Security Architect

About the Job

The Security Architect in Allianz Technology S.p.A. contributes to the achievement of the goals of the department by supporting the local Lead Architect in the development and implementation of the Security policy of the company. In daily activity, the Security Architect interacts with all the other relevant stakeholders (e.g., among others, Software Development Teams, Infrastructure Management Teams, Information Security, Functions, Procurement, Legal, Risk Management, Compliance).

The Security Architect is responsible for designing, implementing, and maintaining an organization's security architecture. This role involves creating security solutions that protect the organization's information assets from cyber threats while ensuring compliance with regulatory requirements and industry best practices. Collaborates with various stakeholders, including IT departments, business units, and senior leadership, to develop and enforce security policies, standards, and procedures.

What you do

• Develop and maintain the organization's security best practices following group guidelines.
• Align security initiatives with business objectives and regulatory requirements.
• Design secure network architectures, including cloud and on-premises environments defining the technical security requirements for integrating new systems or upgrading existing systems.
• Develop and implement security solutions, such as firewalls, intrusion detection/prevention systems, and encryption technologies.
• Ensure security architecture is scalable and adaptable to emerging threats and technologies.
• Enforce security policies, standards, and procedures adoption.
• Ensure compliance with industry standards (e.g., ISO 27001, NIST) and regulatory requirements (e.g., GDPR, HIPAA).
• Perform security risk identification supporting the threat modeling to prioritize risks on IT assets.
• Collaborate with IT and business units to integrate security into system development and operational processes.
• Communicate security risks and solutions to senior leadership and stakeholders.
• Continuously assess and improve the security architecture.
• Participate in security audits and assessments.

What you bring

• Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or a related field.
• Minimum of 7-8 years of experience in cybersecurity, with at least 5 years in a security architecture role.
• Proficiency in firewalls, VPNs, IDS/IPS, SIEM, endpoint protection, DLP, and encryption.
• Deep understanding of network protocols, architecture, and security controls.
• Expertise in securing cloud environments (AWS, Azure, GCP).
• Identity and Access Management (IAM): Knowledge of IAM principles and technologies.
• Familiarity with secure coding practices and application security testing tools.
• Experience in incident detection, response, and forensic analysis.
• Relevant certifications such as CISSP (Certified Information Systems Security Professional), CISM (Certified Information Security Manager), or TOGAF (The Open Group Architecture Framework).
• Familiarity with relevant regulations and standards (e.g., GDPR, HIPAA, PCI-DSS).
• Proven command of the English language - verbal and written.
• Willingness to travel (approx. 30%)

What we offer

• We offer a hybrid work model which recognizes the value of striking a balance between in-person collaboration and remote working incl. up to 25 days per year working from abroad.
• We believe in rewarding performance and our compensation and benefits package includes a company bonus scheme, pension, employee shares program and multiple employee discounts (details vary by location).
• From career development and digital learning programs to international career mobility, we offer lifelong learning for our employees worldwide and an environment where innovation, delivery and empowerment are fostered.
• Flexible working, health and wellbeing offers (including healthcare and parental leave benefits) support to balance family and career and help our people return from career breaks with experience that nothing else can teach.

About Allianz Technology
Allianz Technology is the global IT service provider for Allianz and delivers IT solutions that drive the digitalization of the Group. With more than 11,000 employees and over 20 countries around the globe, Allianz Technology works together with other Allianz entities in pioneering the digitalization of the financial services industry. We oversee the full digitalization spectrum - from one of the industry's largest IT infrastructure projects that includes data centers, networking, and security, to application platforms that span from workplace services to digital interaction. In short, we deliver full-scale, end-to-end IT solutions for Allianz in the digital age.

D&I statement
Allianz Technology is proud to be an equal opportunity employer encouraging diversity in the working environment. We are interested in your strengths and experience. We welcome all applications from all people regardless of gender identity and/or expression, sexual orientation, race or ethnicity, age, nationality, religion, disability, or philosophy of life. Join us. Let's care for tomorrow. You. IT

To Recruitment Agencies:
Allianz Technology has an in-house recruitment team that sources great candidates directly. Therefore, Allianz Technology does not accept unsolicited resumes from agencies or search firm recruiters. When we do work with recruitment agencies, that engagement is formalized by a contract. Fees will only be paid when there is a contract in place. Without a contract in place, we will not accept invoices on unsolicited resumes, even if the candidate was ultimately employed by Allianz.