Job Summary

Job Description

Key Accountabilities:

• Design and govern secure architectures across cloud, identity, applications, and data platforms.
• Lead application security initiatives including assessments, threat modeling, secure SDLC practices, and vulnerability remediation.
• Support CMMC 2.0 Level 2+ readiness, including NIST 800 171/172 control implementation, SSP/POA&M management, and audit support.
• Architect and operate security capabilities within Microsoft GCC High and Azure Government, including Defender, Sentinel, Purview, and Entra ID.
• Provide senior level guidance during security incidents, investigations, and post incident remediation.
• Translate regulatory and business requirements into scalable security roadmaps and standards.
• Serve as a trusted advisor to engineering, IT, and leadership teams, mentor security professionals.
• Meets TKMNA Employee Attributes / Competencies

The above is intended to describe the general content of and requirement for the performance of this job. It is not to be construed as an exhaustive statement of duties, responsibilities or requirements.

Qualifications:

Minimum Requirements:

• Bachelor’s degree or equivalent professional experience required, Master’s degree preferred.
• 7+ years of experience in information security, including hands‑on security architecture or application security experience.
• Strong experience securing Microsoft 365 GCC‑High and Azure Government environments.
• Demonstrated expertise with cloud security, identity and access management, application security, and incident response.
• Experience supporting regulated environments (CMMC, ITAR, DFARS, or similar).

Certifications

• All relevant security and cloud certifications preferred, including CISSP, CCSP, CISM, GIAC, and Microsoft security certifications.

Skills

• Cloud & Identity: Azure Gov, M365 GCC‑High, Entra ID, Zero Trust, Conditional Access, MFA, PIM
• Application Security: Threat modeling, SAST/DAST/SCA, API and container security
• Monitoring & Response: Microsoft Sentinel, Defender XDR, automation and incident response
• Compliance: CMMC 2.0, NIST 800‑171/172, ITAR, risk management

Benefits Overview

We offer competitive company benefits to eligible positions, such as :

• Medical, Dental, Vision Insurance
• Life Insurance and Disability

• Voluntary Wellness Programs

• 401(k) and RRSP programs with Company Match 
• Paid Vacation and Holidays
• Tuition Reimbursement
• And more!

Benefits may vary based on job, country, union role, and/or company segment. Please work with your recruiter or tk representative for applicable benefits information.
 

Disclaimer

This is to notify the general public that some individuals/entities are using the thyssenkrupp (“TK”) name, trademark, domain name, and logo without authorization. They are posing as employees, representatives, or agents of TK and its associated/group companies. These individuals/entities are fraudulently offering jobs online through texts, websites, telephone calls, emails, or by issuing fake offer letters. They are also soliciting jobseekers to deposit money in certain bank accounts or providing jobseekers with fraudulent checks to obtain banking information.  

TK does not ask, solicit, or accept any monies in any form from candidates, job applicants, or potential jobseekers, who have applied to or wish to apply to TK, whether online or otherwise as a pre-employment requirement. TK bears no responsibility for money being deposited/withdrawn therefrom in response to such fake offers.

Equal opportunity employer, including people with disabilities and veterans.

Applicants with disabilities may be entitled to reasonable accommodation under the Americans with Disabilities Act and certain state or local laws. For those requiring assistance completing the application or the application process and request information relating to the need for accommodation, please contact reasonableaccommodation@thyssenkrupp.com.

TK does not:

1.    Send job offers from free email services like Gmail, Rediffmail, Yahoo mail, etc.;
2.    Request payment of any kind from prospective jobseekers or candidates for employment;
3.    Authorize anyone to collect money or agree to any monetary arrangement in return for a job at TK;
4.    Send checks to job seekers; or
5.    Make job offers through third parties. In the event TK uses professional recruitment services through a third party, offers are always made directly by TK and not by any third parties.

PLEASE NOTE: 

1.    TK strongly recommends that potential jobseekers do not respond to such fake solicitations, in any manner;
2.    TK will not be responsible to anyone acting on an employment offer that is not directly made by TK;
3.    Anyone making an employment offer in return for money is not authorized by TK; and
4.    TK reserves the right to take legal action, including criminal action, against such individuals/entities.

TK follows a formal recruitment process through its own HR department and applications are evaluated by its HR department through pre-defined processes. Please visit our official careers website at https://jobs.thyssenkrupp.com/en to view authentic job openings at TK. 

If you receive any unauthorized, suspicious, or fraudulent offers or interview calls, please email us at tkmna.employee.care@thyssenkrupp-materials.com.

We shall not accept any liability towards the representation made in any fraudulent communication or its consequences, and such fraudulent communication shall not be treated as any kind of offer or representation by TK or its group companies and affiliates.