Product Software Security Architecture (m/f/d)
Responsibilities
- Translate cyber security requirements for software applications and embedded software systems into actionable, architectural, product-level security requirements
- Define and maintain secure design patterns, guidelines and reference architectures that can be used across products and solutions
- Evaluate and propose technical options for implementation of secure authentication & authorization, identity management, secure communication, key and secret management, secure Software updates as well as data integrity and confidentiality
- Define and maintain architecture principles aligned with industry’s best practices (e. g. CRA essential product requirements, IEC 62443, BSI) for secure product software
- Develop security architecture, run security architecture reviews and risk assessments and support security testing (e.g. Pentests)
- Drive and monitor progress on continuous security improvements and assess the tradeoffs of different technological alternatives
- Project-related coordination as part of the secure development process and in accordance with defined processes
Profile
- IEC 62443 (z. B. IEC 62443-3-3 /4-2 und IEC 62443-4-1)
- Secure Software Development Lifecycle (SSDLC) und Secure Product Development Frameworks (SPDF)
- The product software is local and not cloud based
- Secure coding & secure design principles, cryptography (PKI, certificates, key management), Linux- and Windows-based systems security, network security for industrial protocols (e. g. OPC UA, Modbus, TCP, Profinet) and OWASP guidelines
- API Security and data protectionAutomation (e.g. PLC, Tia Portal) Scada/OT systeme or laboratory equipment
- Threat modeling methodologies (e.g. STRIDE, DREAD, PASTA, Linddun) (optional)
Benefits
- Possibility of extending the project
About Hays
IT is and always has been our core business that laid the foundation for Hays' success. We are the biggest privately owned IT recruitment agency in Germany and offer the best jobs for every career level – whether you are interested in vacancies in agile SMEs or international DAX groups. Hays masters the entire IT job spectrum, from support to software architecture or digitalisation – thanks to our broad portfolio, we have something for everyone. In the last decades, we were able to support numerous IT experts with choosing the right path for a successful career, positioning ourselves as their lifelong partner. Our highly specialised consultants can cater to your every wish and expectation and will prepare you for interviews and contract negotiations. Give it a try and learn what the market has to offer – our services are free of charge, non-binding and discreet! We look forward to hearing from you.
Staffing process for freelance specialists
- Analysis of qualifications
- Telephone or personal interview
- Contact with customers
- Contract with Hays
- 1
- 2
- 3
- 4
1. Analysis of qualifications
We carry out a detailed analysis of your technical qualifications on the basis of your CV, your application documents and your profile.
Contact at Hays
© Copyright Hays plc, . Le mot HAYS, les symboles H, les slogans «Hays Working for your tomorrow» et «Powering the world of work» ainsi que les logos et illustrations associés sont des marques déposées de Hays PLC. Les symboles H sont des créations originales protégées dans de nombreux pays. Tous droits réservés.