Cloud Platform Security Architect

As Fresenius Digital Technology, we are an integral part of the Fresenius Group, responsible for the IT of the healthcare group and its business segments. We ensure a frictionless interface of IT and business operations so that all employees in production, logistics, and other areas can work efficiently and without interference.

The Cloud Platform Security Architect plays a pivotal role in shaping, securing, and evolving the company’s global cloud and hybrid environments.
This role combines deep technical expertise with architectural vision, ensuring that all cloud services and connected infrastructures are secure-by-design, scalable, and aligned with business and regulatory requirements.

As a subject-matter expert, the Architect defines cloud security blueprints, leads design reviews, and ensures seamless integration of security across platforms, projects, and teams — enabling secure digital transformation across the organization.

Your daily tasks will include:

Cloud Security Architecture & Design

• Design and implement secure, scalable cloud and hybrid architectures (Microsoft Azure and multi-cloud environments).

• Develop and maintain reference architectures, standards, and design patterns for cloud security and compliance.

• Lead cloud-native and Zero Trust security design initiatives across the enterprise.

• Define and enforce identity, access, and network security models for cloud platforms.

• Support secure deployment and operation of AI workloads (SaaS, PaaS, or self-hosted environments).

Governance, Compliance & Risk Management

• Translate business, regulatory, and audit requirements into actionable cloud security controls.

• Collaborate with Risk, Compliance, and IT Governance teams to ensure alignment with global standards (ISO 27001, NIST, CIS, GDPR).

• Support security posture management, vulnerability management, and secure configuration baselines across cloud environments.

Innovation & Continuous Improvement

• Lead proof-of-concept (PoC) projects to evaluate emerging cloud security technologies.

• Identify automation opportunities and integrate DevSecOps principles into development pipelines.

• Advise on cost-optimized, secure service design and architecture patterns.

What is important from our point of view:

• Degree in Computer Science, Cybersecurity, or a related field - or equivalent professional experience

• 7+ years of experience designing secure cloud solutions, ideally in Microsoft Azure, including:

  - Azure AD / Entra ID

  - Defender for Cloud & Defender for Cloud Apps

  - Privileged Access Management (PAM)

• Proven leadership experience - formal or informal - in mentoring, guiding, or leading technical teams.

• Strong understanding of Zero Trust, DevSecOps, and cloud-native architecture patterns.

• Hands-on expertise in incident response, threat modeling, and security governance.

• Experience with cost control, service design, and continuous improvement processes.

• Familiarity with vulnerability management and secure configuration management practices.

• Excellent communication and stakeholder management skills in English.

• Hands-on, pragmatic mindset combined with strategic thinking and a growth-oriented attitude.

Preferred Certifications

• Microsoft Certified: Cybersecurity Architect Expert (SC-100)

• Microsoft Certified: Azure Solutions Architect Expert (AZ-305)

• Certified Information Systems Security Professional (CISSP)

• GIAC Cloud Security Architect (GCSA) or CCSP 

What can we offer you:

• Great collaboration and knowledge sharing spirit

• Stable employment in a company with international environment

• Benefit package (private medical health care, multisport card, life insurance, social fund, fruits in the office, integration events, employee pension program)

• Work in a modern office located in Wrocław city centre (pl. Nowy Targ) or from your home (we meet in the office once a week or twice a month, depending where you are located)

• Excellent teamwork culture and friendly atmosphere

Please send your application documents to: rekrutacja@fresenius.com

*By applying for a job offer, you agree that only the country-specific labor law of the respective legal entity will be applied to the application process.