Senior Solution Architect - Azure Platform & Product Security

EPAM Systems, Inc.
Eindhoven, Netherlands
2 days ago

Role details

Contract type
Permanent contract
Employment type
Full-time (> 32 hours)
Working hours
Regular working hours
Languages
English
Experience level
Senior

Job location

Eindhoven, Netherlands

Tech stack

API
Artificial Intelligence
Computing Platforms
Azure
Cloud Engineering
Configuration Management Databases
Computer Security
Digital Architecture
Identity and Access Management
Key Management
Network Planning and Design
Public Key Infrastructure
Azure
Security Information and Event Management
Systems Integration
Enterprise Application Integration
SSL Certificate Management
Enterprise Software Applications
Cloud Platform System
Okta
GitHub Copilot
IT Architecture
Software Security
Containerization
Kubernetes
Enterprise Integration
Operational Systems
Api Design
SailPoint

Job description

We are seeking a hands-on Solution Architect with strong expertise in Microsoft Azure, cloud-native platforms and enterprise integration to own the architecture of a Product Security platform operating in a regulated manufacturing domain. The platform issues and manages digital identities, certificates, secrets and keys for factory equipment, ensuring secure integrations and privileged-access control.

The role focuses primarily on Azure platform and product architecture while applying security knowledge to build a scalable, resilient and secure solution. You will lead the evolution of the platform from active build into operational stability, reliability and ongoing enhancements, ensuring alignment across technical and business stakeholders.

Security expertise is important - especially in identity, PKI, secrets management and encryption - but this is not a pure Security Architect role. The ideal candidate combines cloud-native architecture, platform ownership and consultative communication skills to guide engineering decisions, drive dependencies and deliver a robust enterprise solution.

Responsibilities

  • Own end-to-end architecture for an Azure-based Product Security platform, defining design principles for evolution from build to run and enhancement phases
  • Design architecture for Kubernetes-based components, private networking, APIs, integrations, observability, security controls and reliability patterns
  • Guide teams on Azure, Kubernetes, integration and API design, deployment approaches and operational readiness
  • Apply security expertise in identity and access, PKI/certificates, secrets and key management, privileged access and encryption fundamentals
  • Oversee resilience architecture, including availability, DR and business continuity across internal and external dependencies
  • Facilitate requirements elicitation and translate ambiguous asks into clear specs and actionable architecture decisions
  • Drive cross-team coordination and resolve dependencies proactively with infrastructure, identity, security and delivery stakeholders
  • Communicate architecture decisions effectively: business impact and risk for leadership, technical trade-offs for engineers
  • Support broader account initiatives such as CMDB integration, platform modernization and security architecture improvements

Requirements

  • 5+ years in solution or platform architecture, cloud engineering or enterprise application architecture roles
  • Strong Microsoft Azure architecture expertise, including network design, platform scaling, cloud-native workloads and enterprise integration patterns
  • Practical experience with Kubernetes-based platforms, containerized workloads and operational reliability design
  • Proven ability to design APIs and integrations across enterprise systems (e.g., identity, certificate management, ITSM, operational systems)
  • Solid understanding of security architecture fundamentals including IAM, PKI, secrets and key management, privileged access and encryption patterns
  • Ownership of reliability, availability and DR strategies for complex solutions
  • Strong facilitation and consultative communication skills - able to align business and technical stakeholders
  • Ability to operate independently and drive architectural decisions without waiting for prescriptive guidance

Nice to have

  • Experience with enterprise identity and certificate management tooling (Okta, SailPoint, PKI platforms, HSMs)
  • Awareness of security regulations and standards (NIS2, Cyber Resilience Act, IEC 62443, ISO 27001)
  • Familiarity with observability practices, SIEM tools and operational dashboards
  • Broader IT architecture experience (CMDB, ITSM, platform modernization, service integration)
  • Exposure to AI-enabled delivery models such as GitHub Copilot or Azure AI services
  • Experience in Operational Technology environments, manufacturing and product security platforms

Benefits & conditions

Pulled from the full job description

  • Referral program
  • Employee assistance program
  • Pension plan, * 26 paid holiday days
  • Pension plan scheme
  • Disability insurance (WGA Shortfall insurance)
  • Long-term disability insurance (WIA Top up insurance)
  • EPAM Employee Stock Purchase Plan (ESPP)
  • Commuting to work - costs reimbursement
  • Laptop + corporate simcard + corporate mobile device (subject to certain eligibility requirements)
  • Bike lease
  • Employee Assistance Program
  • Corporate Programs including Employee Referral Program with rewards
  • Learning and development opportunities including in-house training and coaching, professional certifications, and courses

Apply for this position