Freelance Security Architect – Energy / Critical Infrastructure | Germany (Hybrid)

Germany (Hybrid – Remote with occasional on-site presence)

Freelance / Contract

Overview

A key player in the energy and critical infrastructure sector is seeking a seasoned Security Architect to join a large-scale digital and cybersecurity transformation programme. The successful candidate will play a pivotal role in defining secure architecture across IT and OT domains, aligning with enterprise security goals and evolving compliance requirements such as NIS2.

Key Responsibilities

• Lead the design and governance of security architecture across IT/OT environments, ensuring alignment with regulatory and organisational security standards.
• Collaborate with engineering, DevOps, and operational teams to embed security best practices across the software development lifecycle (SDLC) and infrastructure.
• Perform risk and threat modelling, security assessments, and define mitigation strategies for existing and future systems.
• Drive security integration for cloud-native applications and containerised environments.
• Act as a subject matter expert during architecture reviews, platform integrations, and audit preparations.

Technical Environment

• Cloud Platforms: AWS
• Programming & Scripting: Go, Python, TypeScript
• Infrastructure: Docker, Kubernetes, GitLab CI/CD, Terraform
• Security Technologies: IAM, SSO, PKI, network segmentation, vulnerability scanning, secret management
• Directories & Access Management: LDAP, Active Directory
• Security Frameworks & Compliance: MITRE ATT&CK, NIST, IEC 62443, ISO 27001, NIS2
• Architecture & Integration: Secure microservices, container orchestration, API security
• Development Environment: Git, GitLab, Infrastructure as Code (IaC), DevSecOps practices

Candidate Profile

• Extensive experience in enterprise-level security architecture across both cloud and on-premises environments.
• Proven ability to design and implement security controls for critical infrastructure and operational technology (OT) environments.
• Solid understanding of secure software development and DevSecOps principles.
• Familiarity with regulatory and compliance frameworks relevant to critical infrastructure (e.g., NIS2, IEC 62443).
• Strong stakeholder engagement skills with the ability to translate business requirements into technical security designs.
• Professional certifications (e.g., CISSP, CISM, TOGAF, SABSA) are advantageous.

Preferred Experience

• Experience working in the energy, utilities, or industrial automation sector.
• Exposure to agile delivery environments and product-based security teams.
• German language skills are an advantage but not mandatory.

This is an excellent opportunity for a Security Architect seeking a technically challenging role within a forward-thinking energy environment. You’ll be at the heart of strategic security design efforts, influencing architecture across critical domains.