Information Security Architect

Project description

Join our Development Centre in Bucharest and become a member of our open-minded, progressive and professional team. In this role you will be working for one of our world-famous clients.
The Chief Security Office (CSO) of our client comprises the Chief Information Security Office (CISO) and the Corporate Security unit. The CISO organization guarantees information security for our client.
This position exists within the Security Architecture team of the CSO (Chief Security Office) organization of Deutsche Bank. The team is responsible for providing overall security architectures leadership across our client's organization. As a senior Security Architect, the candidate will be responsible for secure design of various applications within the bank using security design patterns that conform to the bank's security policies, standards, procedures, and guidelines using a risk-based threat/compliance approach.
On top of attractive salary and benefits package, Luxoft will invest into your professional training, and allow you to grow your professional career.

Responsibilities

Design and develop security architectures for both cloud (GCP preferred) and on-prem systems.

Facilitate the understanding and shaping of the end-to-end security architecture

Enhance or articulate overarching security architecture across IT projects, architectures, and designs.

Work with project teams to help build secure architecture designs

Assist in the security design decisions proposed by the various design authorities to meet broader organizational security objectives.

Identify points of architectural risks in new projects using architectural threat risk assessment and threat modeling techniques.

Skills

Must have

In depth knowledge in the field of information security, with wide ranging knowledge in areas such as data security, identity and access, cryptography, network security, and cloud security, etc.

Solid understanding of cloud security architecture and services, virtualization, and containerization technologies.

Working knowledge of Google Cloud Platform or other cloud providers.

Experienced drawing network and architecture diagrams using Visio, Draw.io, etc.

Familiarity with DevSecOps principles and how to secure CI/CD pipelines.

Experience using threat modeling techniques such as MITRE's Adversarial Tactics, Techniques, and Common Knowledge

Bachelor's or Master's degree in Computer Science, Computer Engineering, or Cybersecurity required. Certified Information Security Systems Professional and/or Certified Cloud Security Professional required.

Nice to have

GCP certifications are a big plus.

Other

Languages

English: B2 Upper Intermediate

Seniority

Senior