Information Security Architect

Summary

Join Mercedes-Benz.io as an Information Security Architect and contribute to building secure digital products. Work closely with development teams to integrate security into product design, develop threat models, and implement countermeasures. Support cloud implementations and provide security consultations. Define security controls adhering to Mercedes-Benz Group AG policies. Support information classification, risk analysis, and service continuity management. This full-time, permanent position offers a chance to drive and develop the Information Security Management System. The role involves acting as an Information Security evangelist and ensuring compliance with regulations while maintaining an agile work environment.

Requirements

• Fluent English
• Degree in computer science or comparable education with a focus on Information Security
• Min 3 years+ of hands-on experience in Information Security for software projects and IT architectures
• Expert knowledge and experience in one or more of the following areas: secure software development, application and mobile security, system design and design, threat modeling, risk management
• Knowledge and experience in technical and organisational areas of Information Security
• Drive to provide industry´s best practices and stay up-to-date about common threats and vulnerabilities
• Ability to discuss and evaluate technical concepts with senior experts

Responsibilities

• Act as evangelist on Information Security and make sure our ambitions to build the automotive industry’s most amazing E-Commerce products become true
• Work closely with our development teams to consider Information Security aspects in the design of our products & services
• Develop threat models, implement technical countermeasures, and other measures which ensure systems fail securely, provide defense in depth, and exercise the concept of least privilege access
• Support cloud implementations and internet facing projects by providing Security consultations and architecture reviews
• Define Security controls (i.e. technical security measures) that must adhere to specific requirements of associated policies from Mercedes-Benz Group AG
• Support information classification processes, risk analysis and service continuity management
• Ensure that product implementations are aligned with Information Security measures by actively coaching

Preferred Qualifications

• A broad understanding of our web and mobile technologies (see our Tech Stack )
• A general understanding of enterprise context and how to build digital products
• Experience with AWS, SAP, AEM and/or other CMS
• One of the following certificates: CC, AWS Cloud Practitioner, CISSP, CSSLP, CCSP, TPSSE/TISP

Benefits

• Health insurance for you and your family
• Life insurance
• Proactive self-development in international Trainings and Conferences
• Language Training courses
• Wellbeing actions (massages, nutrition sessions, happy hour and more)
• Brand Connection Perks