Security Architect

Job Function: Business IT Why SoftwareONE?: **SoftwareOne is powered by Swomies.** **Become one.** Every day, 9000+ SoftwareOne colleagues - we call ourselves **"Swomies"** - partner with clients to deliver inspired technical and licensing solutions to engage their workforce and accelerate cloud maturity. Our internal backbone of enablement functions needs to be strong to keep the company ready for delivering great services to our customers. Our **internal IT team** (= BUSINESS IT) is one of these competent and passionate teams that enables all Swomies to stay technically uptodate and keep SoftwareOne's operational excellence. You want to be part of the internal IT team of SoftwareOne? Here's a new chance to step in: **Security Architect (gn)** team: Business IT / internal IT of SoftwareOne | pensum: full time | location: Europe / remote option The role: **The main responsibility**: - Manage a team of 8 Security Architects and Engineers based in India - Plan, explain, defend and deliver long-term projects (6-9 months) - Meet, interact, communicate (in German & English) and document **The key** **responsibility**: - Develops and maintains the cyber security capability roadmap and strategy, and works with cyber security services to align their technology and service roadmaps. Will particpate in the Cyber security Technical Design Authority. - Provides in depth expertise to Cyber Security topics - Supports projects where a major deviation is required from security standard design - Owns cyber security related internal standards - Identifies major internal cyber security related deficiencies and defines/designed the official pragmatic approacheson how to remediate them at scale - Supports the analysis of Risks and Threats for TRA (threat risk assessment) process - Reports on cyber security status across company and is responsible for maintaining a clear risk acceptance/remediation level and agree to it with CISO and official internal governance bodies - Ensures industry cyber security controls in regards to network security - Designs and signs off on all cyber security requirements for official solutions **The surroundings**: - Works across information security and risk management and with all information technology functions to ensure cyber security tools are designed and implemented as per defined policies, standards and industry good practices **The stakeholder**: - CISO - Executive Board of SoftwareOne - Collaborates closely with other Security Architects and IT Architects on Application Security related matters **The People Lead**: Ravi Bindra moved to Switzerland 20+ years ago and is part of SoftwareOne since 4+ years. Ravi is SoftwareOne's CISO, but beforehand he had the role we mentioned above. #FunFact Next to his outstanding experience in Cyber Security, Ravi is a great communicator, has an open mindset and is highly intercultural. You're eager to learn more about what's on Ravis's professional mind? Have a look to his latest Blog article for SoftwareOne: You're eager to know more about Ravi's life and career? Feel free to check his LinkedIn profile: **The team**: **400+ Tech Experts in 11+ countries **build and operate the systems that run SoftwareOne. They deliver 24/7 support through different time zones and work in a hybrid **Multi-Cloud** *** **environment** (AWS, Azure). Our global BIT team is leading the SoftwareOne's internal transformation by rethinking traditional IT and business operations, while **driving innovation** and productivity for its thousand's employees worldwide. #driventodeliver #thousandsstrong #allinone What we need to see from you: **your experience & knowledge** - 4+ years in Security Administration, Engineering, Architecture or similar - 2+ years in management or lead positions in a matrix organization - Reporting to and communicating with senior level management (with and without IT background) on information risk topics - Sourcing complex IT services, working closely with vendors and making full use of their capabilities - Initiate and manage projects that will affect other divisions, departments and functions, as well as the corporate environment - Compliance requirements (e.g. GDPR, SOX, GxQ / CSV, E-compliance, Records Management, Privacy). - General IT infrastructure technology, systems and management processes - (Information) risk management related standards or frameworks such as COSO, ISO 2700x, CobiT, ISO 24762, BS 25999, NIST, ISF Standard of Good Practice and ITIL - Infrastructure and network design, datacenter design, perimeter design, LAN design, WAN design, Firewalls, Intrusion Detection Systems, Firewall Rule Management, Deep Packet Inspection, Packet Capture and interpretation of packet capture, Web Application Firewalls, Network Based attacks and Detection Techniques - Regulated industries - Business processes in a global industry, preferably IT services industry **your language skill** - Excellent communication skills with good comma