Security Architect at Nebius

Amsterdam, NetherlandsFull-timeCorporate and Cyber SecurityPosted 15 days ago

About the Role

<div class="content-intro">About Nebius: Nebius is leading a new era in cloud infrastructure for the global AI economy. We are building a full-stack AI cloud platform that supports developers and enterprises from data and model training through to production deployment, without the cost and complexity of building large in-house AI/ML infrastructure. Built by engineers, for engineers. From large-scale GPU orchestration to inference optimization, we own the hard problems across compute, storage, networking and applied AI. Listed on Nasdaq (NBIS) and headquartered in Amsterdam, we have a global footprint with R&D hubs across Europe, the UK, North America and Israel. Our team of 1,500+ includes hundreds of engineers with deep expertise across hardware, software and AI R&D.</div><h3>The role</h3> Nebius is looking for an experienced Security Architect to join the Cyber Security organization, reporting to the Security Architect Manager. This role focuses on designing and implementing secure architectures across corporate networks and cloud environments. You will play a key role in defining secure solutions, reviewing system designs, and ensuring security is embedded across enterprise infrastructure. The ideal candidate brings strong hands-on expertise in network and cloud security, along with the ability to work closely with IT, Infrastructure, DevOps, and Engineering teams to drive secure and scalable implementations. You’re welcome to work in our offices in Amsterdam. Your responsibilities will include:  <ul> <li>Design and implement secure architectures across corporate networks, cloud platforms, and hybrid environments.</li> <li>Define and maintain security standards, guidelines, and reference architectures aligned with organizational requirements.</li> <li>Review and approve architecture and design of new systems, infrastructure, and network changes.</li> <li>Design and support secure enterprise network architectures, including segmentation, Zero Trust, and remote access solutions.</li> <li>Define and implement controls for firewalls, ZTNA, proxies, and network access control (NAC).</li> <li>Design secure cloud architectures including IAM, networking, and workload protection.</li> <li>Ensure proper implementation of cloud security controls such as segmentation, encryption, and monitoring.</li> <li>Define and support identity and access management controls, including SSO, MFA, and privileged access.</li> <li>Contribute to endpoint security architecture, including EDR/XDR and device hardening standards.</li> <li>Identify security risks and architectural gaps and recommend mitigation strategies.</li> <li>Participate in architecture reviews, risk assessments, and security design discussions.</li> <li>Collaborate with SOC, Vulnerability Management, IT, and Engineering teams to improve overall security posture.</li> <li>Support implementation of security architecture initiatives and improvements across the organization.</li> </ul> We expect you to have:  <ul> <li>5+ years of experience in cyber security, with a focus on network and/or cloud security.</li> <li>Strong hands-on experience in enterprise network security (firewalls, segmentation, VPN, proxies, NAC, etc.).</li> <li>Experience working with cloud platforms (AWS, GCP, Azure) and cloud security best practices.</li> <li>Solid understanding of identity and access management (IAM), Active Directory / Entra ID, and access control models.</li> <li>Experience working in hybrid environments (on-premise + cloud).</li> <li>Strong understanding of security architecture principles and risk-based design.</li> <li>Experience working cross-functionally with IT, Infrastructure, DevOps, and Engineering teams.</li> <li>Strong analytical and problem-solving skills.</li> </ul> It will be an added bonus if you have:  <ul> <li>Experience with Zero Trust architecture and network segmentation strategies.</li> <li>Familiarity with cloud security tools (e.g., Wiz).</li> <li>Experience with enterprise identity platforms (Entra ID / Azure AD, Okta, etc.).</li> <li>Knowledge of regulatory and compliance frameworks (ISO 27001, SOC 2, NIST, etc.).</li> <li>Experience in SaaS, cloud-native, or enterprise-scale environments.</li> <li>Relevant certifications such as CISSP, CCSP, or equivalent.</li> <li>BSc in Computer Science, Information Security, or a related field.</li> </ul><div class="content-conclusion">Benefits & Perks: <ul> <li>Competitive compensation</li> <li>Career growth and learning opportunities</li> <li>Flexibility and work-life balance</li> <li>Collaborative and innovative culture</li> <li>Opportunity to work on impactful AI projects</li> <li>International environment and talented teams</li> </ul> What's it like to work at Nebius: Fast moving - Bold thinking - Constant growth - Meaningful impact - Trust and real ownership - Opportunity to shape the future of AI  Equal Opportunity Statement: Nebius is an equal opportunity employer. We are committed to fostering an inclusive and diverse workplace and to providing equal employment opportunities in all aspects of employment. We do not discriminate on the basis of race, color, religion, sex (including pregnancy), national origin, ancestry, age, disability, genetic information, marital status, veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by applicable law. Applicants must be authorized to work in the country in which they apply and will be required to provide proof of employment eligibility as a condition of hire.  If you need accommodations during the application process, please let us know.</div>

About the Role

Related Roles