Senior Associate of Security Architecture (m/f/d) - #2227889

Company Description

We are Publicis Re:Sources - the shared service centre of Publicis Groupe. As the only full shared service centre in the industry, we are the backbone of Publicis Groupe and enable Publicis Groupe companies in the DACH region to do what they do best: Innovation and transformation for their clients.

Overview

We are searching for a full-time, permanent position for our location as a

Senior Associate of Security Architecture (m/f/d)

Publicis Re:Sources is hiring a Senior Associate of Security Architecture for the Global Security Team. This full- time position includes identifying security weaknesses in information systems, drafting reports, providing recommendations for security risk mitigation, and collaborating with delivery and infrastructure support teams to address security risks. The candidate, with significant experience as an Information Systems Architect, must be a technical expert in cloud technologies and possess strong general knowledge across a range of technologies such as databases, networking, operating systems, authentication, and encryption — along with a solid understanding of the security aspects of all these systems.

Responsibilities

Job summary:

• Conduct secure architecture reviews of application, cloud, and Identity, & Access Management (IAM) solutions to evaluate the adequacy and effectiveness of security measures
• Make recommendations to address identified design and implementation gaps
• Threat model key enterprise and agency systems
• Collaborate with business and technical teams in developing security risk treatment plans addressing vulnerabilities in applications, cloud environments, and IAM solutions
• Document and analyze the impact of new system integrations and updates on the current security posture
• Develop and contribute to overarching and solution specific techincal security standards, encompassing application, cloud, and Identify, and Access Management (IAM) domains
• Ensure system designs and architectures comply with security best practices, company policies, and industry-recognized security standards (e.g., ISO 27001, PCI DSS, NIST, HIPAA etc.)
• Periodically evaluate technical security standards and configurations, making recommendations for updates or improvements to ensure they remain current to address changing threat landscape
• Collaborate closely with stakeholders, including business teams and internal departments, to ensure comprehensive security needs are understood and met in an efficient manner
• Participate in software security review process, document security risks and mitigating control
• Participate in team meetings to collaborate on enterprise and business unit specific initiatives
• Participate in the new technology evaluations and peer reviews
  
  

Qualifications

Essential Job Requirements:

• Bachelor’s degree in Computer Science, Engineering, or other Engineering or Technical discipline or equivalent relevant experience
• Four (4) plus years of experience in Application Security and/or Cloud Security
• Knowledge of Threat Modeling frameworks, such as STRIDE
• Cloud Security Certifications (AWS, Azure, GCP) preferred
• Knowledge of OWASP Top 10
• Knowledge of risk management processes (e.g., methods for assessing and mitigating risk)
• Knowledge of documenting cyber threats and vulnerabilities
• Knowledge of authentication, authorization, and access control methods
• Knowledge of data security standards (e.g., PCI, PII, PHI, etc.)
• Skill in designing multi-level security/cross domain solutions
• Ability to apply secure system design tools, methods and techniques
• Ability to design architectures and frameworks
  
  

Other Job Requirements

• Good communication and documentation skills
• Ability to work effectively and collaboratively with stakeholders
• Willingness to work with geographically dispersed teams
• A ‘can do’ attitude team player who works well under pressure and with dispersed groups, worldwide
• Must be a self starter with strong organizational skills to enable navigation of the company to identify sponsors, stakeholders and interested parties
  
  

Additional Information

As a member of our Re:Sources Team, you can expect:

• Inspiring collaboration and exchange with colleagues from different disciplines, countries and the entire Publicis network a centrally located and modern working environment
• Mobile office 2-3 days a week
• Drinks (water, coffee, soft drinks, etc.), fresh fruit
• Great events and celebrations that bring the entire Re:Sources team from all over Germany together
• Selection of approx. 30k web-based trainings and courses
• Further benefits such as free yoga within the agency network, mental health offers etc.
  
  

We are lokking forward to your detailled application with a short motivation letter, your CV and your latest referende letters.