend security tools, technologies, and services that enhance our cloud security posture.
• Collaborate with development teams to ensure secure coding practices, vulnerability assessments, and regular security testing.
• Stay up-to-date with emerging cloud security threats, vulnerabilities, and best practices, and apply this knowledge to continuously enhance our security strategies.
• Support the tech delivery in product and services teams with expert security knowledge relevant to a specific technology area or domain (e.g. cloud, network security, key & encryption, secure software development, data protection, data privacy, disaster recovery and business continuity planning).
• Design, build, test, deploy, confirm security compliance, provide technical support, and recommend improvements to products, services and dedicated security solutions.
• Troubleshooting security and security control problems.
• Ensuring that the organization’s data and infrastructure are protected by enabling the appropriate security controls.