Security Architect for Mercedes-Benz Software Factory (all genders) – Berlin

at  MBition GmbH

Your Mission
As a Security Architect in the System Architects Team in the Software Factory, you will take on security topics and drive them across the clusters and teams. You will drive decision making for security topics and help the teams with a hands-on approach, by applying security best practices and testing the teams’ implementations.

Responsibilities

• Implement standards and best practices: Define and implement cloud security(specifically in AWS) procedures by aligning with benchmarks like NIST, ISO 27000-series or CSA. Implemet the procedures using e.g. Cloud Control Matrix.
• Proactive threat management: Monitor emerging cloud threats, evaluate their impact, and devise relevant security measures, ensuring an adaptive security posture.
• System integrity and access management: Conduct regular system assessments, ensure role-based access control of least access principle, and oversee system upgrade timelines.
• Incident and resilience management: Formulate disaster recovery strategies, lead security breach simulations, and provide a swift response to security incidents with thorough post-analysis.
• Organizational security culture: Champion a culture of security awareness and continuous training to maintain high compliance levels.
• Vendor and third-party coordination: Collaborate with IT staff and external vendors to ensure seamless integration of security solutions and address vulnerabilities effectively.
• Annual compliance oversight: Lead an annual security audit, ensuring consistency with LoyaltyCo’s data processing agreements.

Your Profile

Experience:

• Hands-on with security tools like: Burp Suite, Nessus, Wireshark, Snort. Nmap.
• Programming experience in at least one of these programming languages: Python, C, C++, Golang, Kotlin, Rust.
• Cloud expertise: Profound knowledge of popular cloud providers and orchestration tools (e.g., AWS, Azure, GCP, Kubernetes, Docker, Gitlab, ELK) combined with a comprehensive understanding of cloud infrastructure—compute, network, storage, and the cloud control plane.
• Security architectural expertise: Experience with designing and implementing “Secure by Design” solutions for cloud-native and distributed computing. This includes performing Threat Modelling and conveying security architectural requirements to software and product teams.
• Risk management and mitigation: Proven experience in identifying and addressing risks in public and hybrid cloud environments, complemented by extensive background in information security and IT risk management focusing on security, performance, and reliability.
• Authentication and identity: Skilled in implementing multi-factor authentication, single sign-on, identity management, and understanding security protocols, cryptography, authentication, and authorization.
• Communication and collaboration: Excellent written and verbal skills, coupled with the ability to interact with diverse personnel to advocate and implement security measures. Business acumen and a commercial perspective are also key.
• Design expertise: Vast experience in security design review, recommendations, and user-centric design approaches, with a specific preference for knowledge in ForgeRock or equivalent at a significant scale.
• Certifications and qualifications: Hold relevant cloud and industry certifications, including but not limited to CCSP, CISSP, TOGAF, SABSA, AWS Certified Security Speciality.
• Industry standards: Conversant with ISO 27002:2005/2013 information security standard and other renowned industry standards, reflecting a commitment to best practices and continuous learning.

Personal skills

• Fluent English, German is a plus.
• Solution-oriented, analytical and structured approach.
• Excellent communication skills, time management, prioritisation and ability to present complex topics.
• Collaboration skills. Team player, focused on team goals, and sharing best practice.
• Self-reliant and self-motivated; ability to work independently and in teams.
• Proactive and takes ownership of role and responsibilities.
• Able to embrace change and quick understanding of complex systems.
• Excellent organizational, time management, prioritization and multi-tasking skills.
• The ideal candidate will be an ambitious, driven, and collaborative individual who thrives in a fast-paced environment and will push us to do even greater things together.

Education

• Degree in Computer Science, Information Technology, Communication Technology or similar qualifications

Why us?

• A chance to work on a new generation of Infotainment Systems, which will power millions of cars
• An international, interdisciplinary innovation lab, which is part of the Mercedes Benz AG
• Agile working methods and open feedback culture
• A brand new modern and fully accessible office facing the Spree
• Flexible working hours
• Transportation and health benefits, discounts on cars

Interested?

We look forward to receiving your complete application, including CV (in English) and relevant references with the following information:

• Job title and reference number
• Salary expectations
• Earliest start date

You don’t bring everything with you? Don’t worry, MBition is proud of our diverse workforce and passionate about having MBitioneers from all backgrounds and perspectives. MBition is and always will be an equal opportunity employer. We are looking for employees who convince us above all with their personality and passionately motivated to join the team!
You are welcome to contact our representative for severely disabled employees, Anna Schade (anna.schade@mercedes-benz.com), who will support you in the further application process.
This role offers the potential for growth and leadership for the right candidate, as it has the potential to be a Lead position. If you have a passion for driving software projects to successful completion and want to join a dynamic, fast-paced environment, we want to hear from you! Please apply with your CV and cover letter

• Implement standards and best practices: Define and implement cloud security(specifically in AWS) procedures by aligning with benchmarks like NIST, ISO 27000-series or CSA. Implemet the procedures using e.g. Cloud Control Matrix.
• Proactive threat management: Monitor emerging cloud threats, evaluate their impact, and devise relevant security measures, ensuring an adaptive security posture.
• System integrity and access management: Conduct regular system assessments, ensure role-based access control of least access principle, and oversee system upgrade timelines.
• Incident and resilience management: Formulate disaster recovery strategies, lead security breach simulations, and provide a swift response to security incidents with thorough post-analysis.
• Organizational security culture: Champion a culture of security awareness and continuous training to maintain high compliance levels.
• Vendor and third-party coordination: Collaborate with IT staff and external vendors to ensure seamless integration of security solutions and address vulnerabilities effectively.
• Annual compliance oversight: Lead an annual security audit, ensuring consistency with LoyaltyCo’s data processing agreements