Architect - Cyber Security IT/OT
Siemens
Job Description
Job ID
Company
Organization
Job Family
Experience Level
Full Time / Part Time
Contract Type
Job Title
Architect - Cyber Security IT/OT
Is the position full or part time?
Full-time
Experience Level
Experienced Professional
Demand Type
Professional (SE headcount White Collar)
External Job Description
A Snapshot of Your Day
As part of our cybersecurity team, you will play a key role in securing our digital landscape. You will drive security innovation, assess and enhance application security, and collaborate with experts across infrastructure, operations, and governance. Your expertise will help shape security strategies, ensuring our solutions remain resilient against emerging threats.
We offer a flexible and dynamic environment where you can grow beyond your comfort zone—personally and professionally. If you're ready to make a real impact in healthcare security, we want to hear from you
How You’ll Make an Impact
- Lead Product Security Initiatives: Act as the cybersecurity champion across the entire Secure Development Lifecycle (SDLC), ensuring that security is integrated from concept to deployment.
- Define Secure Architecture Design and Development Principles: Develop and enforce secure coding guidelines, architectural best practices, and secure design patterns to protect products from emerging threats.
- Collaborate with Development Teams: Work closely with software engineers and product architects to implement security measures within code, software design, and infrastructure.
- Perform Risk, Vulnerability Assessments & Code Reviews: Conduct regular code analysis, vulnerability assessments, and penetration testing to identify and mitigate security risks.
- Implement Advanced Security Testing: Support security testing efforts by verifying requirements and conducting penetration tests, ensuring that implemented security controls are effective.
- Act as a Security Advisor: Consult with internal teams on security best practices, including secure integration of third-party components, and ensure compliance with industry standards.
- Plan for incidence response: Developing and implementing incident response plans for OT environments, including procedures for detecting, responding to, and recovering from security incidents.
- Drive Continuous Improvement: Stay ahead of the latest cybersecurity trends and threats, constantly refining security practices, and driving DevSecOps principles across the organization.
- Act as Subject Matter Expert, serve as a consultant and advisor for cybersecurity topics within AI development teams. Provide guidance, coaching and expertise to execute SDL practices such as threat modeling, secure design practices, secure coding and implementation, and security testing.
- Be a trainer for cybersecurity awareness: Provide training and guidance to team members on best practices and creating awareness regarding latest trends.
- Collaborate across multiple teams across geographies to ensure a unified approach to cybersecurity.
Required Skills & Experience:
- Bachelor’s or Master’s degree in Computer Science, Electrical Engineering, Cybersecurity, or related field.
- 10-15 years of hands-on experience working with IEC 62443 in a product or embedded systems environment.
- Proven expertise in embedded systems, firmware, and real-time operating systems (RTOS).
- Strong knowledge of secure software development practices, encryption techniques, and vulnerability management.
- Familiarity with tools such as static/dynamic code analysis, fuzzing, and penetration testing on embedded platforms.
- Knowledge on PCS 7 & TIA Portal is an advantage
- Excellent written and verbal communication skills; ability to influence and educate cross-functional teams on security practices
Nice-to-Have Skills:
- Cloud Security Experience: Familiarity with cloud platforms, such as Azure, and securing cloud-based applications.
- Experience with threat modeling frameworks such as STRIDE or MITRE ATT&CK for ICS.
- DevSecOps Knowledge: Experience implementing DevSecOps practices, embedding security throughout CI/CD pipelines.
- Linux & Container Security: Understanding of securing Linux systems and containerized environments (Docker, Kubernetes).
- Strong communication skills, with the ability to convey technical concepts to non-technical stakeholders
About the Team
Become a part of our mission for sustainability: clean energy for generations to come.
We are a global team of diverse colleagues who share a passion for renewable energy and have a culture of trust and empowerment to make our own ideas a reality.
We focus on personal and professional development to grow internally within our organization.
Who is Siemens Energy?
At Siemens Energy, we are more than just an energy technology company. We meet the growing energy demand across 90+ countries while ensuring our climate is protected. With more than 96,000 dedicated employees, we not only generate electricity for over 16% of the global community, but we’re also using our technology to help protect people and the environment.
Our global team is committed to making sustainable, reliable, and affordable energy a reality by pushing the boundaries of what is possible. We uphold a 150-year legacy of innovation that encourages our search for people who will support our focus on decarbonization, new technologies, and energy transformation