This list contains only the countries for which job offers have been published in the selected language (e.g., in the French version, only job offers written in French are displayed, and in the English version, only those in English).
Under the general supervision of the Sr Manager Cybersecurity, the Enterprise Security Architect, Sr will assure that security principles and company security policies are adhered to in the design and delivery of systems and software including ongoing lifecycle. Within this capacity, the Lead Enterprise Security Architect will support cybersecurity architecture activities across assigned projects and initiatives supporting Volkswagen Group of America. Primary focus will be supporting secure design, implementation, and deployment activities for assigned systems and projects.
Job Responsibility
Assure that security principles and company security policies are adhered to in the design and delivery of systems and software including ongoing lifecycle
Support cybersecurity architecture activities across assigned projects and initiatives supporting Volkswagen Group of America
Support secure design, implementation, and deployment activities for assigned systems and projects
Design, develop, review and implements security designs for new or existing technology system(s)
Establish and maintain trust relationships with the business and project teams through active engagement
Collaborate with other teams and departments to fit security requirements with other constraints
Support business and project teams with cybersecurity architecture guidance
Provide cybersecurity review and recommendations for system and application designs and architectures
Provide input on security requirements to be included in statements of work
Create and maintain architecture design artifacts such as diagrams and documentation
Interpret output of activities such as penetration tests and application security scans
Assist in identifying cybersecurity gaps and recommending remediation solutions
Provide technical guidance to project team members
Coordinate with the Region Americas Security Operations Centers (RA SOC) to ensure new or modified solutions/systems are monitored
Participate in the documentation process for monitoring processes and incident response
Provide technical support and guidance during priority security incident(s)
Analyze market and industry trends and adjust cybersecurity strategy accordingly
Maintain and expand knowledge of best practices and emerging threat landscape
Requirements
10+ years’ experience in a combination of Security Architecture, Security Operations, Data Security and Auditing with at least 5 years of experience in Information Technology architecture, planning and execution in complex environments
Bachelor’s degree in computer science, Information Technology, or related field or equivalent work experience
Certified Information Security System Professional (CISSP) certification or equivalent
Proven experience as a technical architect in multiple fields of IT (e.g. network, storage, server, client, web/application, cloud, etc.) with the ability to understand security best practices and implications across all fields
Strong experience across multiple cybersecurity domains including cloud security, application security, identity & access management, network security, and data protection
Hands-on experience implementing modern security architectures
Excellent knowledge of cybersecurity risk evaluations for applications and systems
Adept in translating security requirements into actionable controls and measures
Background in securing on-prem, cloud and hybrid systems in theory and practice, including secure architecture design concepts
Understanding of DevOps principles, 'shift left' philosophy
Strong experience with common web application security concepts, such as the OWASP Top 10, and their practical implementation
Understanding of application development secure coding techniques
Experience with multi-factor authentication,single sign-on, identity federation, identity management and related technologies for both cloud and on-prem environments, and SaaS solutions
Experience with vulnerability management methodologies and implementations
Solid understand of intrusion detection and prevention solutions and techniques
Experience with encryption technology and industry best practices for practical implementation including Key Management (e.g. PKI, HSM, etc.)
Security audit and assessment experience (e.g., ISO27001, NIST 800-53, etc.)
Experience and knowledge with Internet protocols, (e.g., TCP/IP, UDP, DNS, SMTP, etc.)
Ability to travel as needed including international/overseas travel
Flexibility regarding start time due to early morning conference calls
Ability to support off-hour Incident Response in case of Priority 1 Security Incidents
Nice to have
Experience with the design of systems across countries/geographic regions
Experience in the automotive industry with specific expertise in securing those environments
Strong understanding of investigation and breach best practices
Software Development Life Cycle (SDLC) experience
Strong knowledge in the following topics: API security
Containers, Kubernetes, OpenShift
Big data analytics or data mining solutions (e.g., Apache Kafka, Apache Spark and databases like Apache Cassandra or Cloudera data lake)
Security best practices with major platforms such as Microsoft O365,SAP S/4HANA, and Salesforce
Securing Public Cloud platforms (AWS, GCP, Azure)
Experience assessing and securing AI/ML and Generative AI solutions, including risks such as model leakage, prompt injection, data poisoning, and misuse
Experience integrating AI capabilities securely into enterprise architectures
Understanding of native app development and deployment to iPhone and Android platforms
Agile/SCRUM
Knowledge of AEM, FeatureHub
Knowledge of GraphQL and microservices
Knowledge of Java, React, Node.js, Jenkins, GitHub
Master’s degree in computer science, Information Technology, or related field or equivalent work experience