Information Security Expert overseeing ISMS development and IT security compliance in Germany. Collaborates with management and leads regulatory requirements implementation.
About the role
- Product Security Architect at Strada Global defining cutting-edge security strategies. Focus on application security, cloud migration, and collaboration with cross-functional teams for robust defenses.
Responsibilities
- Help develop and maintain a comprehensive application security architecture for our products that aligns with our business goals and technology landscape.
- Design and implement security solutions that leverage the latest technologies and best practices for application security.
- Translate business objectives and risk management strategies into actionable security processes for our products.
- Establish and enforce security configuration standards for application development, deployment, and maintenance.
- Develop standards for data encryption and tokenization to safeguard sensitive information within our products.
- Stay ahead of emerging threats and technologies to ensure our product security posture remains robust and adaptive.
- Lead the full migration of our application stack from AWS and legacy data centers to Azure, ensuring a seamless transition and robust security posture for our applications in the new environment.
- Spearhead the rebuilding of our product security program to enhance our defenses and align with industry best practices.
- Partner in the implementation of a comprehensive security architecture program that supports our strategic goals and operational needs for product security.
- Work closely with product managers, developers, and other stakeholders to integrate security into all aspects of our product lifecycle.
- Assess and manage the security of third-party vendors and partners involved in product development.
- Liaise with other security professionals to share insights and best practices.
- Collaborate with the business continuity team to ensure security measures are in place during failovers and other critical events affecting our products.
Requirements
- Bachelor's or master's degree in computer science, information systems, cybersecurity, or a related field, or comparable experience.
- Certifications: CISSP, CISA, TOGAF, GAIC, or CISM preferred.
- Hands-on experience with application security, threat modeling, secure coding practices, and vulnerability management.
- Familiarity with regulations and frameworks such as HIPAA, GDPR, ISO 27001/2, and NIST CSF.
- Strong strategic planning, communication, financial analysis, and project management skills.
Benefits
- health coverage
- wellbeing programs
- paid leave (vacation, sick, parental)
- retirement plans
- learning opportunities and more.
Job title
Job type
Experience level
Salary
Degree requirement
Tech skills
Location requirements
IT Professional responsible for implementing innovative industrial IT solutions. Working in an agile environment while ensuring IT and OT security for production networks.
Security Compliance Specialist enhancing cybersecurity and compliance framework at Trezor. Collaborating across teams to shape security and compliance operations in the tech sector.
Cyber Security Specialist focusing on IT security measures and infrastructure protection for a motivated team. Engaging in both project work and internal security processes.
IT & Cybersecurity Intern assisting with help desk support and IT system maintenance at OBDeleven. Collaborating with teams and improving IT documentation in a fun workplace culture.
Werkstudent supporting information security management and business continuity projects for Syneco's energy operations. Engaging in the development and upkeep of management systems and reporting tools.
Security Consultant providing IT - Security Consulting by leveraging knowledge and skills to assist clients. Involved in diverse projects from analysis to execution and results presentation.
Lead functional safety for product development in PEM electrolyzers at Quest One. Collaborate with teams and support certification processes in the field of green hydrogen technology.
(Senior) Consultant in Automotive - & Product Security at Wavestone, focusing on cyber security solutions for clients in innovative projects. Collaborative work in a vibrant team environment across multiple German cities.
Consultant specializing in Cyber & Product Security for clients in a hybrid role. Focused on implementing security strategies and conducting assessments with a collaborative approach.