Back to search
Materialise Linkedin · Posted 9d ago

Product Security Architect

Leuven

Linkedin
Continue to application Add your email once, then Caio opens the original posting.

Indexed description

We are looking for a Product Security Architect to lead the design and implementation of secure architectures across our products, including Materialise Mimics Flow — a cloud-based platform operating in a regulated medical device environment. This role ensures that security is embedded throughout the entire product lifecycle, from initial concept and design through development, deployment, and maintenance.


What you will do

Secure architecture design

  • Define and review secure system architectures for applications, services, and platforms
  • Design and guide the implementation of:
  • Identity and access management (SSO, OIDC, SAML, authorization models)
  • Tenant isolation and access control
  • Data protection and privacy-by-design (encryption, key management, PII handling)
  • Secrets management and network segmentation
  • Logging, monitoring, and auditability aligned with compliance requirements
  • Secure CI/CD and software supply chain practices

Threat modeling and risk assessment

  • Conduct threat modeling sessions and train the teams to identify potential vulnerabilities early
  • Perform risk assessments and recommend mitigation strategies

Security integration in development

  • Embed security practices into SDLC (Secure SDLC)
  • Guide teams on secure coding standards and design patterns
  • Support the adoption of SAST, DAST, SCA, and other security tools

Engineering collaboration

  • Partner with engineering and product teams to ensure security requirements are clear and actionable
  • Participate in design reviews and architecture discussions

Compliance and standards

  • Ensure adherence to applicable standards (e.g., ISO 27001) and regulations (e.g., GDPR, data protection laws)
  • Contribute to internal security policies and guidelines
  • Align product security initiatives with the broader organizational security roadmap

Vulnerability management and incident support

  • Support vulnerability remediation and coordinate with teams on fixes
  • Assist in security incident analysis and response

Security strategy and roadmap

  • Define and drive a product security roadmap aligned with business goals
  • Promote a security-first culture across teams


Your profile

  • 8+ years of experience in software engineering, system architecture, or application security, including hands-on work in cloud or distributed systems
  • Experience leading architecture reviews and driving security decisions across teams
  • Experience designing and implementing security controls (e.g., IAM, encryption, secrets management, network segmentation) in production environments

Technical skills

  • Strong understanding of security principles (authentication, authorization, cryptography, secure APIs)
  • Conducted threat modeling using STRIDE, mapped threats to CAPEC and CWE, and applied CVSS scoring to prioritize remediation efforts
  • Familiarity with security tools (SAST, DAST, SCA, container security, etc.)
  • Knowledge of cloud security (AWS, Azure, or GCP)

Standards and frameworks

  • Strong stakeholder management skills, with the ability to influence engineering, product, and leadership without direct authority
  • Analytical thinking and problem-solving mindset
  • Comfortable communicating security risks, decisions, and strategy to senior leadership

Will be a plus

  • Security certifications (e.g., CISSP, CISM, CSSLP)
  • Experience with medical device cybersecurity standards (e.g., IEC81001-5-1, MDCG 2019-16 , section 524B(b)(2) of the FDA act)
  • Experience with DevSecOps practices and CI/CD integration
  • Background in regulated industries (e.g., healthcare, finance)
  • Experience with penetration testing


Location and type of contract

  • Leuven, Belgium
  • Full-time
  • Hybrid
  • Mid-senior level
  • CV in English
Free. 20 seconds. No password. See every match in this search.

Create a free Caio profile to unlock more results and save your role and location preferences.

Unlock free search
Want help applying to roles like this? Search Caio for free. If CV tailoring and application tracking get heavy, Full Caio Agent adds a human specialist.
View Full Agent