Cyber Security Architect

Description

Summary: Sulzer is seeking a visionary Cyber Security Architect to shape secure digital ecosystems across cloud, applications, IT, and OT environments at a global scale. Highlights: 1. Influence security foundations of innovative projects across global environments 2. Strengthen global resilience, innovation, and business outcomes 3. Design, implement, and maintain global security architecture Sulzer is a leading engineering company with a proud heritage of innovation. Join our global team to grow your expertise and develop innovative solutions that enable a prosperous and more sustainable society. **About the role** ================== Are you a visionary in cyber security architecture who enjoys shaping secure digital ecosystems at a global scale? Join our global IT Security Team (CISO Office) as a **Cyber Security Architect** and work at the heart of Sulzer’s transformation. In this highly visible role, you’ll influence the security foundations of innovative projects across cloud, applications, IT, and OT environments. If you seek a place where your expertise directly strengthens global resilience, innovation, and business outcomes , this is your opportunity. **Key Responsibilities** * Design, implement, and maintain Sulzer’s global security architecture, ensuring alignment with NIST CSF 2\.0, IEC 62443, NIS2, ISO 27001, and Sulzer’s Cybersecurity Core framework. * Develop and maintain enterprise security architecture principles, standards, blueprints, and reference models across IT, cloud, application, data, API/integration, and OT environments. * Review, challenge, and approve technical architectures for new solutions , integrations, cloud and SaaS services, APIs, OT systems, and business applications to ensure secure ‑ by ‑ design implementations. * Support digitalization and IT/OT transformation programs by providing secure design guidance, architectural direction, and integration of secure engineering practices throughout the entire lifecycle * Perform threat modelling and architectural risk assessments, identifying and mitigating risks early in product, solution, and technology design. * Lead architecture gap assessments and develop roadmap initiatives to improve Sulzer’s cybersecurity maturity, resilience, and strategic alignment. * Define, operate , and optimize the security tooling architecture, including EASM, BAS, Bug Bounty / Vulnerability Disclosure, red teaming support, validation platforms, and overall tool ‑ stack efficiency, configuration, and gap remediation. * Provide architectural evidence and technical support during internal and external audits, customer assessments, regulatory reviews, and compliance initiatives. * Review and challenge third ‑ party and supplier architectures, including data flows, API integrations, hosting models, cloud configurations, and OT vendor system designs. * Ensure architectural alignment across IT and OT environments, supporting secure convergence while respecting industrial safety, operational continuity, and regulatory requirements. * Drive strategic architectural evolution, including analysis of emerging threats, future ‑ state planning, and evaluation of new technologies (AI, API security, cloud ‑ native, edge, OT modernization, connectivity platforms * Collaborate closely with engineering, development, cloud, infrastructure, and operations teams, ensuring secure engineering practices are consistently applied and architectural decisions are correctly implemented. * Support GRC and investigative activities by providing architectural analysis, assisting with technical reviews of client ‑ reported incidents, and ensuring risks are documented, mitigated, or blocked according to governance requirements. * Educate internal teams and stakeholders on security architecture principles, decisions, and patterns, improving organizational awareness and adoption of secure ‑ by ‑ design practices **Requirements:** * 5–8 years of professional experience in security architecture or related areas. * Bachelor’s degree in Computer Science, Engineering, or similar; preferred certifications include CISSP, EC‑Council, SABSA, TOGAF. * Strong knowledge of security frameworks: NIST CSF 2\.0, NIST 800\-53/800\-171, ISO 27001, IEC 62443, NIS2, Cyber Resilience Act. * Technical expertise in Azure cloud, on‑prem infrastructure, networks, IAM, OT/ICS/IoT, threat modeling, secure API/application design, DevSecOps, OWASP, and modern attack/defense patterns. * Excellent communication, analytical skills, and ability to present complex topics to both technical and non‑technical audiences. * Proven ability to analyze complex architectures, detect weaknesses, propose secure alternatives, and guide teams toward secure design decisions. **What we offer you** ===================== * A permanent contract. * A competitive salary as well as participation in the variable remuneration system based on personal and financial objectives. * Restaurant tickets * Be part of an experienced, international team. * A good vibe working environment. * Enjoy great office facilities and a perfect location in Madrid Nuevos Ministerios, making your work experience both comfortable and convenient. * Other fringe benefits No visa or work permit support can be provided for this role. Sulzer is an equal opportunity employer. We believe in the strength of a diverse workforce and are committed to offering an inclusive work environment. We are proud to be recognized as a Top Employer 2026 in Brazil, Canada, China, Finland, Germany, Ireland, Mexico, Switzerland, South Africa, the UK and the USA.