Transversal Security Services Architect

Company Description

Sopra Steria offers tailored, end-to-end corporate technology and software solutions to help clients make bold choices and deliver results. Successfully so! With more than
56.000 colleagues in 30 countries, we rank as Europe’s leading digital solutions provider. Some of the most successful companies in Europe rely on our technology due to our commitment to innovation, collaboration, and value in business development.

The world is how we shape it. Let’s shape it together.

Job Description

The Security and Compliance Architect holds a critical position, ensuring that our corporate information systems not only comply with but also excel beyond the standards such as CMMI and ISO.

This role demands a sophisticated blend of compliance oversight coupled with a robust technical skill set in planning, prototyping, engineering, implementing, operating, and monitoring complex information systems.

The architect will ensure systems' security, enhance operational efficiency, and guarantee adherence to necessary regulatory compliance standards, with a particular emphasis on cloud solutions.

Activities (Proactive and Reactive):

· Good knowledge of compliance standards: spearhead compliance projects to certify that all corporate information systems meet or exceed these benchmarks.

· Expert system architecture and engineering: perform detailed hands-on work related to designing, prototyping, and engineering of cybersecurity solutions, extending to configuring and operating cloud Security. Evaluate and enhance existing systems for better efficiency and compliance, and design new cybersecurity architectures to fulfil evolving requirements. Develop and maintain the architecture for PAM, CAMS, and SAM solutions, ensuring scalability, security, and efficiency.

· Operational excellence and security management: oversee the daily operations of cybersecurity systems (e.g. Vulnerability Scanners), prioritizing stability, performance, and security. Implement continuous monitoring strategies to detect and actively remediate vulnerabilities to meet SLA requirements, including cloud security capabilities to safeguard information integrity and reliability. Lead the deployment and integration of PrivX and CAMS within hybrid and multi-cloud environments.

· Strategic stakeholder engagement: collaborate with internal stakeholders, including Service squads, operational leaders in various CoEs, and senior management, to ensure that cybersecurity practices are seamlessly integrated with organizational strategic goals and compliance demands.

· Audit, reporting, and progressive improvement: conduct comprehensive audits of information systems to assess compliance with required standards and identify improvement opportunities. Generate detailed reports on audit outcomes, system performance, and

compliance status. Lead efforts to mitigate gaps and enhance system capabilities, with an emphasis on continuous improvement.

· Knowledge sharing and mentorship: Offer expert advice and training to team members and stakeholders on compliance standards, best practices in system security, and technical procedures, including those related to cloud security solutions. Ensure all team members possess the necessary knowledge and skills to support compliance and security efforts effectively.

Qualifications

We’re seeking passionate colleagues who are eager to push the boundaries in digital transformation and technology consulting. At Sopra Steria, you’ll have the opportunity to grow your skills in a constructive, collaborative team environment, working on impactful projects that drive change for our clients. If you thrive on challenge and meet (most of) the qualifications below, we look forward to your application!

• Type of employment: Onsite
• Location: Leudelange, Luxembourg
• Contract hours: 40 hours
• Contract type: Permanent / Freelance
• Languages: English required 
• EU citizenship

You have knowledge and experience of the following:

· Five or more years of experience in multiple IT areas and At least three years working in medium- to large-scale IT environments as a security architect or other security design functions.

· PAM, SAM and CAMS (Privx, Luna,Ciphertrust,Hashicorp Vault…)

· Advanced Cybersecurity knowledge and experience is required.

· Exposure and knowledge to industry standards (e.g. CMMI, ISO 9001) is an important asset.

· Cloud- certification or proven expertise in AWS security solutions are a plus.

· University degree in Information Technology, Computer Science, Cybersecurity, or related field. In lieu of a degree, equivalent years of experience in information technology, system architecture, and/or cybersecurity will be considered.

· Advanced Cybersecurity Certification (e.g. CISSP, CISM, or equivalent) is a differentiator.

· Very good understanding of network security concepts

· Excellent understanding of authentication and authorisation mechanisms and protocols

· Cryptography and latest cryptographic standards, including PKI

· Working knowledge of the OWASP Top 10

Additional Information

You’ll become a part of a major Tech player in Europe recognised for its consulting, digital services, and software development.

Our employees are known for making bold choices and delivering results. Work among high-level professionals at the forefront of corporate software solutions and innovation at Europe’s Leading Digital Service Provider.

We offer a generous employee benefits package that includes:

• Access to our Sopra Steria training and personal development academy
• A company car lease or mobility budget
• A company laptop and new iPhone
• Private health insurance coverage
• Meal vouchers
• Social security and pension plan
• A competitive salary
• 26 holiday days

Sopra Steria is implementing the tools of the future today at the world’s largest businesses across industry and financial services. By being bold together, our professionals are changing how business is done.

______

Sopra Steria is an equal opportunity employer. All qualified applicants will be considered for employment without regard to age, ancestry, nationality, color, family or medical leave, gender identity or expression, genetic information, immigration status, marital status, medical condition, national origin, physical or mental disability, political affiliation, protected veteran or military status, race, ethnicity, religion, gender (including pregnancy), sexual orientation or any other characteristic protected by applicable local laws, regulations and ordinances. We foster a work environment that is inclusive and respectful of all differences.