Enterprise Security Architect

Job Description

We are seeking a Senior Enterprise Security Architect to support the strategic build-out of a new European legal entity for a global financial institution. This is a critical first-line role focused on the design and governance of enterprise-wide security architecture, with an emphasis on infrastructure security, security operations, and regulatory alignment.

You will be responsible for establishing a secure architecture foundation across platforms, systems, and processes, ensuring compliance with key regulatory frameworks such as BaFin and DORA. As part of a globally connected team, you will work closely with senior stakeholders across IT, Risk, Compliance, and Security functions spanning the EU, UK, and US.

Key Responsibilities:

• Define and drive the enterprise security architecture strategy, with a particular focus on infrastructure, operational resilience, and tooling.
• Serve as a senior architectural lead for first-line security initiatives, ensuring that security is embedded into the broader technology stack.
• Develop enterprise-wide security standards, principles, and reference architectures aligned with regulatory obligations (e.g., BaFin, DORA).
• Evaluate, design, and oversee the deployment of key security technologies including SIEM, SOAR, EDR/XDR, vulnerability management, PAM, and network security platforms.
• Act as a senior liaison between first line and second/third-line teams, translating business and regulatory requirements into architectural controls.
• Support governance and assurance processes, ensuring that security controls are consistent, auditable, and aligned with operational and risk frameworks.
• Participate in global architecture forums, contributing to group-wide security initiatives while ensuring regional compliance and architectural fit.
• Mentor junior architects and engineers, fostering architectural excellence across the team.

Requirements:

• Proven experience as an Enterprise or Senior Security Architect within a complex, regulated environment (financial services ).
• Deep expertise in infrastructure security, security operations, and enterprise security governance.
• Strong understanding of regulatory frameworks including BaFin, DORA, and related European financial sector obligations.
• Demonstrated ability to design and implement security architectures that scale across hybrid environments (cloud and on-premise).
• Hands-on familiarity with enterprise security technologies such as Splunk, SentinelOne, CrowdStrike, Qualys, CyberArk, Palo Alto, Microsoft Defender, ServiceNow SecOps, etc.
• Excellent stakeholder engagement skills, with the ability to influence at senior leadership and board level.
• Fluency in German (written and spoken) is essential.
• Relevant certifications : SABSA, TOGAF, CISSP, CISM, CCSP or equivalent enterprise architecture credentials.