Cybersecurity Architect

• The Cybersecurity Architect serves as the technical backbone and content authority for cybersecurity across Foundational Technologies (FT), collaborating with the Chief Cybersecurity Officer on strategy, enabling cybersecurity officers to enforce governance, and guiding technical project managers to implement a consistent security baseline across all units
• Driving the adoption and implementation of NIST CSF v2.0 towards FT's target maturity level by defining actionable, technically sound baselines and patterns
• Translating Siemens Corporate Cybersecurity standards (e.g., SC236) into FT-specific architecture and technical controls, ensuring consistency across cloud, on-premise, and research environments
• Developing and maintaining the FT cybersecurity baseline, defining the minimum technical requirements for asset management, vulnerability management, and incident response
• Identifying and addressing content or integration gaps between Corporate Cybersecurity and FT departmental services to improve alignment and reduce redundancies
• Creating and maintaining a technical security backlog and roadmap, ensuring continuous improvement of FT's cybersecurity posture.
• Acting as the technical liaison to Corporate Cybersecurity architects
• Partnering with Cybersecurity Officers across FT units to enable consistent implementation and measurement of the security baseline
• Supporting key initiatives in asset discovery, vulnerability remediation, and incident management, including architecture reviews and tool enablement
• Representing FT on relevant internal cybersecurity architecture forums

Do you have experience in Risk management?, Do you have a Master's degree?, * Master's degree in Computer Science, Information Security, or a related field

• Relevant certifications such as CISSP, CCSP, CCSK, GDSA, or SABSA SCP are a plus
• Proven long term experience in cybersecurity architecture and strategy
• Ideally, you have already worked in engineering, R&D or administration/operation of IT/OT
• Proven hands-on implementation experience with cybersecurity controls across the technology stack, including on-premise, edge, cloud (AWS and Azure)
• Proven professional experience in information security with sound knowledge in risk, vulnerability, and incident management and reporting
• Must have previous experience with supporting as technical lead Vulnerability Management programs
• Strong understanding of NIST CSF v2.0 and cybersecurity maturity models
• Experience working with cross-functional teams including product architects and infrastructure managers to manage operational cybersecurity risks
• Ability to identify security gaps and define actionable roadmaps
• Familiarity with corporate cybersecurity frameworks and enterprise risk management
• Collaborative and communicative, able to work across departments and with senior leadership
• Fluent in English (German is a plus)

• An attractive remuneration package
• A discounted public transport ticket so you're always mobile
• Appealing Siemens pension benefits
• Access to Siemens share plans
• 30 days of paid vacation and a variety of flexible work schedules that allow time off for you and your family
• 2 to 3 days of mobile working per week as a global standard
• Flexible training opportunities for both your professional and personal development that you can tailor to your interests
• Barrier-free locations
• Location-dependent childcare to help balance family and work

Since each of over 300,000 team members feels that other benefits are particularly important, and we cannot list our entire benefit portfolio here, you can find more information here.

The individual benefits are subject to regulatory, contractual, or corporate conditions.

Foundational Technologies (FT) provides the technical foundation for Siemens Xcelerator on our journey towards becoming ONE Technology Company. The FT CYS (Cybersecurity) organization is responsible for realizing a unified strategy of achieving industry-grade security for FT services by improving the cybersecurity posture of FT. The FT CYS strategy is in alignment with Siemens' overall cybersecurity strategy and based on industry-standards like the NIST CSF v2, ISO 27001, and IEC 62443. www.siemens.de/careers - if you would like to find out more about jobs & careers at Siemens.