IT Security Architect

Position Overview:

The IT Security Architect will be responsible for designing, implementing, and maintaining security frameworks and architectures across the organization’s IT landscape. The role includes evaluating the security standards of new vendors, collaborating with internal stakeholders such as IT, Product Security, and Data Centers, and developing security controls, policies, and procedures to mitigate risks and enhance resilience.

Key Responsibilities:

• Security Architecture Design
• Develop and implement security architectures for IT systems, applications, and networks to ensure alignment with organizational goals and compliance requirements.
• Integrate security into the design and development of new and existing systems.
• Provide guidance on secure configurations and designs that align with regulatory and business requirements.

• Risk Assessment and Mitigation
• Conduct risk assessments to identify vulnerabilities and threats across IT infrastructure, applications, and vendor relationships.
• Recommend and implement risk mitigation strategies, including technical controls and process improvements.
• Regularly evaluate the effectiveness of existing security measures.

• Evaluating New Vendors’ Security Standards
• Perform comprehensive security assessments of potential and existing vendors to ensure compliance with Nebius Group’s security standards.
• Identify and document vendor security risks, and provide actionable recommendations to address gaps.
• Collaborate with procurement and legal teams to incorporate security requirements into vendor contracts.

• Stakeholder Collaboration
• Work closely with IT, Product Security, Data Center teams, and other stakeholders to align security objectives with business needs.
• Serve as the primary security advisor to internal teams for technical and architectural decisions.
• Act as the point of contact for security matters involving vendor integrations and third-party solutions.

• Policy and Procedure Development
• Develop and maintain security policies, standards, and procedures that reflect best practices and align with regulatory requirements.
• Ensure effective communication and enforcement of security policies across the organization.
• Collaborate with teams to ensure policies are practical and scalable for operational use.

• Incident Response and Recovery
• Collaborate with the Security Operations Center (SOC) and MSSP to ensure robust incident detection and response capabilities.
• Contribute to the development of incident response plans and recovery strategies.
• Participate in post-incident reviews to identify lessons learned and implement improvements.

• Security Technology Evaluation
• Research and recommend new security technologies to enhance the organization's security posture.
• Oversee the implementation and integration of security tools and solutions.
• Evaluate the impact and effectiveness of security technologies in mitigating risks.

• Compliance and Audit Support
• Ensure IT systems and processes comply with relevant regulatory standards (e.g., ISO 27001, NIST, GDPR).
• Support internal and external audits by providing documentation and evidence of compliance.
• Maintain detailed records of security controls and activities for audit purposes.

• Qualifications:

• Education and Certifications:
• Bachelor’s degree in Computer Science, Information Security, or a related field.
• Relevant certifications such as CISSP, CISM, CCSP, or similar are highly desirable.

• Experience:
• Minimum of 5 years of experience in IT security, with at least 3 years in a security architecture role.
• Proven experience evaluating vendor security and managing third-party risks.
• Familiarity with securing cloud-based environments and SaaS platforms.

• Skills and Knowledge:
• Fluent in English
• Expertise in security architecture principles, frameworks, and best practices.
• Proficiency in risk assessment methodologies and security control implementation.
• Strong understanding of security technologies, including firewalls, SIEM, and IAM.
• Excellent interpersonal and communication skills for cross-functional collaboration.