Senior Cyber Security Architect (ISO27001 / NIS2 / BSI IT-Grundschutz) – €115k – Stuttgart / Munich – Hybrid

Senior Cyber Security Architect (ISO27001 / NIS2 / BSI IT-Grundschutz) – €115k – Stuttgart / Munich – Hybrid
Location: Stuttgart (2 positions) | Munich (1 position), Germany
Salary: Up to €115,000 gross per year
Start Date: 2 March 2026
Contract Duration: Until 1 March 2028 (24 months)
Working Hours: 40 hours per week
Work Model: Hybrid – up to 3 days remote per week
Overview

We are currently recruiting experienced Cyber Security Architects / Security Specialists (m/f/d) to support a large-scale secure product architecture and cybersecurity compliance programme in Germany.
This position is suited to senior cybersecurity professionals with strong expertise in security architecture, risk analysis, ISO27001 information security management, NIS-2 compliance, and BSI IT-Grundschutz frameworks.
You will play a key role in designing and validating secure system and product architectures, ensuring compliance with European cybersecurity regulations and certification standards.
Locations Two positions available in Stuttgart (Ref: 12974 and 12975)
One position available in Munich (Ref: 12976)

Key Responsibilities As a Security Architect / Cyber Security Specialist, your responsibilities will include:

• Designing and evaluating secure architectures and security concepts for enterprise products
• Defining and validating security measures required to achieve product security objectives
• Conducting cybersecurity risk assessments and deriving security requirements
• Performing threat analysis and vulnerability assessments across product environments
• Implementing security measures at the architectural and conceptual level
• Supporting development teams by enabling them to implement secure development practices
• Ensuring compliance with information security standards including ISO27001 and NIS-2
• Supporting product approval and security certification processes
• Working within established security frameworks such as Common Criteria and BSI IT-Grundschutz

Required Skills and Experience
We are looking for experienced cybersecurity professionals with strong expertise in enterprise security architecture and regulatory compliance.

Essential Requirements

• Proven experience in Cyber Security or IT Security
• Experience working with BSI IT-Grundschutz
• Strong understanding of ISO27001 information security frameworks
• Knowledge of NIS-2 Directive and European cybersecurity regulations

Experience with relevant EU security regulations including:

• Data Act
• Cyber Resilience Act
• Radio Equipment Directive

Additional experience required:

• Risk assessments and threat modelling
• Vulnerability analysis and security requirements engineering
• Working with structured security frameworks such as Common Criteria
• Supporting security approval, validation, and certification processes

Language Requirements German – Negotiation level (required)
English – Basic working proficiency