Project description

Join our Development Centre in Bucharest and become a member of our open-minded, progressive and professional team. In this role you will be working for one of our world-famous clients.
The Chief Security Office (CSO) of our client comprises the Chief Information Security Office (CISO) and the Corporate Security unit. The CISO organization guarantees information security for our client.
The current initiatives are centered on enhancing cybersecurity capabilities across several critical domains: Threat Intelligence, Advanced Persistent Threats (APTs), Red Team Operations, Forensics and Malware Analysis.
These projects are designed to strengthen the organization's defense systems and enhance response strategies against complex cyber threats.
We are looking for candidates with strong engineering experience in the areas mentioned above to assist in evaluating and selecting the most effective tools. The roles include implementing the chosen solutions, migrations to different platforms and integrating them with already existing systems to ensure a smooth transition and improved security posture.
On top of attractive salary and benefits package, Luxoft will invest into your professional training, and allow you to grow your professional career.

Responsibilities

Looking for a Security Architect to join the Engineering organization, focused on Threat Simulation and Threat Intelligence capabilities to enable continuous, automated adversary emulation and high-fidelity detection.

You will manage onboarding, migration and integration of tools, conduct POCs to choose the best solutions, collaborate with vendors and stakeholders and enable Purple/RedTeam testing by delivering engineered platform configurations and data feeds.

Key responsibilities:

Lead onboarding and lifecycle management of new TI and adversarial-simulation tools (evaluation, procurement input, deployment etc)

Design, implement and validate use-case deployments for detection, hunting and simulation scenarios end-to-end

Plan and execute tool migrations (legacy to new platforms) , including data migration, mapping of telemetry/events

Integrate TI tools with SIEM/Data Lake, SOAR and other repositories

Assess gaps in capabilities and recommend procurement of new adversarial/simulation or TI platforms. Produce comparative business/technical assessments

Run technical POCs (define success criteria, test plans, datasets, run experiments, analyze results, recommend optimal solution that maps to requirements)

Configure and tune platforms (playbooks, detection rules, sensors/agents, orchestration workflows) to enable automated testing and continuous validation

Integrate new Threat Intelligence feeds into detection/hunting pipelines: normalization, scoring, enrichment and suppression rules

Evaluate feature sets of tools and produce structured feature/fit assessments

Work with vendors, procurement and engineering stakeholders to negotiate deployment timelines and support escalation paths

Support Purple/Red teams by providing the infrastructure, simulated adversary capabilities and automated execution to drive continuous security validation

Build automation and engineering artifacts to deploy and maintain platforms reproducibly

Skills

Must have

5+ years of experience in security engineering, threat intelligence or adversary simulation roles. Prior responsibility for tool selection, deployment and integration would be a plus

Strong Linux administration skills (system hardening, service management, troubleshooting, network tuning, secure baseline implementation, service orchestration)

Practical Cloud management knowhow with CI/CD pipeline design and implementation experience

Strong hands-on experience integrating security tools with SIEM/Data Lake and detection/hunting pipelines

Demonstrated experience running technical POCs and producing decision-grade evaluations

Experience working with or supporting Purple/Red team activities and translating their input into detections and test automations

Excellent stakeholder management and cross-team collaboration

Nice to have

Familiarity with one or more tools from: Microsoft EASM/Anomali/Tanium/B!nalyze/GTI suite/JoeSanbox or other similar tools

Experience with malware sandboxing, dynamic analysis and threat feed integration

Experience with adversary emulation frameworks (ATT&CK, Caldera, Atomic Red Team)

Other

Languages

English: B2 Upper Intermediate

Seniority

Senior

Related jobs

View all vacancies

Transformation Architect

Solution/Integration Architecture

China

Shanghai

Solution Architect - Banking

Solution/Integration Architecture

Australia

Sydney

Solution Architect

Solution/Integration Architecture

Sweden

Goeteborg

Bucharest, Romania

Req. VR-118148

Solution/Integration Architecture

BCM Industry

10/10/2025

Req. VR-118148

Apply for Security Architect - Advanced Threat Response in Bucharest

*Indicates a required field

First name

Last name

Your country

Your City

Phone

Specialization

Attach your resume (max file size 1MB; allowed extensions: doc, txt, pdf, docx) Upload resume

Number of years of experience in the specialization you are applying for

What are your monthly gross salary expectations?

Read Explanatory Notes

Under the terms of your specific consent or to perform our obligations under a contract with you, as applicable, we, Luxoft Holding Inc. will manually and electronically process your personal data, specifically your first name, last name, phone number, e-mail address and other data you provide us through this form.

Within this context, we process personal data only for the specific purpose(s) indicated in the individual consent language or other notices provided below.

We will – insofar as reasonably necessary for the purpose you have agreed to and within the scope of applicable laws – transfer your personal data to other entities within the Luxoft Group and to the group of third party recipients listed in our Privacy Notice. Such Recipients can be located outside the European Union (EU) and/or the European Economic Area (EEA) (“Third Countries”). The Third Countries concerned, e.g. the USA, may not have the level of data protection that you enjoy e.g. under the GDPR. This can result in disadvantages such as an impeded enforcement of data subjects’ rights, a lack of control over further processing and access by state authorities. You may only have limited legal remedies against this. Insofar our transfer of your personal data to recipients in Third Countries is not covered by an adequacy decision of the EU Commission, we achieve an adequate level of data protection as further detailed out in our Privacy Notice.

With your consent, we personalise marketing communications to you by way of carrying out marketing research analysis, analysing the surfing-behaviour of our website visitors and to adjust it to their detected tendencies, as well as to plan more efficient future marketing activities. This personalised marketing does not include any automated decision-making activities.

Further information on how we process personal data in general is available in our Privacy Notice. You may withdraw any given consent at any time. The withdrawal of your consent(s) will not affect the lawfulness of processing before its withdrawal. For any request in this context, please e-mail us at: DPO@luxoft.com.

Before uploading CV or any other information to this website, to learn more about your obligations and restrictions arising from the use of this website, please read our Terms of Use.

By clicking the Agree and Send button, you consent that Luxoft Holding Inc. can process your provided personal data for the purpose of processing your application to establish a potential employment, internship or relocation with Luxoft Holding Inc., a relevant affiliate of the Luxoft Group or Luxoft Group’s clients, as applicable. You consent to the retention of your personal data, with the purpose of contacting you for potential future employment opportunities. If you refer a friend, we will process your provided personal data of you and your referral to award you with a bonus for such recommendation. You can withdraw your consent at any time with effect for the future. Before you consent, please click on „Read these Explanatory Notes“ and view our Privacy Notice (e.g. for your data subject rights).

Note: Our system automatically converts each CV into our standardized format, enabling our HR teams to process applications more efficiently.

I consent that Luxoft Holding Inc. and the affiliates of the Luxoft Group can process my personal data for the purpose of sending me regular emails with information about Luxoft as an employer including job vacancies and (ii) marketing communications with information about recruitment-related events, organized webinars, conferences, as well as the Logeek Magazine and other similar publications. I can withdraw my consent at any time with effect for the future. These communications are personalised to my interests in accordance with our Privacy Notice.

Related Jobs

All jobs

MENU

Security Architect - Advanced Threat Response

Project description

Responsibilities

Skills

Other

Related jobs

Transformation Architect

Solution Architect - Banking

Solution Architect