Senior Security Engineer (Software Engineering)

Job Description Job Description Description: Ready to Drive the Future? As part of the global Bertrandt Group, our team of innovators tackles cutting-edge projects across ADAS, Autonomous Driving, Electric Mobility, and Manufacturing Support, transforming complex issues into sustainable, connected solutions. This is more than producing diagrams and design documents.

You will lead security architecture reviews of proposed solutions before they enter the engineering pipeline, identify security requirements that engineering teams can execute, and own architectural decisions that compound over years. Requirements: What you'll do · Design enterprise network and infrastructure security architecture, including segmentation strategy, zero-trust network design, ZTNA implementation, DNS security, firewall strategy, network detection and response, and remote access architecture. · Lead cloud security architecture across primary cloud platforms, making multi-cloud decisions on identity federation, network connectivity, data security posture management, and cloud-native application security patterns. · Conduct structured security architecture reviews of proposed solutions, technology selections, and major capability initiatives entering the engineering pipeline, identifying security requirements and documenting findings before implementation. · Partner with the cryptographic architecture function on areas of overlap including TLS strategy, certificate-based network access, and mutual TLS architecture, and with identity architecture on network-aware identity decisions including conditional access and ZTNA-identity integration. · Support OT and vehicle security architecture in coordination with domain leads, providing enterprise network and cloud security perspective where the domains intersect. · Contribute to emerging security architecture for AI and ML systems within the function, with focus on LLM application security and AI agent boundary design as the discipline matures. · Document reference architectures, design patterns, and architectural decision records that engineering and platform teams adopt as part of standard practice. · Mentor other architects and engineers on architectural reasoning through review, working sessions, and contribution to security architecture standards. What you'll bring · Bachelor’s degree in Computer Science, Information Technology, Engineering, or a related field, or equivalent work experience. · 10+ years of hands-on experience in security architecture, with network and infrastructure security architecture as a primary career discipline. · Working depth in zero-trust network architecture, ZTNA, microsegmentation, and secure access service edge concepts, with the ability to make vendor-agnostic architectural decisions. · Multi-cloud security architecture experience.

Hands-on design depth in at least one of AWS or Azure required; both preferred. · Comfortable across modern cloud-native network architectures, including transit gateways, hub-and-spoke patterns, mesh patterns, and service mesh implementations. · Demonstrated ability to lead security architecture reviews with cross-functional stakeholders, including engineering, business, and executive audiences. · Familiarity with security architecture frameworks such as SABSA, NIST CSF, or MITRE ATT&CK applied to architectural analysis. · Familiarity with AI and ML security architecture concepts such as LLM application security or AI agent boundary design is preferred. · Comfortable designing within enterprise architectural standards set in coordination with broader corporate IT. Effective at making strong design decisions where some constraints originate externally to the function. · Excellent problem-solving and troubleshooting skills. Effective communication and collaboration skills, with the ability to translate complex security architecture into engineering and business language.

You treat colleagues with respect and have a desire for clean implementations. EEO-Statement: Bertrandt US is committed to fostering an inclusive and diverse workplace. We provide equal employment opportunities to all employees and applicants and strictly prohibit discrimination or harassment of any kind.

We consider all qualified candidates without regard to race, color, religion, age, sex, national origin, disability, genetics, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by applicable federal, state, or local laws.