IT Security Architect

Why work at Nebius

Nebius is leading a new era in cloud computing to serve the global AI economy. We create the tools and resources our customers need to solve real-world challenges and transform industries, without massive infrastructure costs or the need to build large in-house AI/ML teams. Our employees work at the cutting edge of AI cloud infrastructure alongside some of the most experienced and innovative leaders and engineers in the field.

Where we work

Headquartered in Amsterdam and listed on Nasdaq, Nebius has a global footprint with R&D hubs across Europe, North America, and Israel. The team of over 500 employees includes more than 400 highly skilled engineers with deep expertise across hardware and software engineering, as well as an in-house AI R&D team.

Position Overview:

The IT Security Architect will be responsible for designing, implementing, and maintaining security frameworks and architectures across the organization’s IT landscape. The role includes evaluating the security standards of new vendors, collaborating with internal stakeholders such as IT, Product Security, and Data Centers, and developing security controls, policies, and procedures to mitigate risks and enhance resilience.

Key Responsibilities:

• Security Architecture Design
• Develop and implement security architectures for IT systems, applications, and networks to ensure alignment with organizational goals and compliance requirements.
• Integrate security into the design and development of new and existing systems.
• Provide guidance on secure configurations and designs that align with regulatory and business requirements.

• Risk Assessment and Mitigation
• Conduct risk assessments to identify vulnerabilities and threats across IT infrastructure, applications, and vendor relationships.
• Recommend and implement risk mitigation strategies, including technical controls and process improvements.
• Regularly evaluate the effectiveness of existing security measures.

• Evaluating New Vendors’ Security Standards
• Perform comprehensive security assessments of potential and existing vendors to ensure compliance with Nebius Group’s security standards.
• Identify and document vendor security risks, and provide actionable recommendations to address gaps.
• Collaborate with procurement and legal teams to incorporate security requirements into vendor contracts.

• Stakeholder Collaboration
• Work closely with IT, Product Security, Data Center teams, and other stakeholders to align security objectives with business needs.
• Serve as the primary security advisor to internal teams for technical and architectural decisions.
• Act as the point of contact for security matters involving vendor integrations and third-party solutions.

• Policy and Procedure Development
• Develop and maintain security policies, standards, and procedures that reflect best practices and align with regulatory requirements.
• Ensure effective communication and enforcement of security policies across the organization.
• Collaborate with teams to ensure policies are practical and scalable for operational use.

• Incident Response and Recovery
• Collaborate with the Security Operations Center (SOC) and MSSP to ensure robust incident detection and response capabilities.
• Contribute to the development of incident response plans and recovery strategies.
• Participate in post-incident reviews to identify lessons learned and implement improvements.

• Security Technology Evaluation
• Research and recommend new security technologies to enhance the organization's security posture.
• Oversee the implementation and integration of security tools and solutions.
• Evaluate the impact and effectiveness of security technologies in mitigating risks.

• Compliance and Audit Support
• Ensure IT systems and processes comply with relevant regulatory standards (e.g., ISO 27001, NIST, GDPR).
• Support internal and external audits by providing documentation and evidence of compliance.
• Maintain detailed records of security controls and activities for audit purposes.

• Qualifications:

• Education and Certifications:
• Bachelor’s degree in Computer Science, Information Security, or a related field.
• Relevant certifications such as CISSP, CISM, CCSP, or similar are highly desirable.

• Experience:
• Minimum of 5 years of experience in IT security, with at least 3 years in a security architecture role.
• Proven experience evaluating vendor security and managing third-party risks.
• Familiarity with securing cloud-based environments and SaaS platforms.

• Skills and Knowledge:
• Fluent in English
• Expertise in security architecture principles, frameworks, and best practices.
• Proficiency in risk assessment methodologies and security control implementation.
• Strong understanding of security technologies, including firewalls, SIEM, and IAM.
• Excellent interpersonal and communication skills for cross-functional collaboration.

What we offer 

• Competitive salary and comprehensive benefits package.
• Opportunities for professional growth within Nebius.
• Hybrid working arrangements.
• A dynamic and collaborative work environment that values initiative and innovation.

We’re growing and expanding our products every day. If you’re up to the challenge and are excited about AI and ML as much as we are, join us!