DevSecOps Architect (m/f/d)

Descrizione del lavoro:

Your mission in our team
Join Siemens Smart Infrastructure Cybersecurity team as a DevSecOps Architect and shape how we embed security into every layer of our development and operations ecosystem. You'll work at the intersection of cybersecurity, cloud infrastructure, and DevOps practices-designing and implementing security controls that protect critical infrastructure while enabling teams to move fast and innovate confidently. This role bridges the gap between security strategy and operational reality, ensuring that security becomes an enabler, not a bottleneck.
Challenges that await
* Design and implement comprehensive security architectures for cloud-native applications and infrastructure, translating security requirements into practical, scalable solutions
* Evaluate complex application architectures and integration scenarios, identifying security risks and recommending suitable controls aligned with ISO27001, IEC62443, and industry standards
* Collaborate with development and operations teams to integrate security into CI/CD pipelines, container orchestration, and Infrastructure-as-Code practices
* Conduct risk assessments and consult business units on mitigating countermeasures, balancing security requirements with business objectives
* Architect endpoint protection and application security solutions that align with organizational security posture
* Share expertise across the Siemens cybersecurity community, contributing to knowledge development and best practices
* Represent the Smart Infrastructure Cybersecurity team in corporate initiatives and cross-functional security projects
* Stay current with emerging threats, security frameworks (including AI Security frameworks like OWASP GenAI and MITRE ATLAS), and cloud security innovations
What will make your candidature stand out
* A university degree in Computer Science, IT Security, or equivalent professional education
* A minimum of 3 years' hands-on experience in cybersecurity, with demonstrated expertise in application security architecture and endpoint protection
* Strong knowledge of security standards and regulations (ISO27001, IEC62443) and proven ability to translate them into actionable security concepts
* Solid understanding of Microsoft Azure Cloud and Microsoft Power Platform security architectures
* Proficiency in English; German language skills are a valuable asset
* Ability to think strategically while executing tactically-bridging security architecture with real-world implementation
* Passion for continuous learning and staying ahead of the cybersecurity curve
* Strong communication skills to translate complex security concepts for both technical and non-technical stakeholders
You'll thrive even more if you also bring
* Experience with other cloud providers (AWS, Google Cloud) and their security models
* Hands-on experience securing CI/CD pipelines, container technologies (Docker, Kubernetes), or Infrastructure-as-Code frameworks
* Familiarity with AI Security Frameworks and their practical application in modern architectures
* Experience with security automation and tooling in DevOps environments
* Background in critical infrastructure protection or industrial cybersecurity
* Contributions to open-source security projects or active participation in the cybersecurity community