Senior Security Architect / Lead engineer

At Allianz Technology, safeguarding our data platforms is mission-critical. We are looking for a hands-on Senior Security Architect / Lead Engineer to own and continuously elevate the security and compliance posture of our cloud database platforms, including Oracle Databases on OCI and PostgreSQL environments.

In this role, you will define and drive the security strategy for business-critical data infrastructure, working at enterprise scale in a highly regulated, international environment. You will combine deep technical expertise with people leadership, leading a dedicated security squad while collaborating closely with platform architects, operations, and governance teams across the organization.

If you are passionate about building secure-by-design platforms, translating regulatory requirements into robust engineering controls, and mentoring engineers while staying hands-on, this role offers both technical depth and strategic impact.

What You Do

• Design and implement secure end-to-end architectures for Oracle Databases (OCI) and PostgreSQL, including encryption, key management, and hardening.
• Define and enforce Zero Trust network security controls for cloud database environments (private endpoints, segmentation, certificates).
• Lead threat-modelling activities and translate risks into concrete engineering controls.
• Own identity and access integration with Microsoft Entra ID, including OAuth/OIDC, Conditional Access, and Privileged Identity Management.
• Establish vulnerability management and apply DevSecOps practices across the database platform.
• Act as primary contact for security audits, converting findings into remediation actions and improvements.
• Lead and mentor a cross-functional security squad, managing priorities, incidents, and stakeholder communication.

Do you have experience in SoC?, * Strong hands-on experience securing Oracle Database (including Advanced Security) and PostgreSQL in cloud environments.

• Solid expertise in OCI security, networking, and cloud database infrastructure.
• Proven background in network security, certificate lifecycle management, and secrets management.
• Deep practical knowledge of Microsoft Entra ID and identity-based access for databases.
• Experience working with security and compliance frameworks such as ISO 27001, SOC 2, GDPR, CIS Benchmarks, or DORA.
• Previous experience leading or tech-leading teams in agile or DevOps environments.
• Excellent communication skills, able to explain complex security topics to technical and non-technical audiences.

• We offer a hybrid work model which recognizes the value of striking a balance between in-person collaboration and remote working incl. up to 25 days per year working from abroad.
• We believe in rewarding performance and our compensation and benefits package includes a company bonus scheme, pension, employee shares program and multiple employee discounts (details vary by location).
• From career development and digital learning programs to international career mobility, we offer lifelong learning for our employees worldwide and an environment where innovation, delivery and empowerment are fostered.
• Flexible working, health and wellbeing offers (including healthcare and parental leave benefits) support to balance family and career and help our people return from career breaks with experience that nothing else can teach.

With its headquarters in Munich, Germany, Allianz Technology is Allianz's global IT service provider, delivering IT solutions that drive the group's digitalization. With more than 11,000 employees in over 20 countries worldwide, Allianz Technology is tasked with running, optimizing, transforming, and innovating the infrastructure, applications, and services together with Allianz companies to co-create the best customer experience. We service the entire spectrum of digitalization-from one of the industry's largest IT infrastructure projects that spans data centers, networks, and security, to application platforms ranging from workplace services to digital interaction. In short: We deliver comprehensive end-to-end IT solutions for Allianz in the digital age. We are the backbone of Allianz. Find us at: www.linkedin.com/company/allianz-technology. Commitment to Integrity, Fairness Inclusion Allianz Technology is proud to be an equal opportunity employer dedicated to fostering an inclusive work environment for everyone. We embrace individuals of all gender identities and expressions, sexual orientations, ethnicities, ages, nationalities, religions, disabilities, and philosophies of life. Ultimately, our greatest strength as a company lies in the unique skills, experiences, and backgrounds our employees contribute. We therefore welcome applications regardless of race, ethnicity or cultural background, age, gender, nationality, religion, social class, disability, or sexual orientation, or any other characteristics protected under applicable local laws and regulations. To Recruitment Agencies Allianz Technology has an in-house recruitment team that sources great candidates directly. Therefore, Allianz Technology does not accept unsolicited resumes from agencies or search firm recruiters. When we do work with recruitment agencies, that engagement is formalized by a contract. Fees will only be paid when there is a contract in place. Without a contract in place, we will not accept invoices on unsolicited resumes, even if the candidate was ultimately employed by Allianz.