Requirements

Expected technologies

AWS

Azure

GCP

Python

PowerShell

Operating system

Windows

Our requirements

• Master's degree in Computer Science, Information Security, or related field;
• Minimum of 5–7 years of experience in security architecture, cybersecurity, or information security roles;
• Proven success in designing secure architectures for complex systems, with hands-on experience in third-party risk management and ISO 27001 compliance;
• In-depth knowledge of cloud security (AWS, Azure, GCP), network and application security, and modern enterprise environments;
• Experience with tools and technologies such as SIEM, EDR, IDS/IPS, SOAR, PAM, scripting (Python/PowerShell), and vulnerability management platforms;
• Strong understanding of security frameworks (ISO 27001, NIST, NIS2, GDPR);
• Excellent communication skills with the ability to translate technical risks into business impact;
• Strategic mindset with the ability to drive security innovation and enable business agility;
• Experience in the retail industry is a strong plus;
• Fluent English – must have.

Your responsibilities

• Design and implement secure-by-design architectures across network, application, data, and cloud environments in line with enterprise security policies;
• Conduct risk assessments and threat modeling for IT and business projects;
• Define, approve, and oversee security controls for new technologies;
• Lead and govern third-party risk management frameworks, including security assessments, contract reviews, and ongoing compliance audits;
• Ensure security architecture and vendors align with ISO 27001, NIS2, PCI-DSS, and other regulatory frameworks;
• Define and maintain enterprise-wide security architecture standards that support digital transformation;
• Collaborate with IT, DevOps, and business teams to embed scalable and forward-thinking security measures;
• Oversee cloud and hybrid security architectures, including AWS, Azure, and emerging technologies;
• Provide expert guidance on AI security risks, supply chain resilience, and secure system integrations;
• Act as a strategic advisor for governance, risk, and compliance, supporting audits and policy development.