Giesecke + Devrient GmbH
Manager Secure Software and Product Development(m/w/x)
Full-timeOn-siteExperienced
München
New Job?Nejo!
Your personal AI career agent
GIGiesecke + Devrient GmbH
Senior Software Security Architect CT(m/w/x)
München
Full-timeOn-siteSenior
Nejo AI Summary
Securing software for cash cycle solutions, including high-security cash and data centers. Security by Design principles and threat modeling experience required. Inclusive work environment, promoting diversity and equal opportunity.
Requirements
- University degree in Computer Science, Information Security, Electrical Engineering, or comparable STEM field, or equivalent qualification
- Several years of experience designing and assessing secure software architectures and integrations, ideally in critical infrastructure, manufacturing or security/software tech environment
- Passion for application security with hands-on experience in frameworks such as OWASP SAMM, NIST SSDF (SP 800‑218) and IEC 62443‑4‑1
- Strong background in threat modeling, risk assessments, and common vulnerability classes (e.g. OWASP Top 10, CWE) plus practical mitigation strategies
- Experience with secure SDLC/SSDLC processes, CI/CD pipelines and typical security gates (code reviews, security testing, release approvals)
- Ability to analyze complex security topics, document clearly, and communicate convincingly to developers, project managers, customers and suppliers
- Very good English skills (written and spoken); French is a strong plus, German is an advantage
- High willingness to travel (around 25 % internationally) and to work in interdisciplinary, globally distributed project teams
Tasks
- Ensure software components follow Security by Design principles
- Derive and manage security requirements from contracts and standards
- Perform threat and risk assessments for applications and integrations
- Define prioritized mitigation measures
- Review software and interface designs for security
- Align with internal teams and customer IT
- Oversee SSDLC practices for third-party developments
- Coach internal teams on secure development best practices
- Coordinate vulnerability management and patch strategy
- Handle exception management for integrated software
- Plan and supervise security testing
- Validate security acceptance criteria for project milestones
- Produce customer-facing security documentation
- Drive security topics in workshops and supplier reviews
Work Experience
- approx. 4 - 6 years
Education
- Vocational certificationOR
- Bachelor's degree
Languages
- English – Business Fluent
- French – is a plus
Tools & Technologies
- OWASP SAMM
- NIST SSDF (SP 800‑218)
- IEC 62443‑4‑1
- OWASP Top 10
- CWE
- CI/CD
Benefits
Other Benefits
- Equal opportunity employer
Social Impact
- Promote diversity
Informal Culture
- Inclusive work environment
- Free from prejudice
- Sense of belonging
Find the original job posting in its most current version here. Nejo automatically captured this job from the website of Giesecke + Devrient GmbH and processed the information on Nejo with the help of AI for you. Despite careful analysis, some information may be incomplete or inaccurate. Please always verify all details in the original posting! Content and copyrights of the original posting belong to the advertising company.
Not a perfect match?
- Airbus Defence and Space GmbH
Aerospace Cyber Security System Architect(m/w/x)
Full-timeOn-siteSeniorMünchen, Ottobrunn, Taufkirchen, Immenstaad am Bodensee, Friedrichshafen, Bremen - Airbus Defence and Space GmbH
Cyber Security Software Architect(m/w/x)
Full-timeOn-siteSeniorMünchen, Immenstaad am Bodensee, Bremen - Rivada Space Networks
Security Architect(m/w/x)
Full-timeOn-siteSeniorMünchen - Incadea GmbH
Software Security Engineer(m/w/x)
Full-timeOn-siteExperiencedMünchen
GIGiesecke + Devrient GmbH
Senior Software Security Architect CT(m/w/x)
München
Full-timeOn-siteSenior
Nejo AI Summary
Securing software for cash cycle solutions, including high-security cash and data centers. Security by Design principles and threat modeling experience required. Inclusive work environment, promoting diversity and equal opportunity.
Requirements
- University degree in Computer Science, Information Security, Electrical Engineering, or comparable STEM field, or equivalent qualification
- Several years of experience designing and assessing secure software architectures and integrations, ideally in critical infrastructure, manufacturing or security/software tech environment
- Passion for application security with hands-on experience in frameworks such as OWASP SAMM, NIST SSDF (SP 800‑218) and IEC 62443‑4‑1
- Strong background in threat modeling, risk assessments, and common vulnerability classes (e.g. OWASP Top 10, CWE) plus practical mitigation strategies
- Experience with secure SDLC/SSDLC processes, CI/CD pipelines and typical security gates (code reviews, security testing, release approvals)
- Ability to analyze complex security topics, document clearly, and communicate convincingly to developers, project managers, customers and suppliers
- Very good English skills (written and spoken); French is a strong plus, German is an advantage
- High willingness to travel (around 25 % internationally) and to work in interdisciplinary, globally distributed project teams
Tasks
- Ensure software components follow Security by Design principles
- Derive and manage security requirements from contracts and standards
- Perform threat and risk assessments for applications and integrations
- Define prioritized mitigation measures
- Review software and interface designs for security
- Align with internal teams and customer IT
- Oversee SSDLC practices for third-party developments
- Coach internal teams on secure development best practices
- Coordinate vulnerability management and patch strategy
- Handle exception management for integrated software
- Plan and supervise security testing
- Validate security acceptance criteria for project milestones
- Produce customer-facing security documentation
- Drive security topics in workshops and supplier reviews
Work Experience
- approx. 4 - 6 years
Education
- Vocational certificationOR
- Bachelor's degree
Languages
- English – Business Fluent
- French – is a plus
Tools & Technologies
- OWASP SAMM
- NIST SSDF (SP 800‑218)
- IEC 62443‑4‑1
- OWASP Top 10
- CWE
- CI/CD
Benefits
Other Benefits
- Equal opportunity employer
Social Impact
- Promote diversity
Informal Culture
- Inclusive work environment
- Free from prejudice
- Sense of belonging
Find the original job posting in its most current version here. Nejo automatically captured this job from the website of Giesecke + Devrient GmbH and processed the information on Nejo with the help of AI for you. Despite careful analysis, some information may be incomplete or inaccurate. Please always verify all details in the original posting! Content and copyrights of the original posting belong to the advertising company.
About the Company
Giesecke + Devrient GmbH
Industry
FinancialServices
Description
Das Unternehmen ist ein internationaler Technologiekonzern, der integrierte Sicherheitstechnologien in den Bereichen Digital Security, Financial Platforms und Currency Technology anbietet.
Not a perfect match?
- Giesecke + Devrient GmbH
Manager Secure Software and Product Development(m/w/x)
Full-timeOn-siteExperiencedMünchen - Airbus Defence and Space GmbH
Aerospace Cyber Security System Architect(m/w/x)
Full-timeOn-siteSeniorMünchen, Ottobrunn, Taufkirchen, Immenstaad am Bodensee, Friedrichshafen, Bremen - Airbus Defence and Space GmbH
Cyber Security Software Architect(m/w/x)
Full-timeOn-siteSeniorMünchen, Immenstaad am Bodensee, Bremen - Rivada Space Networks
Security Architect(m/w/x)
Full-timeOn-siteSeniorMünchen - Incadea GmbH
Software Security Engineer(m/w/x)
Full-timeOn-siteExperiencedMünchen