Jobs filters
SENIOR LEAD CYBERSECURITY SYSTEMS ARCHITECT - 494116
Charlotte, NCSiemens Digital Industries Software is driving transformation to enable a digital enterprise where engineering, manufacturing and electronics design meet tomorrow. Our solutions help companies of all sizes create and leverage digital twins that provide organizations with new insights, opportunities and levels of automation to drive innovation.
We are searching for an additional person to take the role of a Senior Lead Cybersecurity Systems Architect to:
* Drives and guides the creation of a functional architecture for a complete system and of a technical realization concept over all its domain and technical aspects.
* Evaluates different concepts with respect to technological and commercial aspects.
* Specifies and integrates standard products, components and subsystems according to the required functionality of the system and coordinates their interfaces and interaction.
* Verifies and validates the concepts and specifications versus the requirements and standards.
* Provides feedback and lessons learned to the FDS Cybersecurity Engineering and FDS DevOps Organisations.
* Acts internally as an integrating and coordinating technical function.
* Draft the integration test concept (in cooperation with the FDS Systemtest).
* May take over dispositive functions or responsibility for costs, time and quality (in cooperation or as substitute for the respective positions).
In addition to that:
* Leads and facilitates a FDS virtual organisation of cybersecurity system architects, utilising their different expertise for best effectiveness and results
* Integrate security testers from FDS System Test in this virtual organisation
* Driving the cybersecurity architecture for OSES in collaboration with the CYS architects
* Deep expertise in secure SDLC practices, security tooling, and architecture governance, including threat modeling, secure design patterns, and risk-based controls.
* Full‑stack engineering background with emphasis on secure coding practices, API hardening, and secure data handling across front-end, back-end, and database layers.
* Hands-on experience with CI/CD security, including integration of SAST, SCA, DAST, secret scanning, compliance checks, and secure build pipelines.
* Proficiency in Infrastructure‑as‑Code (IaC) security, policy enforcement, and automated guardrails using tools like Terraform, OPA, and cloud‑native security services.
* Strong knowledge of compliance and security frameworks (e.g., NIST, ISO 27001, SOC 2) and deep expertise in policy-as-code for automated control validation.
* Vendor risk management and security-focused SLA negotiation, ensuring alignment with governance, data protection, and organizational security requirements.
* Executive-level communication and stakeholder alignment for conveying security posture, risk reduction strategies, and governance decisions.
* Client enablement and security onboarding programs, including training, adoption of secure development practices, and implementation of continuous improvement processes.
* BA/BS in Computer Science, Cybersecurity, Information Systems, or related technical field required or experience equal
* MS in Cybersecurity, Computer Science, Engineering, or an MBA with a security/technology emphasis or experience equal
* Additional professional development such as CISSP, CISM, CCSP, CEH, or cloud security certifications considered a strong advantage.
* 12-15+ years of experience in software engineering, security architecture, or secure systems design, delivering large‑scale distributed solutions with embedded security controls.
* 5+ years in leadership roles driving secure SDLC transformation, DevSecOps programs, product security strategy, and developer enablement.
* Proven track record implementing secure development lifecycle practices, integrating automated security testing into CI/CD, and deploying governance frameworks across enterprise environments.
* Extensive experience leading client-facing security adoption programs, training teams on secure coding, threat modeling, IaC security, and policy‑as‑code practices.
* Demonstrated ability to partner with executives, risk and compliance organizations, and engineering leadership to accelerate security maturity and secure-by-design adoption.
This position will be subject to U.S. export control requirements under the International Traffic in Arms Regulations (ITAR) and/or Export Administration Regulations (EAR). Employment is contingent on either verifying the U.S. Person status or obtaining any necessary export license.
Why us?
Working at Siemens Software means flexibility - Choosing between working at home and the office at other times is the norm here. We offer great benefits and rewards, as you'd expect from a world leader in industrial software.
A collection of over 377,000 minds building the future one day at a time in over 200 countries. We're dedicated to equality, and we welcome applications that reflect the diversity of the communities we work in. All employment decisions at Siemens are based on qualifications, merit, and business need. Bring your curiosity and creativity and help us shape tomorrow!
