Senior Cyber Security Architect

Security Architecture Design

• Develop and maintain security architectures for IT environments, ensuring they align with business goals and compliance requirements.
• Design security solutions that integrate seamlessly with existing IT systems both internally and for our customers
• Evaluate and recommend security technologies and tools to enhance the organization's security posture.
• Collaborate with DevOps and IT teams to embed security into CI/CD pipelines and infrastructure as code.[JF1] [SR2] [SR3]
  

Collaboration and Communication

• Work closely with IT and other business units to integrate security into system designs and operations.
• Collaborate effectively with external partners or service providers, guiding them towards successful delivery of project milestones and adherence to SLAs/KPIs
• Provide security guidance and expertise to project teams and stakeholders.
• Communicate security architecture concepts and solutions to technical and non-technical audiences.
  

Security Operations

• Oversee the implementation and maintenance of security controls for IT systems.
• Facilitate regular communication with external partners or service providers to align security priorities, enforce established security protocols, and support the continuous improvement of operational security processes.
• Collaborate with SOC team to respond and investigate security threats and incidents.
• Ensure the secure configuration and hardening of IT infrastructure and applications.
• Support the development and implementation of incident response plans for systems and applications.
• Conduct post-incident analysis to identify root causes and implement improvements.
  

Risk Management

• Identify and assess security risks associated with IT systems and develop strategies to mitigate these risks.
• Conduct threat modeling and vulnerability assessments to identify potential security weaknesses.
• Implement risk mitigation measures and monitor their effectiveness.
  

Compliance & Governance

• Develop and enforce security policies, procedures, and standards for IT environments.
• Ensure compliance with relevant laws, regulations, and industry standards (e.g., NIS2, GDPR, NIST, ISO 27001, IEC 62443).
• Stay informed about emerging regulatory requirements and adjust security architectures accordingly
  

Your Qualifications / What You Will Bring

• Bachelor’s degree in computer science, Information Security, or a related field. Relevant certifications (e.g., CISSP, CISM) are an added advantage.
• Minimum of 15 years of experience in cybersecurity, with at least 5 years in security architecture, risk and compliance role.
• Solid understanding of IT / cybersecurity processes in engineering and manufacturing industries.
• Proven experience in designing and implementing security architectures for IT environments.
• Proven experience in managing and governing cybersecurity services delivered by external partners or service providers.
• Ability to enforce SLAs, monitor KPIs, and ensure compliance with regulatory and organizational standards.
• Strong knowledge and technical skills in key security domains (e.g., incident response, vulnerability management, IAM, endpoint security, and network security) and relevant toolset.
• Experience with cloud platforms (Azure, OCI, AWS) and cloud security best practices.
• Working knowledge in regulatory compliance requirements e.g., NIS2, GDPR
• Knowledge of data privacy regulations and data protection strategies.
• Extensive knowledge of security frameworks, standards, and best practices (e.g., NIST, ISO 27001, ISO 27002, CIS, CISA).
• Familiarity with GRC tools and security and risk assessment methodologies.
• Agile and problem-solving abilities.
• Innovative, updated with latest technologies, strong communication and collaboration skills.
• Ability to work under pressure and handle high-stakes situations.