Information Security Architect

We are looking for a german speaking Information Security Architect. The client makes solutions for optimizing energy and material flows for various suppliers.

We'd like to see:
-Experience in technical architectures, networking, and cloud infrastructure (on-premises & cloud).
-Deep understanding of security measures such as encryption and identity access management (IAM).
-Risk Management Experience: Proven experience in identifying, evaluating, and assessing security risks from a technical perspective.
-Incident Response: Ability to conduct and support information security incident response activities.
-Cloud Security: Knowledge of cloud security, especially with tools like Cloud Security Posture Management, Mobile Device Management, and Office365.
-Software Development Knowledge: Understanding of the SDLC and software development practices.
-Network Design & Architecture: Experience in designing secure network architectures.

-Automation of Security Operations: Experience automating security-related activities and processes.
-Information Security Services Setup: Ability to establish central technical security services for global business units.
-Collaboration: Experience working with various technical stakeholders (e.g., internal IT, software developers, technical product managers) to enhance security practices.
-Analytic Skills: Ability to think critically, analyze situations, and provide security solutions that align with business needs.

Ownership Mindset: End-to-end responsibility for tasks and projects.
Communication Skills: Strong communication and interpersonal skills to collaborate effectively across teams.
Lean & Agile Practices: Familiarity with working in a lean and agile environment.

Nice-to-Have
-Certifications: Relevant certifications such as CISSP, Cloud Security certifications (e.g., GCP, Azure, AWS), GIAC certifications.
-Programming Skills: Scripting and programming skills (e.g., JavaScript, Ruby, Python).
-Terraform Experience: Experience with Terraform for infrastructure as code.
-Agile Tools: Familiarity with Jenkins, Jira, and Confluence.

Security Strategy: Support, drive, and improve the organization’s security strategy across multiple areas.
Systems Security: Analyze and consult on system architectures and configurations to enhance security (on-premises and cloud).
Security Governance: Participate in security governance tasks, including policy creation and improvements.
Risk Management: Perform technical security risk management activities, including risk identification and mitigation.

Stakeholder Collaboration: Communicate and collaborate with technical stakeholders (engineers, IT teams, product managers) on security initiatives.
Automation: Automate security activities to enhance operational efficiency.
Audit Preparation: Participate in and support preparations for audits, such as ISO 27001.
Security Tools: Implement and improve security tools and processes to optimize operational security.

Ideal Starting Date: December / flexible
Duration: 3-6 months (with the possibility of extension)
Location: Preferably Berlin, Aschaffenburg, Düsseldorf/Dortmund or Remote
Language: English, German

More info: tiina.hapuoja@witted.com