Siemens Software. Transform the Everyday with Us
#LI-PLM
#LI-HYBRID
#SWSaaS
* Drives and guides the creation of a functional architecture for a complete system and of a technical realization concept over all its domain and technical aspects.
* Evaluates different concepts with respect to technological and commercial aspects.
* Specifies and integrates standard products, components and subsystems according to the required functionality of the system and coordinates their interfaces and interaction.
* Verifies and validates the concepts and specifications versus the requirements and standards.
* Provides feedback and lessons learned to the FDS Cybersecurity Engineering and FDS DevOps Organisations.
* Acts internally as an integrating and coordinating technical function.
* Draft the integration test concept (in cooperation with the FDS Systemtest).
* May take over dispositive functions or responsibility for costs, time and quality (in cooperation or as substitute for the respective positions).
In addition to that:
* Leads and facilitates a FDS virtual organisation of cybersecurity system architects, utilising their different expertise for best effectiveness and results
* Integrate security testers from FDS System Test in this virtual organisation
* Driving the cybersecurity architecture for OSES in collaboration with the CYS architects
* Deep expertise in secure SDLC practices, security tooling, and architecture governance, including threat modeling, secure design patterns, and risk-based controls.
* Full‑stack engineering background with emphasis on secure coding practices, API hardening, and secure data handling across front-end, back-end, and database layers.
* Hands-on experience with CI/CD security, including integration of SAST, SCA, DAST, secret scanning, compliance checks, and secure build pipelines.
* Proficiency in Infrastructure‑as‑Code (IaC) security, policy enforcement, and automated guardrails using tools like Terraform, OPA, and cloud‑native security services.
* Strong knowledge of compliance and security frameworks (e.g., NIST, ISO 27001, SOC 2) and deep expertise in policy-as-code for automated control validation.
* Vendor risk management and security-focused SLA negotiation, ensuring alignment with governance, data protection, and organizational security requirements.
* Executive-level communication and stakeholder alignment for conveying security posture, risk reduction strategies, and governance decisions.
* Client enablement and security onboarding programs, including training, adoption of secure development practices, and implementation of continuous improvement processes.
* BA/BS in Computer Science, Cybersecurity, Information Systems, or related technical field required or experience equal
* MS in Cybersecurity, Computer Science, Engineering, or an MBA with a security/technology emphasis or experience equal
* Additional professional development such as CISSP, CISM, CCSP, CEH, or cloud security certifications considered a strong advantage.
* 12-15+ years of experience in software engineering, security architecture, or secure systems design, delivering large‑scale distributed solutions with embedded security controls.
* 5+ years in leadership roles driving secure SDLC transformation, DevSecOps programs, product security strategy, and developer enablement.
* Proven track record implementing secure development lifecycle practices, integrating automated security testing into CI/CD, and deploying governance frameworks across enterprise environments.
* Extensive experience leading client-facing security adoption programs, training teams on secure coding, threat modeling, IaC security, and policy‑as‑code practices.
* Demonstrated ability to partner with executives, risk and compliance organizations, and engineering leadership to accelerate security maturity and secure-by-design adoption.
This position will be subject to U.S. export control requirements under the International Traffic in Arms Regulations (ITAR) and/or Export Administration Regulations (EAR). Employment is contingent on either verifying the U.S. Person status or obtaining any necessary export license.
Why us?
Working at Siemens Software means flexibility - Choosing between working at home and the office at other times is the norm here. We offer great benefits and rewards, as you'd expect from a world leader in industrial software.
A collection of over 377,000 minds building the future one day at a time in over 200 countries. We're dedicated to equality, and we welcome applications that reflect the diversity of the communities we work in. All employment decisions at Siemens are based on qualifications, merit, and business need. Bring your curiosity and creativity and help us shape tomorrow!
Siemens Software. Transform the Everyday with Us
#LI-PLM
#LI-HYBRID
#SWSaaS