Security Architect – Identity & Access Management

Introduction – The Organization and Role

The organization is a global leader in professionally monitored security solutions, operating with a startup mindset characterized by agility, efficiency, and a strong commitment to value-driven performance. The organization’s services and products enhance home safety and security, catering to customers across Europe and LATAM.

The organization’s Information Security (InfoSec) team is currently seeking an adept, innovative, and dedicated Security Architect to join the Security Architecture & Engineering (SAE) team. This role will play a vital part in supporting the organization’s expanding operations on a group-wide scale.

The SAE team plays a pivotal role in shaping the security roadmap and strategic vision for the organization, standardizing security controls, tools, configurations, and architectural designs that developers and engineers must adhere to. Reporting to the Group Head of Security Architecture & Engineering, this position holds a critical responsibility in ensuring the organization’s ongoing security and the delivery of secure IoT devices and alarm services to its customers. This mission holds significant importance, involving both strategic planning and hands-on execution to create a lasting and extensive impact.

This role is flexible and can be based in Madrid (Spain) or Amsterdam (The Netherlands), and involves collaboration across borders, with occasional travel (up to 15%) within the team’s virtual, multi-country setup.

Key Responsibilities

Security Architecture:

• Develop, maintain, and communicate a globally applicable security reference architecture framework for all the organization’s businesses and geographic regions.
• Assess and establish the resilience and suitability of technical designs to mitigate relevant cyber threats.
• The primary focus will be on Identity and Access Management (IAM), but versatility in working across other domains is expected, providing opportunities for cross-disciplinary growth within cybersecurity.

Product Owner:

• Assume the role of product owner for IAM tools, encompassing identity governance, management, and privileged access management.
• Create a feature release plan, maintain the tool’s backlog, and prioritize features for each iteration.
• Define and uphold the strategic roadmap for the tool, identifying valuable new features and influencing vendors to incorporate them into their product roadmap.
• Ensure comprehensive documentation of the tool’s architecture and engineering artifacts.
• Effectively communicate and explain the tool’s capabilities to stakeholders, including top management, when necessary.
• Serve as the primary point of contact with the vendor for product and feature roadmapping.

Technical Leadership:

• Lead current and future large-scale IAM transformation initiatives across the entire organization.

Communication & Influencing:

• Collaborate with key stakeholders to influence their decision-making processes.

What You Bring

To excel in this role, you should possess robust technical expertise in security, along with a problem-solving mindset and a demonstrated track record in security architecture and engineering. Additionally, you should exhibit significant self-motivation and analytical thinking, anticipating risks and proactively resolving bottlenecks.

Your responsibilities will encompass designing the Security Reference Architecture for the organization, supporting other architecture roles in fulfilling InfoSec requirements, and contributing to the security of the organization’s products. This role also entails travel of up to 15% within Europe to foster collaboration with R&D and engineering teams, ensuring the integration of security into product development for the protection of customers’ homes and families.

Required Experience

• 5+ years of experience in cybersecurity, with at least 3 years as a security architect.
• Previous experience as an architect or engineer with Sailpoint and Cyberark products.
• Proven experience in designing and reviewing system architectures related to digital identities, including authentication and authorization security models and protocols.
• Proficiency in creating and maintaining generic security guidelines for compliant solutions.
• Familiarity with UML, C4-model, or similar tools for documenting architecture designs.
• Strong communication skills for requirements gathering, architectural discussions, and decision-making with InfoSec and business stakeholders.
• Fluency in written and spoken English.

Desired Experience

• Extensive experience in designing and reviewing security for system architectures across various domains, such as distributed systems, event-driven architecture, APIs, web architecture, integration patterns, microservices, containers, serverless, security protocols, and cryptography.
• Experience working asynchronously in a geographically distributed team using various methodologies like Kanban, Scrum, etc.
• Proficiency in designing Threat Models and knowledge of MITRE ATT&CK.
• Experience with major Public Cloud providers and hybrid environments (Cloud + On-prem).
• Familiarity with IoT, especially smart home technologies, and associated business models.
• Advanced security certifications such as SABSA or CISSP (CCSP and TOGAF Certifications would also be advantageous).
• Background and experience in software engineering.

Apply
Please apply here or contact Stela Staleva at +31 (0)6 41 11 09 67 or at stela@csrecruitment.nl for more information.