STS Architect - C

About Proximus NXT

Proximus NXT Luxembourg supports all organizations in their digital transformation, by providing holistic ICT & Telecommunication solutions, as well as tailored managed services. With our partners and customers, we co-create opportunities and enable growth in a secure and sustainable manner. As a result of our unique expertise in next-gen IT services, mobile and advanced connectivity, we help our customers achieve their ambitions and realize their vision.

Together with them and our partners we implement sovereign and trusted solutions that make people work smarter.– www.proximusnxt.lu

Your mission :

Context

European Commission DIGIT is the internal IT hosting services provider for the EC and other European Institutions. The role is part of a large team of architects; this team designs services that are consumed by applications in various domains. We are seeking a skilled Architect to lead the design and implementation of PrivX, CAMS, and related Privileged Access Management (PAM) solutions. The ideal candidate will have a strong background in cybersecurity, cloud environments, and PAM technologies.

Overall Job Description:

The Security and Compliance Architect holds a critical position, ensuring that our corporate information systems not only comply with but also excel beyond the standards such as CMMI and ISO.

This role demands a sophisticated blend of compliance oversight coupled with a robust technical skill set in planning, prototyping, engineering, implementing, operating, and monitoring complex information systems.

The architect will ensure systems' security, enhance operational efficiency, and guarantee adherence to necessary regulatory compliance standards, with a particular emphasis on cloud solutions.

Activities (Proactive and Reactive):

• Good knowledge of compliance standards: spearhead compliance projects to certify that all corporate information systems meet or exceed these benchmarks.
• Expert system architecture and engineering: perform detailed hands-on work related to designing, prototyping, and engineering of cybersecurity solutions, extending to configuring and operating cloud Security. Evaluate and enhance existing systems for better efficiency and compliance, and design new cybersecurity architectures to fulfil evolving requirements. Develop and maintain the architecture for PAM, CAMS, and SAM solutions, ensuring scalability, security, and efficiency.
• Operational excellence and security management: oversee the daily operations of cybersecurity systems (e.g. Vulnerability Scanners), prioritizing stability, performance, and security. Implement continuous monitoring strategies to detect and actively remediate vulnerabilities to meet SLA requirements, including cloud security capabilities to safeguard information integrity and reliability. Lead the deployment and integration of PrivX and CAMS within hybrid and multi-cloud environments.
• Strategic stakeholder engagement: collaborate with internal stakeholders, including Service squads, operational leaders in various CoEs, and senior management, to ensure that cybersecurity practices are seamlessly integrated with organizational strategic goals and compliance demands.
• Audit, reporting, and progressive improvement: conduct comprehensive audits of information systems to assess compliance with required standards and identify improvement opportunities. Generate detailed reports on audit outcomes, system performance, and compliance status. Lead efforts to mitigate gaps and enhance system capabilities, with an emphasis on continuous improvement.
• Knowledge sharing and mentorship: Offer expert advice and training to team members and stakeholders on compliance standards, best practices in system security, and technical procedures, including those related to cloud security solutions. Ensure all team members possess the necessary knowledge and skills to support compliance and security efforts effectively.

Your profile :

Professional Skills:

• Five or more years of experience in multiple IT areas and At least three years working in medium- to large-scale IT environments as a security architect or other security design functions.
• PAM, SAM and CAMS (Privx, Luna,Ciphertrust,Hashicorp Vault…)
• Advanced Cybersecurity knowledge and experience is required.
• Exposure and knowledge to industry standards (e.g. CMMI, ISO 9001) is an important asset.
• Cloud- certification or proven expertise in AWS security solutions are a plus.
• University degree in Information Technology, Computer Science, Cybersecurity, or related field. In lieu of a degree, equivalent years of experience in information technology, system architecture, and/or cybersecurity will be considered.
• Advanced Cybersecurity Certification (e.g. CISSP, CISM, or equivalent) is a differentiator.
• Very good understanding of network security concepts
• Excellent understanding of authentication and authorisation mechanisms and protocols
• Cryptography and latest cryptographic standards, including PKI
• Working knowledge of the OWASP Top 10
• Full-stack knowledge of IT infrastructure:
  • Applications
  • Databases
  • Operating systems — Windows, Unix, and Linux
  • IP networks — WAN and LAN
  • Knowledge of DevSecOps
  • Knowledge of API Architectures

Soft skills:

• Ability to work and communicate in a multi-cultural environment.
• Service-oriented mindset.
• Ability to communicate in writing and verbally in a clear and concise manner.
• Initiative, accuracy, and attention to detail
• Fluency in English (written and spoken) is essential. Any other European language is a plus.

Other requirements:

• EU citizenship

Our offer :

A professional and stimulating work environment in the IT & telecom sector. Multiple career opportunities within the Proximus Group at national and international level, cutting-edge training in new technologies, a wealth of recognized expertise. We also offer an attractive salary package and many other benefits.

Our company is an equal opportunity employer, valuing diversity in all its forms. We firmly believe that each individual brings a unique richness to our teams, and we are committed to creating an inclusive environment where every voice counts.

If at the end of the process your application is successful, you will be asked to provide an extract from your criminal record. Your personal information will be handled in compliance with applicable data protection laws.