Enterprise Security Architect

The Enterprise Security Architect is responsible for designing, implementing, and maintaining an organization's security architecture. This role involves creating security solutions that protect the organization's information assets from cyber threats while ensuring compliance with regulatory requirements and industry best practices. The Enterprise Security Architect collaborates with various stakeholders, including IT, business units, and senior leadership, to develop and enforce security policies, standards, and procedures.

You Will

Security Strategy Development:

• Develop and maintain the organization’s security architecture framework.
• Align security initiatives with business objectives and regulatory requirements.
• Conduct risk assessments and develop mitigation strategies.

Architecture Design and Implementation:

• Design secure network architectures, including cloud and on-premises environments.
• Develop and implement security solutions, such as firewalls, intrusion detection/prevention systems, and encryption technologies.
• Ensure security architecture is scalable and adaptable to emerging threats and technologies.

Policy and Standards Enforcement:

• Create and enforce security policies, standards, and procedures.
• Ensure compliance with industry standards (e.g., ISO 27001, NIST) and regulatory requirements (e.g., GDPR, HIPAA).

Collaboration and Communication:

• Collaborate with IT and business units to integrate security into system development and operational processes.
• Provide guidance and training to staff on security best practices.
• Communicate security risks and solutions to senior leadership and stakeholders.

Incident Response and Management:

• Develop and maintain incident response plans and procedures.
• Lead investigations and response efforts for security incidents and breaches.
• Conduct post-incident analysis and implement lessons learned to improve security posture.

Continuous Improvement:

• Stay updated on the latest security trends, technologies, and threats.
• Continuously assess and improve the security architecture.
• Participate in security audits and assessments.

Your Skills

• Proficiency in firewalls, VPNs, IDS/IPS, SIEM, endpoint protection, DLP, and encryption.
• Deep understanding of network protocols, architecture, and security controls.
• Expertise in securing cloud environments (AWS, Azure, GCP).
• Identity and Access Management (IAM): Knowledge of IAM principles and technologies.
• Familiarity with secure coding practices and application security testing tools.
• Experience in incident detection, response, and forensic analysis.
•  
• Bachelor’s degree in Computer Science, Information Technology, Cybersecurity, or a related field.
• Relevant certifications such as CISSP (Certified Information Systems Security Professional), CISM (Certified Information Security Manager), or TOGAF (The Open Group Architecture Framework).
• Minimum of 5-8 years of experience in cybersecurity, with at least 3 years in a security architecture role.
• Familiarity with relevant regulations and standards (e.g., GDPR, HIPAA, PCI-DSS).
• Experience in managing security projects and initiatives.
• Ability to adapt to rapidly changing technology and threat landscapes.
• This comprehensive description should help you understand the role of an Enterprise Security Architect and the skills required to excel in this position.

Your Benefits 

• We offer a hybrid work model which recognizes the value of striking a balance between in-person collaboration and remote working incl. up to 25 days per year working from abroad.
• We believe in rewarding performance and our compensation and benefits package includes a company bonus scheme, pension, employee shares program and multiple employee discounts (details vary by location).
• From career development and digital learning programs to international career mobility, we offer lifelong learning for our employees worldwide and an environment where innovation, delivery and empowerment are fostered.
• Flexible working, health and wellbeing offers (including healthcare and parental leave benefits) support to balance family and career and help our people return from career breaks with experience that nothing else can teach.

61250 | Ingeniería informática y tecnológica | Profesional / Senior | Non-Executive | Allianz Technology | Jornada completa | Indefinido

About Allianz Technology

Allianz Technology is the global IT service provider for Allianz and delivers IT solutions that drive the digitalization of the Group. With more than 13,000 employees located in 22 countries around the globe, Allianz Technology works together with other Allianz entities in pioneering the digitalization of the financial services industry.

We oversee the full digitalization spectrum – from one of the industry’s largest IT infrastructure projects that includes data centers, networking and security, to application platforms that span from workplace services to digital interaction. In short, we deliver full-scale, end-to-end IT solutions for Allianz in the digital age.

Diversity of minds is an integral part of Allianz’ company culture. One means to achieve diverse teams is a regular rotation of Allianz Executive employees across functions, Allianz entities and geographies. Therefore, the company expects from its employees a general openness and a high motivation to regularly change positions and collect experiences across Allianz Group.

D&I statement

Allianz Technology is proud to be an equal opportunity employer encouraging diversity in the working environment. We are interested in your strengths and experience. We welcome all applications from all people regardless of gender identity and/or expression, sexual orientation, race or ethnicity, age, nationality, religion, disability, or philosophy of life.

Join us. Let´s care for tomorrow.

You. IT