Security Architect - Advanced Threat Response

Apply
Apply

Share

successfully icon

Successfully

The vacancy has been successfully added to favorites

location icon

Bucharest, Romania

specialization icon

Solution/Integration Architecture

lob icon

BCM Industry

date icon

10/10/2025

Req. VR-118148

Apply
Project description

Join our Development Centre in Bucharest and become a member of our open-minded, progressive and professional team. In this role you will be working for one of our world-famous clients.
The Chief Security Office (CSO) of our client comprises the Chief Information Security Office (CISO) and the Corporate Security unit. The CISO organization guarantees information security for our client.
The current initiatives are centered on enhancing cybersecurity capabilities across several critical domains: Threat Intelligence, Advanced Persistent Threats (APTs), Red Team Operations, Forensics and Malware Analysis.
These projects are designed to strengthen the organization's defense systems and enhance response strategies against complex cyber threats.
We are looking for candidates with strong engineering experience in the areas mentioned above to assist in evaluating and selecting the most effective tools. The roles include implementing the chosen solutions, migrations to different platforms and integrating them with already existing systems to ensure a smooth transition and improved security posture.
On top of attractive salary and benefits package, Luxoft will invest into your professional training, and allow you to grow your professional career.

Responsibilities
bullet icon

Looking for a Security Architect to join the Engineering organization, focused on Threat Simulation and Threat Intelligence capabilities to enable continuous, automated adversary emulation and high-fidelity detection.

bullet icon

You will manage onboarding, migration and integration of tools, conduct POCs to choose the best solutions, collaborate with vendors and stakeholders and enable Purple/RedTeam testing by delivering engineered platform configurations and data feeds.

bullet icon

Key responsibilities:

bullet icon

Lead onboarding and lifecycle management of new TI and adversarial-simulation tools (evaluation, procurement input, deployment etc)

bullet icon

Design, implement and validate use-case deployments for detection, hunting and simulation scenarios end-to-end

bullet icon

Plan and execute tool migrations (legacy to new platforms) , including data migration, mapping of telemetry/events

bullet icon

Integrate TI tools with SIEM/Data Lake, SOAR and other repositories

bullet icon

Assess gaps in capabilities and recommend procurement of new adversarial/simulation or TI platforms. Produce comparative business/technical assessments

bullet icon

Run technical POCs (define success criteria, test plans, datasets, run experiments, analyze results, recommend optimal solution that maps to requirements)

bullet icon

Configure and tune platforms (playbooks, detection rules, sensors/agents, orchestration workflows) to enable automated testing and continuous validation

bullet icon

Integrate new Threat Intelligence feeds into detection/hunting pipelines: normalization, scoring, enrichment and suppression rules

bullet icon

Evaluate feature sets of tools and produce structured feature/fit assessments

bullet icon

Work with vendors, procurement and engineering stakeholders to negotiate deployment timelines and support escalation paths

bullet icon

Support Purple/Red teams by providing the infrastructure, simulated adversary capabilities and automated execution to drive continuous security validation

bullet icon

Build automation and engineering artifacts to deploy and maintain platforms reproducibly

Skills

Must have

bullet icon

5+ years of experience in security engineering, threat intelligence or adversary simulation roles. Prior responsibility for tool selection, deployment and integration would be a plus

bullet icon

Strong Linux administration skills (system hardening, service management, troubleshooting, network tuning, secure baseline implementation, service orchestration)

bullet icon

Practical Cloud management knowhow with CI/CD pipeline design and implementation experience

bullet icon

Strong hands-on experience integrating security tools with SIEM/Data Lake and detection/hunting pipelines

bullet icon

Demonstrated experience running technical POCs and producing decision-grade evaluations

bullet icon

Experience working with or supporting Purple/Red team activities and translating their input into detections and test automations

bullet icon

Excellent stakeholder management and cross-team collaboration

Nice to have

bullet icon

Familiarity with one or more tools from: Microsoft EASM/Anomali/Tanium/B!nalyze/GTI suite/JoeSanbox or other similar tools

bullet icon

Experience with malware sandboxing, dynamic analysis and threat feed integration

bullet icon

Experience with adversary emulation frameworks (ATT&CK, Caldera, Atomic Red Team)

Other
seniority icon

Languages

English: B2 Upper Intermediate

seniority icon

Seniority

Senior

Bucharest, Romania

Req. VR-118148

Solution/Integration Architecture

BCM Industry

10/10/2025

Req. VR-118148

Apply for Security Architect - Advanced Threat Response in Bucharest

*Indicates a required field

Under the terms of your specific consent or to perform our obligations under a contract with you, as applicable, we, Luxoft Holding Inc. will manually and electronically process your personal data, specifically your first name, last name, phone number, e-mail address and other data you provide us through this form.


Within this context, we process personal data only for the specific purpose(s) indicated in the individual consent language or other notices provided below.


We will – insofar as reasonably necessary for the purpose you have agreed to and within the scope of applicable laws – transfer your personal data to other entities within the Luxoft Group and to the group of third party recipients listed in our Privacy Notice. Such Recipients can be located outside the European Union (EU) and/or the European Economic Area (EEA) (“Third Countries”). The Third Countries concerned, e.g. the USA, may not have the level of data protection that you enjoy e.g. under the GDPR. This can result in disadvantages such as an impeded enforcement of data subjects’ rights, a lack of control over further processing and access by state authorities. You may only have limited legal remedies against this. Insofar our transfer of your personal data to recipients in Third Countries is not covered by an adequacy decision of the EU Commission, we achieve an adequate level of data protection as further detailed out in our Privacy Notice.


With your consent, we personalise marketing communications to you by way of carrying out marketing research analysis, analysing the surfing-behaviour of our website visitors and to adjust it to their detected tendencies, as well as to plan more efficient future marketing activities. This personalised marketing does not include any automated decision-making activities.


Further information on how we process personal data in general is available in our Privacy Notice. You may withdraw any given consent at any time. The withdrawal of your consent(s) will not affect the lawfulness of processing before its withdrawal. For any request in this context, please e-mail us at: DPO@luxoft.com.


Before uploading CV or any other information to this website, to learn more about your obligations and restrictions arising from the use of this website, please read our Terms of Use.