Stellenbeschreibung

For our client we are looking for a (Junior) Cloud Security Architect (f/m/d) who, after a three-month project as a freelancer, is open to a permanent position, assuming the conditions are right.

Start: 15.08.2025
Duration: 3 months in freelance, long term in permanent
Capacity: 100% if possible
Location: 75% Remote, 25% Berlin (1 week Berlin / 3 weeks remote in rotation), up to 50% onsite in peak times
Language: English, German is a plus
Annual salary in permanent position: 65.000 EUR

Team:
The Security Architect consults the (Platform) Security Architects and CRS sub streams in developing and maintaining secure platform architectures by contributing to security design, threat modeling, and compliance activities.

Tasks:
- Objective: Consult platform and security architects
- Tasks: Consult platform architect and product line architects in following areas: security architecture guiding principles for the platform, platforms access controls, integration points, secure design principles, perform threat modeling to identify and address potential platform risks, cybersecurity framework, collaborate with the platform architecture team to integrate security into designs

- Objective: Consult in security architecture management processes
- Tasks: Consult with cross-functional teams (e.g., platform architects, product owners, compliance teams), documentation on processes around security and security architecture processes

Skills (must-have):
- Familiarity in security architecture principles, secure design patterns, and frameworks.
- Familiarity in following security domains: Security Architecture and Design, Cloud Security, Identity and Access Management (IAM), Application Security, DevSecOps and Automation, Incident Response and Resilience, Cryptography and Data Protection
- Familiarity with threat modeling methodologies and risk assessment.
- Experience to design and implement security and compliance controls for platforms.
- Experience in translating technical security requirements into actionable designs and documentation.

Skills (should-have):
- Cross-functional collaboration skills to work with technical and non-technical stakeholders.
- Experience with DevSecOps practices and tools for integrating security into platform development
- Experience with cloud posture management and detection tools (CSPM, KSP, Workload protection)
- Experience with baseline detection and response toolsets (SIEM, EDR, XDR)
- Good command and understanding of security & compliance standards and frameworks including ISO/IEC 27001, CSA CCM, BSI Grundschutz, CSI, NIST CSF, NIST OSCAL, etc.
- Basic understanding of sector-specific regulations (e.g. NIS2, CRA, KRITIS, BSI C5, …)
- Certification in (security) architecture or cloud security (e.g., CISSP, SABSA, TOGAF, CCSK)
- Strong cross-functional collaboration skills to work with technical and non-technical stakeholders