Skip to content
mimi
All jobs · Security Engineer jobs

Senior OT Product Security Architect – Cyber Resilience Act (m/w/d)

K-Recruiting Life Sciences

On-site Senior 1w ago
Apply with a tailored resume Save job

About the role

About

Pharma & Biotech

Duration

6 Monate

Responsibilities

  • Provide conceptual consulting and implementation guidance for the Cyber Resilience Act (CRA) Essential Product Requirements within existing product software in the Bioprocess Solutions environment
  • Translate regulatory cybersecurity requirements into concrete, implementable architectural and product-level security requirements for software applications and embedded systems
  • Define secure architecture principles, design patterns, and reference architectures for Windows- and Linux-based on-premise software products
  • Develop technical concepts for secure authentication & authorization, identity management, secure interfaces, secret and key management, and secure software update mechanisms
  • Conduct security architecture reviews, risk assessments, and support security testing activities (e.g., penetration testing)
  • Ensure alignment with Secure Software Development Lifecycle (SSDLC) principles in close collaboration with Development, OT, IT, and DevOps teams
  • Coordinate security-related activities within a cross-functional project setup

Qualifications

  • Several years of experience as a Security Architect in product software, embedded systems, industrial automation, or OT environments
  • Strong knowledge of the Cyber Resilience Act (CRA) and relevant standards such as IEC 62443
  • Experience designing secure architectures for Windows- and Linux-based on-premise applications
  • Hands-on expertise in secure coding and design principles, PKI, certificate and key management, secure interfaces, and industrial protocol security
  • Experience in plant engineering, laboratory equipment, industrial systems, or bioprocess environments
  • Solid understanding of Secure Software Development Lifecycle (SSDLC) and DevOps principles
  • Fluent English (spoken and written); German is a plus

Nice to have

  • Experience in the biopharmaceutical or regulated industry
  • Knowledge of threat modeling methodologies (e.g., STRIDE)

Requirements

  • Start date: 01.03.2026, latest 01.04.2026

Skills

DevOpsIEC 62443LinuxPKISSDLCWindows

Similar roles

Full Stack Ingenieur

i2m GmbH

Founding Technical Recruiter

interface.ai

$175k – $220k/yr

Data Dictionary Software Engineer

CACI

$113k – $238k/yr

Don't send a generic resume

Paste this job description into Mimi and get a resume tailored to exactly what the hiring team is looking for.

Get started free