25 km
Lead Software Security Architect CBDC (m­­/­­f­­/­­d) 15.03.2023 Giesecke+Devrient advance52 GmbH München
Weitere passende Anzeigen:

Ihre Merkliste/

Mit Klick auf einen Stern in der Trefferliste können Sie sich die Anzeige merken


Passende Jobs zu Ihrer Suche ...

... immer aktuell und kostenlos per E-Mail.
Sie können den Suchauftrag jederzeit abbestellen.
Es gilt unsere Datenschutzerklärung. Sie erhalten passende Angebote per E-Mail. Sie können sich jederzeit wieder kostenlos abmelden.

Informationen zur Anzeige:

Lead Software Security Architect CBDC (m/f/d)
Aktualität: 15.03.2023


15.03.2023, Giesecke+Devrient advance52 GmbH
Lead Software Security Architect CBDC (m/f/d)
Define, implement and continuously improve a secure development process for our product offering Define the security requirements of our CBDC product, on individual component and on system levels, based on the business use cases Support the development teams to implement security in all required dimensions into our product offering Constantly raise awareness for security related topics for the development team and give guidelines how to implement relevant security measures into our development processes and secure operations Preparation and management of any security related incident, emergency and crisis situations Perform local, internal security audits and coordinate external audits (e.g. penetration tests), audit results and mitigative actions with group security functions
Master degree in computer science, security / information security or a related field including engineering, mathematics, physics and other STEM subjects or equivalent professional experience (ideally more than five years in a comparable position in industry or public functions) Several years of professional experience in building secure software solutions Demonstrated ability to perform the functions of a software security architect in a similarly complex environment, preferably in the domain of a complex product development undertaking Solid knowledge of key IT security standards (ISO 27000ff) Deep understanding of the key technical and organizational concepts of information security related systems (i.e. cloud, firewalls, intrusion detection services, virtualization technologies etc.) Plus: Experience in IT security on a critical infrastructure / governmental level Plus: Relevant certifications in the field of Information Security Management is an advantage (e.g. CISA, CISM, ISO 2700x Auditor) Plus: Knowledge and practical experience in the application of relevant standards and norms (e.g. ISO 27xxx, Common Criteria, PCI SSC guidelines, NIST Cybersecurity Framework)