Security Architect

Your role

• Identify security design gaps in new and existing architectures, and collaborate with engineering teams to craft solutions that mitigate those issues.
• Implement security solutions that protect products against cyber threats at every stage of the development lifecycle.
• Conduct threat modeling exercises to identify potential security risks and recommend appropriate countermeasures.
• Develop secure coding practices and provide guidance and training to product development teams.
• Conduct code reviews to detect security risks in code.
• Manage security incidents and provide guidance on incident management and response procedures.
• Evaluate effectiveness of implemented security measures by means of audits and penetration tests.
• Work closely with enterprise architects and other functional area architects to ensure relevant and adequate security solutions throughout all digital systems in your responsibility.
• Conduct research into new technologies, architectures, and security products to support security requirements for the products, customers, business partners and vendors

Your profile

• Professional education / studies in the field of Information Security or equivalent combination of education and working experience.
• Certifications such as CISSP, CCSP would be an advantage.
• Experience in developing security architecture artefacts and reference architectures ideally within manufacturing sector or equivalent.
• Experience managing 3rd party service and technology providers.
• Familiarity with security frameworks, standards and best practices, such as ISO 27001, ASVS and OWASP Top10.
• Experience with threat modeling methodologies.
• Experience implementing or working within a Secure Development Lifecycle environment.

Your ZEISS Recruiting Team:
Sandra Vogel