Skip To Main Content
backBack to Search

Security Architect

Remote in Czech Republic, Slovakia
Security.Engineering
Looking for something else?

Find a vacancy that works for you. Send us your CV to receive a personalized offer.

Find me a job

We are hiring a Security Architect to support security architecture and operating model development across DB’s on-premise private cloud platforms. The role will be embedded within platform teams and will act as the key liaison between the platform teams and CSO capability SMEs, ensuring CSO security principles and requirements are captured, designed, and delivered.

The role may focus on BMaaS, VMaaS, CaaS, DBaaS, Storage/MaaS, or Common Control Plane/dbServiceNow, depending on demand and prioritization.

Responsibilities
  • Act as the Security Architect for one or more private cloud platform areas, including BMaaS/VMaaS/CaaS, DBaaS/Storage/MaaS, or Common Control Plane/dbServiceNow
  • Embed within platform teams to capture security requirements and drive delivery of CSO security principles
  • Liaise with CSO capability SMEs across security pillars to ensure requirements are understood and implemented
  • Produce and agree on security designs and operating models for private cloud platforms
  • Develop delivery plans for implementation of security designs and operating models
  • Guide delivery teams in implementing agreed security architecture and control requirements
  • Support CSO Enterprise Security Architecture in developing a high-level reference security architecture for DB’s private cloud
  • Define security requirements for on-premise service account management and privileged access management across private cloud platforms
  • Support encryption requirements for data at rest across on-premise infrastructure, where relevant
  • Capture CSO operating model requirements for ServiceNow and Common Control Plane capabilities, where relevant
  • Support alignment of Secure SDLC governance processes across public and private cloud environments
Requirements
  • Strong general security architecture experience across multiple security domains (10+ years)
  • Experience designing security solutions for private cloud, on-premise infrastructure, or enterprise platform environments
  • Experience with at least one of the following: Bare Metal as a Service/Virtual Machines as a Service/Containers as a Service/Database as a Service or Storage platforms or Messaging as a Service/Common Control Plane/Developer Portals/ ServiceNow
  • Specialist experience in Identity & Authentication, data encryption, or secure software/systems development processes
  • Familiarity with managed Kubernetes, virtualization platforms/SDDC, cloud and on-premise networking
  • Experience with Terraform, Ansible, or other automation and infrastructure-as-code tools
  • Understanding of privileged access management, service account management, and secure operating models
  • Experience working with security stakeholders, enterprise architecture teams, platform teams, and engineering teams
  • Ability to produce security designs, reference architectures, operating models, and delivery plans
  • Experience with Secure SDLC governance, DevSecOps, or security controls integration into developer platforms is desirable
  • Excellent written and verbal communication skills in English (C1 level)