Ingenico is the global leader in payments acceptance solutions. As the trusted technology partner for merchants, banks, acquirers, ISVs, payment aggregators and fintech customers our world-class terminals, solutions and services enable the global ecosystem of payments acceptance. With 40 years of experience, innovation is integral to Ingenico’s approach and culture, inspiring our large and diverse community of experts who anticipate and help shape the evolution of commerce worldwide. At Ingenico, trust and sustainability are at the heart of everything we do.

Job Summary

The Cybersecurity Architect Manager plays an essential role as part of the second line of defense, ensuring that all IT and security implementations align with the organization’s cybersecurity strategy, policies, and standards. This role is responsible for verifying and controlling the design and implementation of secure systems, architectures, and tools while collaborating closely with IT, DevOps, and GTO teams . The Cybersecurity Architect Manager also participates in the evaluation and selection of security products to enhance the organization's overall security posture and protect crown jewels and critical assets.

Key Responsibilities

1. Second Line of Defense

• Serve as the second line of defense by reviewing, verifying, and validating IT and cybersecurity implementations to ensure compliance with internal security policies, frameworks, and industry standards.
• Act as an independent security control authority, challenging and approving proposed architectures and solutions to ensure they meet security requirements.
• Continuously evaluate the effectiveness of security measures implemented across projects, infrastructure, and business processes.
• Plan and execute penetration tests to assess the effectiveness of security controls, identify weaknesses, and recommend corrective actions.

2. Secure Architecture Design

• Define and oversee the development of secure architectures, ensuring they incorporate best-in-class security principles (e.g., defense in depth, zero trust, least privilege).
• Collaborate with the IT and development teams to design secure systems and applications that align with the organization's business goals.
• Ensure security-by-design principles are embedded into projects and systems from inception to deployment, protecting crown jewels and critical assets.
• Manage the Cybersecurity architecture advisory board

3. Control and Verification of Implementations

• Develop and enforce architectural security guidelines and standards for IT systems, cloud solutions, applications, and network infrastructures.
• Review and validate security configurations, design documents, and technical architectures to ensure compliance with regulatory standards (e.g., ISO 27001, NIST CSF, DORA, NIS2, PCI DSS).
• Conduct control checks, security design reviews, and risk-based assessments of projects and new technologies before implementation.
• Perform post-implementation verification to confirm security measures are correctly deployed and effective.

4. Security Product Selection and Innovation

• Lead the evaluation and selection of security products, tools, and solutions that strengthen the organization’s security posture.
• Collaborate with procurement and IT teams to assess vendor solutions based on security capabilities, scalability, and cost-effectiveness.
• Benchmark, test, and recommend security technologies such as SIEM, endpoint protection, IAM, cloud security, and network security tools.
• Ensure that new tools and technologies, including AI, are seamlessly integrated into the organization’s architecture and align with existing systems.

5. Cybersecurity Assurance and Resilience

• Contribute to the design and implementation of secure systems that prioritize resilience and ensure business continuity in the face of cyber incidents.
• Work with incident response teams to assess post-incident architecture flaws and ensure improvements are made to prevent future issues.
• Participate in cyber crisis simulations and resilience exercises to test and validate security architecture performance.

6. Collaboration and Advisory Role

• Collaborate with IT, DevOps, GTO and security operations teams to guide the implementation of secure systems, cloud environments, and Continuous Integration and Delivery (CI/CD) pipelines.
• Act as a trusted advisor to business units and IT teams, providing expertise on architectural security topics and emerging threats.
• Partner with third-party vendors, auditors, and consultants to validate the robustness of the organization's security architecture.

7. Security Metrics and Reporting

• Define and track key security metrics related to the performance and compliance of architectural controls and designs.
• Develop regular reports for leadership to communicate the effectiveness of architectural security controls and areas for improvement.
• Provide visibility into risks and gaps in IT and security implementations, along with actionable recommendations.

Key Requirements

• Bachelor's degree in Cybersecurity, Computer Science, Information Technology, or related field.
• Relevant certifications such as CISSP, CISM, TOGAF, SABSA, or CCSP are a must
• 7+ years of experience in cybersecurity architecture, security engineering, or risk management.
• Experience working as part of a second line of defense, with proven skills in validation, control, and oversight.
• Demonstrated proficiency in conducting and managing penetration tests, analyzing findings, and implementing remediation strategies.
• Knowledge of security products (e.g., SIEM, firewalls, EDR, IAM, encryption tools) and experience in security product evaluations.
• Hands-on experience in designing and implementing secure architectures for on-premises, hybrid, and cloud environments (e.g., AWS, Azure, GCP).
• Familiarity with risk management processes, security governance, and reporting metrics.
• Strong analytical, problem-solving, and communication skills with the ability to engage technical and non-technical stakeholders.

As part of our values, we embrace diversity and inclusion at Ingenico. We are an equal opportunity employer and do not discriminate on the basis of an individual's race, national origin, color, gender, gender identity, gender expression, sexual orientation, religion, age, disability, marital status or any other protected characteristic under applicable law, whether actual or perceived. Ingenico welcomes and encourages applications from people with disabilities. Accommodations are available on request for candidates taking part in all aspects of the selection process. We want to adapt our processes and create a safe work environment that welcomes everyone. To learn more about what it's like working inside Ingenico, follow us on LinkedIn