Job offers

Security Architect

Gdansk

About Us

ERGO Technology & Services S.A. (ET&S S.A.) was established in January 2021 following the integration of ERGO Digital IT and Atena into one entity, leveraging the strengths and best practices of both companies.
 
ET&S S.A. belongs to the ET&SM technology holding of ERGO Group AG, supporting millions of internal and external customers with state-of-the-art IT solutions to everyday problems. We are dedicated to bring a digital innovations to every aspect of the landscape of insurance. Discover how we are implementing AI, IoT, Voice Recognition, Big Data science, advanced mobile solutions and much more to accommodate our customers’ future needs around the globe. See how you can be a part of the digital revolution and apply to join us today!

About the role

We are looking for an IT Security Architect accountable for planning, designing and communicating security architecture roadmap and strategy, ensuring that solution designs are aligned with the target architecture landscapes meeting both business and technology requirements.

You will be responsible for representing Security Architecture, designing architecture solutions, delivering assessment and advisory for global and complex security program portfolio, which includes cloud migration initiatives, and ensuring that designed solutions successfully meet the regulatory compliance of major international companies in the insurance sector.

 

How you will get the job done

  • Assume complete responsibility for translating security requirements into service portfolio that will help to establish the scope of security architecture function
  • Contribute to development and implementation of security architecture process into process portfolio ensuring effective and efficient collaboration and enforcement of security architecture principles
  • Support analysis and assessments of the current technological landscapes discovering gaps, deficiencies and recommend improvements
  • Facilitate evaluation, modification and selection of core, common and distinct security solutions with emphasis on standardization of architecture ecosystem
  • Support and/or consult implementation of security architecture, and align with architecture functions (enterprise, solution) in other domains
  • Manage stakeholder relationship working closely with business stakeholders, domain leaders, process owners and third-party suppliers
  • Challenge the status-quo, service landscapes and security solutions in order to improve the adherence with security principles as well as policies and standards

 

  • Evaluate and analyze emerging security technologies and market trends, as well as their potential impact on ET&S
  • Facilitate and actively support the transition and transformation effort for security organization as part of the Target Operating Model initiative with primary objective of building a multi-tier global security organization

Skills and experience you will need

  • Minimum 8+ years of experience in IT infrastructure and cloud environment in a global organization
  • Degree in Computer Science, Information Security, or relevant experience
  • Superior technical knowledge and understanding a business process context
  • Ability to translate business requirements into technical solutions
  • Excellent experience in security solution evaluation and recommendation
  • Strong exposure to complex project planning and delivery in the area of cloud, infrastructure and/or application security
  • Continuous improvement attitude with strong service culture and proactive mindset
  • High cultural awareness and working experience in a complex and multicultural environment
  • Security certifications
  • Knowledge of ITIL service management (certification would be an advantage)
  • Verbal and written communication and presentation skills both in Polish and English
  • Ability to communicate at all organizational levels including C-level stakeholders
  • ISO27001, CISSP, ISSAP, TOGAF and COBIT certifications desirable
  • Strong customer facing skills

Desired additional technical skills in detail

  • Threat modeling and technical risk assessment (STRIDE method or comparable standards)
  • Knowledge of security frameworks (offensive/defensive) such as MITRE ATT&CK / Cyber Kill Chain / Unified Kill Chain, SABSA, CIS, OWASP
  • Web Application Security (Java/Javascript, HTTP/2, ASP.NET, Nginx, IIS, WAF, CDNs)
  • General Cloud Security/Cloud IAM (AWS, Azure, GCP, Salesforce), Container Security, CI/CD
  • Good knowledge of authentication and authorization procedures and protocols (Oauth, OpenID Connect, SAML, WebAuthN, CTAP)
  • Enterprise access infrastructures (DMZ architectures, hybrid zone models, etc.)
  • Modern communication encryption methods and key management methods, especially in web scenarios

Interested in this position?

Apply now

Why work with us?

Let&s be fit

We realize that most of us need assistance to stay in shape and good health. That's why we provide every employee with a medical package coverage and co-finance a sports card. Additionally, we support a number of sports sections, and, you can even join our yoga team in the summer to practice yoga on the roof!

Let&s be balanced

Work-life balance is essential for us. That's why we offer our employees flexible working hours, pet-friendly offices, and if you would like to stay with your pet at home, a remote work environment. However, it won't be easy to stay at home with our in-office gaming room.

Let&s be smart

Staying up-to-date with all the new systems and technologies is not an easy task. That's why we have an extensive training and workshops offer, both in-house and with external providers. We organize hackathons and meetups, which are an excellent opportunity for our specialists to showcase their expertise. On top of that, we offer digital learning platforms, language courses, and a library.

Let&s be responsible

We love to see the difference we make together with our CSR projects. That's why we are always open to new projects, and we would love to include you in our next charity event!

Let&s be fun

At ET&S we love not only to work but also relax together. Sports events like company-wide bike race, or maybe a film marathon in our cinema room? Don't worry; we got it covered! Maybe you have a passion and would love to make an event out of it? Sure! We will help you!

Let&s be diverse

At ET&S we create a working environment free of prejudice and exclusion. Each member of our team can experience being valued, regardless of his or her gender, nationality, religious beliefs, disabilities, age, and sexual orientation or identity. Your wide range of qualifications, experiences, and ways of thinking are of great benefit to us!

Get to know us better

Check how it is working at ERGO Technology & Services

link to facebook

link to linkedin