Job Description
We are seeking a Senior Enterprise Security Architect to support the strategic build-out of a new European legal entity for a global financial institution. This is a critical first-line role focused on the design and governance of enterprise-wide security architecture, with an emphasis on infrastructure security, security operations, and regulatory alignment.
You will be responsible for establishing a secure architecture foundation across platforms, systems, and processes, ensuring compliance with key regulatory frameworks such as BaFin and DORA. As part of a globally connected team, you will work closely with senior stakeholders across IT, Risk, Compliance, and Security functions spanning the EU, UK, and US.
Key Responsibilities:
* Define and drive the enterprise security architecture strategy, with a particular focus on infrastructure, operational resilience, and tooling.
* Serve as a senior architectural lead for first-line security initiatives, ensuring that security is embedded into the broader technology stack.
* Develop enterprise-wide security standards, principles, and reference architectures aligned with regulatory obligations (e.g., BaFin, DORA).
* Evaluate, design, and oversee the deployment of key security technologies including SIEM, SOAR, EDR/XDR, vulnerability management, PAM, and network security platforms.
* Act as a senior liaison between first line and second/third-line teams, translating business and regulatory requirements into architectural controls.
* Support governance and assurance processes, ensuring that security controls are consistent, auditable, and aligned with operational and risk frameworks.
* Participate in global architecture forums, contributing to group-wide security initiatives while ensuring regional compliance and architectural fit.
* Mentor junior architects and engineers, fostering architectural excellence across the team.
Requirements:
* Proven experience as an Enterprise or Senior Security Architect within a complex, regulated environment (financial services ).
* Deep expertise in infrastructure security, security operations, and enterprise security governance.
* Strong understanding of regulatory frameworks including BaFin, DORA, and related European financial sector obligations.
* Demonstrated ability to design and implement security architectures that scale across hybrid environments (cloud and on-premise).
* Hands-on familiarity with enterprise security technologies such as Splunk, SentinelOne, CrowdStrike, Qualys, CyberArk, Palo Alto, Microsoft Defender, ServiceNow SecOps, etc.
* Excellent stakeholder engagement skills, with the ability to influence at senior leadership and board level.
* Fluency in German (written and spoken) is essential.
* Relevant certifications : SABSA, TOGAF, CISSP, CISM, CCSP or equivalent enterprise architecture credentials.
#J-18808-Ljbffr