Search for...
A few of the partners we’re proud to be trusted by:
We are recruiting a Security Architect with a minimum of 5 years of experience in an information security role, a deep understanding of software development practices, fluent English and effective communication skills. Find a full list of the required qualifications below.
This is a hybrid or fully remote job embedded with our client – a major software group.
As a Security Architect, you will play a pivotal role in developing and implementing robust security frameworks across our vast array of projects. You will collaborate with cross-functional teams to design and enhance our cybersecurity defence, ensuring compliance with GDPR, and leading our initiatives to align with standards such as NIS2 and ISO 27001.
Collaborate cross-functionally with project teams to architect and implement secure environments for the corporate, ensuring various production platforms are robust against emerging cybersecurity threats.
Work closely with development teams to instil secure coding practices, and foster a culture of security-first thinking within the software development life cycle. Participate actively in code reviews and architecture sessions.
Architect an effective Log Collection and Aggregation for the organisation, including integration with a SIEM technology (e.g. MS Sentinel) to deliver a robust security monitoring framework.
Influence and help design a security framework that will be adopted by developers, guiding them through a secure development methodology that aligns with organizational goals.
Partner with infrastructure teams to assess current security postures, evaluate potential risks, and champion the deployment of infrastructure designs that enhance security robustness across the network.
Take a leadership role in the design and adoption of new technologies and tools, specifically SaaS applications, ensuring they meet our stringent security standards.
Review current implementation designs to identify potential security weaknesses and work with relevant teams to suggest and apply necessary improvements.
Stay ahead of industry trends by conducting research on emerging security technologies and methodologies, and translating that into actionable strategies.
Lead the development of security best practices and participate in the creation and dissemination of security guidelines, policies, and procedures.
Be a company advocate for security awareness, driving education and training initiatives that help teams understand their role in maintaining a secure operational environment.
Provide expert guidance during incident response and mitigation efforts, and contribute to post-incident analysis to prevent future occurrences.
Engage with external stakeholders including security auditors, vendors, and partners to ensure compliance with legal and regulatory requirements as well as industry best practices.
Ensure that the principle of least privilege is applied to all employees through an effective Identity & Access Management (IAM) security architecture.
Perform security reviews of third-party software and services.
Performing risk analysis and threat modelling.
Bachelor’s or Master’s degree in Computer Science, Information Security, or a related field, or equivalent experience.
Relevant security certifications such as CISSP, CISM, CISA, CEH, or OSCP are highly desirable.
Minimum of 5 years of experience in an information security role with a proven track record as a Security Architect, particularly within an environment that includes SaaS and cloud-based solutions.
Demonstrable experience with at least one of the security frameworks available for designing security architecture, including TOGAF, SABSA, and OSA.
Deep understanding of software development practices and a strong capacity to engage with development teams to build secure software.
Experience with security architecture frameworks and extensive knowledge in designing resilient cloud infrastructures, particularly within Microsoft Azure or AWS environments.
Proficiency in conducting risk assessments, security audits, penetration tests, and implementing necessary mediation strategies.
Demonstrated skills in creating and maintaining comprehensive security documentation and protocols.
Effective communication skills, with the ability to articulate complex security concepts to a broad range of technical and non-technical stakeholders.
Agile and adaptable, capable of making thorough evaluations and proposing novel solutions to secure new technologies and digital transformations.
Prior experience in incident response management and leading security awareness training programs.Â
Language skills:Â English fluent, German nice to have
Language skills:Â English fluent, German nice to have
Be the key driver for integrating security practices into the heart of our processes.
Access to advanced security trainings and the latest information security strategies.
Direct impact on improving our company’s resilience against cybersecurity threats.
Development and expansion of a pivotal internal network with the Security team and other Security leads throughout the business.Â
Sounds interesting? We are excited to get to know you!
If you have any questions you would like to ask or if there is any additional information you would like to receive, please feel free to get in touch via either [email protected] or the contact form at the bottom of this page.
K&C is an international software development company with 100+ experts split between our offices in Munich (HQ) Kyiv, Krakow, Sofia, Baku and Sulaimaniya. We provide consulting and direct services for the complex IT-Projects of major European clients such as Commerzbank, Nestle, Bosch, Raiffeisen, METRO, DER Touristik, Lufthansa and others.
At K&C we work with different projects — websites, portals, platforms, mobile (iOS, Android), intranet-systems. The combination of our expertise in cutting-edge technologies, 15 years’ collaborative experience with leading European clients, and a friendly and productive work environment has enabled us to turn traditional IT outsourcing into a reliable and competitive product.
K&C (Krusche & Company GmbH)
St.-Pauls-Platz 9
80336 Munich
Germany
"*" indicates required fields