Cyber Security Architect

Your role and your team:

You would be one of the early joiners in the growing Cyber Security function at Lilium. You will have the opportunity to shape the Cyber Security Architecture and Governance landscape for both IT and OT sides of our business.

You will be a part of the Cyber Security team and report directly to the Head of Cyber Security.

Your Day to Day:

• Review security architecture, identify design gaps, and recommend security requirements to internal and external teams
• Design and evaluate secured cloud architectures and interfaces between internal and external environments, particularly hybrid cloud environments (IaaS, SaaS, etc.)
• Being the subject matter expert on topics related to cyber security for both IT and OT environments
• Understanding and working knowledge of DLP and Information Protection technologies
• Working independently to take up tasks and leading projects that would improve the overall cyber security maturity of the organization
• Validating security configurations of and access to security infrastructure technology, including firewalls and anti-malware/endpoint protection systems
• Security assessments of current and prospective vendors and partners, especially those with which we share intellectual property (IP), as well as regulated or other protected data, e.g. software as a service (SaaS) providers, cloud hosting providers, manufacturers, suppliers, etc.
• Initiate and build an overall asset protection program including Zero Trust design principles
• Support in creating a well-defined cyber security strategy and roadmap
• Participate in internal and external working groups representing cyber security

Your Profile:

• Strong working knowledge of security infrastructure — e.g., firewalls, intrusion prevention systems (IPSs), web application firewalls (WAFs), endpoint protection, CASB and DLP
• Experience and a strong working knowledge of the methodologies to conduct threat-modelling exercises for applications and services
• Experience designing the deployment of applications and infrastructure into public cloud services, e.g. MS Azure and Amazon Web Services (AWS)
• Experience with security-related regulatory requirements, such as NIST, PCI, CSA, SOX and ISO 27001.
• Work experience in an international environment 5+ years
• Strong communication and interpersonal skills
• Fluent English language skills (written and spoken) and German would be good to have
• Proactive and solution oriented independent working approach

#LI-AC1