Information Security Architect (f/m/d)

As part of the Security Strategy & Architecture team, you will join a highly skilled, geographically distributed team of cybersecurity specialists within the Group Security department.

You will have a holistic view of security capabilities and solutions we have, are working on and need in the future to ensure we have a resilient and safe Information and Communication Technology (ICT) environment.

You will be responsible engaging with stakeholders organization-wide to strengthen security and lead transformative initiatives. This will involve developing and communicating strategic security concepts to facilitate positive organizational change. Furthermore, will you consult stakeholders directly or as part of projects with your expert knowledge and experience in information security.

The focus security areas for this role will resolve around cloud security, workload protection and ideally DevSecOps / AppSec and AI/LLM security.

• Collaborate with stakeholders to identify and document security capability, opportunities, and develop strategies or security concepts to improve or add new capabilities with stakeholders
• Maintain and update an overview of security capabilities and tools, providing management and stakeholders with a comprehensive view or where we are and plan to go
• Develop and align security concepts and strategies with stakeholders, ensuring effective implementation
• Develop and maintain architecture principles around security and review and update IT principles with stakeholders
• Create and maintain a security strategy that meets enterprise needs, working closely with Enterprise Architecture, IT Strategy, IT and Group Security stakeholders
• Provide expert advice on security architecture to stakeholders, including IT, and offer consultation on key security topics and initiatives
• Work with Enterprise Architecture and IT architects to enhance security by identifying opportunities for consolidation, automation, and innovation
• Consult, advice and coordinate with stakeholders on security standards & written rules and how they can be met using security capabilities & services
• Represent the organization both internally and externally in matters related to information security

• Bachelor/Master degree in Information Security or Technology or equivalent
• Proven experience in information security for several years with deep knowledge in specific security domains / areas mentioned above
• Minimum of 7 years' experience in Information Security
• Familiarity with globally known security frameworks / standards and how they can be used and actioned in organizations
• Ability to translate regulatory security requirements into operational plans and actions
• Ideally relevant certifications such as CISSP (Certified Information Systems Security Professional), CISM (Certified Information Security Manager) TOGAF (The Open Group Architecture Framework) and or technical certification and trainings
• Experience in security risk management, security threats and frameworks to be a threat intelligence driven security organization
• Ideally experience in Architecture modelling and experience in ArchiMate / TOGAF
• Experience in structuring options and presenting these to senior management in presentations
• Understanding and experience in: IC, security risk management, regulatory and audit engagements
• Proactive thinking and self-paced work on solutions
• Strong analytical skills, creativity, critical thinking, ability to identify problems and propose solutions
• Excellent interpersonal skills. Ability to be self-driven and paced as well as being a team player