Freelance Security Architect – Energy / Critical Infrastructure | Germany (Hybrid)
Germany (Hybrid – Remote with occasional on-site presence)
Freelance / Contract
Overview
A key player in the energy and critical infrastructure sector is seeking a seasoned Security Architect to join a large-scale digital and cybersecurity transformation programme. The successful candidate will play a pivotal role in defining secure architecture across IT and OT domains, aligning with enterprise security goals and evolving compliance requirements such as NIS2.
Key Responsibilities
* Lead the design and governance of security architecture across IT/OT environments, ensuring alignment with regulatory and organisational security standards.
* Collaborate with engineering, DevOps, and operational teams to embed security best practices across the software development lifecycle (SDLC) and infrastructure.
* Perform risk and threat modelling, security assessments, and define mitigation strategies for existing and future systems.
* Drive security integration for cloud-native applications and containerised environments.
* Act as a subject matter expert during architecture reviews, platform integrations, and audit preparations.
Technical Environment
* Cloud Platforms:
AWS
* Programming & Scripting:
Go, Python, TypeScript
* Infrastructure:
Docker, Kubernetes, GitLab CI/CD, Terraform
* Security Technologies:
IAM, SSO, PKI, network segmentation, vulnerability scanning, secret management
* Directories & Access Management:
LDAP, Active Directory
* Security Frameworks & Compliance:
MITRE ATT&CK, NIST, IEC 62443, ISO 27001, NIS2
* Architecture & Integration:
Secure microservices, container orchestration, API security
* Development Environment:
Git, GitLab, Infrastructure as Code (IaC), DevSecOps practices
Candidate Profile
* Extensive experience in enterprise-level security architecture across both cloud and on-premises environments.
* Proven ability to design and implement security controls for critical infrastructure and operational technology (OT) environments.
* Solid understanding of secure software development and DevSecOps principles .
* Familiarity with regulatory and compliance frameworks relevant to critical infrastructure (e.G., NIS2, IEC 62443).
* Strong stakeholder engagement skills with the ability to translate business requirements into technical security designs.
* Professional certifications (e.G., CISSP, CISM, TOGAF, SABSA) are advantageous.
Preferred Experience
* Experience working in the energy, utilities, or industrial automation sector.
* Exposure to agile delivery environments and product-based security teams.
* German language skills are an advantage but not mandatory.
This is an excellent opportunity for a Security Architect seeking a technically challenging role within a forward-thinking energy environment. You’ll be at the heart of strategic security design efforts, influencing architecture across critical domains.