Cybersecurity Architect
The opportunity
This is a fully on-site contract role at an EU agency headquarters in Warsaw, providing senior cybersecurity architecture expertise. You'll design and lead the implementation of secure architectures, align cybersecurity strategy with business goals, and ensure the organisation's systems meet the highest security and privacy standards.
Contract details: 12-month initial term with up to 3 annual renewals (maximum 48 months total). ~220 normal working-hours days + 30 extended working-hours days per year. Fully on-site (100% intra-muros). Earliest start: 1 August 2026. Security clearance at RESTREINT UE/EU RESTRICTED level is required and must be valid from the first day of assignment.
What you'll do
Design and propose secure architectures to implement the organisation's strategy
Develop the organisation's cybersecurity architecture to address security and privacy requirements
Produce architectural documentation and specifications
Present high-level security architecture to stakeholders
Establish a secure environment during the development lifecycle of systems, services, and products
Lead the development, integration, and maintenance of cybersecurity components ensuring specifications are met
Analyse and evaluate the cybersecurity of the organisation's architecture
Assure the security of solution architectures through security reviews
Collaborate with key security personnel and other teams in applying security principles
Evaluate the impact of cybersecurity solutions on the design and performance of the organisation's architecture
Adapt the organisation's security architecture to emerging threats
Assess the implemented architecture to maintain an appropriate level of security
Perform market evaluation to identify appropriate solutions to business requirements
Evaluate security solutions through proof of concepts
Design solutions including service aspects (ITIL service design activities)
Contribute to the definition of the security architectural blueprint
Integrate new solutions with existing frameworks based on a security architectural blueprint
Transition solutions to teams in charge of daily operations
Maintain a holistic view of the organisation's strategy, processes, information, and ICT assets
Link the business mission, strategy, and processes to ICT and Cyber Defence strategies
Align cybersecurity strategy and planning with the organisation's business goals
Recommend resolutions and improvements; ensure technical solutions comply with standards
What you bring
Mandatory:
Minimum Level 7 education (master's degree or equivalent in a relevant field)
English language proficiency at C1 (CEFR) or above
At least 10 years of ICT-relevant professional experience
At least 8 years of experience at a similar position
At least 4 certifications from the following list (or internationally recognised equivalents):
CISSP (Certified Information Systems Security Professional)
CISA (Certified Information Systems Auditor)
CISM (Certified Information Security Manager)
SABSA Chartered Security Architect - Foundation Certificate (SCF)
TOGAF Foundation
CNDA (EC-Council Certified Network Defence Architect)
CISSP-ISSAP (ISC2 Certified Information Systems Security Architecture Professional)
CGEIT (ISACA Certified in the Governance of Enterprise IT)
CRISC (ISACA Certified in Risk and Information Systems Control)
SCPA (SABSA Certified Security Architecture Design & Development Practitioner)
SCMA (SABSA Certified Security Architecture Design & Development Specialist)
TOGAF Certified
GSNA (GIAC Certified Systems and Network Auditor)
GCCC (GIAC Certified Critical Controls)
GPPA (GIAC Certified Perimeter Protection Analyst)
Personal Security Clearance at RESTREINT UE/EU RESTRICTED level - valid from the first day of assignment (not just initiated)
Knowledge and skills:
Cybersecurity standards, methodologies, frameworks, and best practices
Cybersecurity-related requirements analysis and secure development lifecycle
Security architecture reference models and security solutions
Cybersecurity controls, technologies, risks, and threats
Privacy-Enhancing Technologies (PET) and privacy by design principles
Legal, regulatory, and legislative compliance requirements
Ability to design cybersecurity systems and architectures based on security and privacy by design and by default
Ability to conduct user and business requirements analysis and draw architectural and functional specifications
Experience proposing cybersecurity architectures aligned to stakeholder needs and budgets
Ability to select appropriate cryptographic models, access control techniques, and controls
Strong communication and stakeholder presentation skills
Ability to provide technological design leadership and lead integration of security solutions
Assessment: Interview only (up to 280 points, 60% pass threshold). No written test. Final evaluation: Technical quality 65% / Price 35%.
Location
Frontex Headquarters, Warsaw, Poland. Fully on-site (100% intra-muros). No travel foreseen.