Job
- Level
- Experienced
- Job Field
- IT, Security
- Employment Type
- Part Time
- Contract Type
- Temporary employment
- Location
- Nuremberg
- Working Model
- Hybrid, Onsite
Job Summary
In this role, you will develop security concepts for a Low-Code funding platform, design software adjustments, document security guidelines, and ensure IT security according to customer requirements.
Job Technologies
Your role in the team
- A new technical platform is to be developed, on which the individual funding services (over 100 different services) can be implemented configurably.
- The funding platform should be implemented based on the low-code platform PEGA and the SAP module Social Service Management.
- The funding platform is expected to be developed for the first funding instrument by the end of 2026 and to go live at the turn of the year.
- The organization of the project is divided into several sub-teams, which are to be transitioned into independent projects through the setup of programs.
- The task is to ensure the IT security of the new process in accordance with the customer guidelines.
- Support in activities related to the creation of the Data Protection Impact Assessment.
- Development of security concepts (including documentation as V-Siko).
- Design of requirements and definition of necessary software adjustments to meet the protection needs and security concepts.
- Ensuring the implementation of the defined software adjustments.
- Preparation of all necessary documents related to safety concepts for the procedural registration.
This text has been machine translated. Show original
Our expectations of you
Qualifications
- Specialized knowledge in multi-tier applications.
- Design & Modeling of Software (OOA/OOD, UML).
- EJB container, application server (Oracle WebLogic, Payara).
- Cryptography.
- SAML, SSO, OpenID Connect.
- User and session management.
- Auditing and Logging.
- In-depth knowledge of JavaEE / EJB / Servlets.
- Portal architectures.
- Web frameworks (e.g., JSF).
- Java Script frameworks.
- Common Java tools (Eclipse, JDeveloper, Ant, Maven, JUnit, Hudson/Jenkins).
- RDBMS (Oracle, MS-SQL Server) and NoSQL databases.
- Test concepts (Unit Test, Performance Test).
- Integration architectures (ESB, Webservices, REST, Messaging).
- Multiple operating systems (UNIX, Linux, Windows).
- OpenSAMM as a procedural model.
- Threat analyses.
- Security architectures.
- Secure Design Pattern.
- Secure Design Principles.
- Security requirements according to OWASP.
- Test software for security.
- Metrics for security.
Experience
- Project-specific: Knowledge and experience in multi-tier applications as well as design & modeling of software - specialized knowledge (necessary).
- Knowledge and experience in user and session management - specialized knowledge (necessary).
- Knowledge and experience in threat analysis - advanced knowledge (necessary).
- Knowledge and experience in security metrics - advanced knowledge (necessary).
- Knowledge and experience in JavaEE / EJB / Servlets - advanced knowledge (desirable).
This text has been machine translated. Show original
What we offer
- Project location: Nuremberg (10% on-site).
- Duration: 15.04.2026 - 30.04.2027.
- Volume: 833 hours (including 83 hours on-site).
This text has been machine translated. Show original
Benefits
Work-Life-Integration
Health, Fitness & Fun
Topics that you deal with on the job
Job Locations
This is your employer
mindheads GmbH
mindheads GmbH is an independent company specializing in IT and personnel services, offering a wide range of services including the recruitment and placement of IT experts and executives, as well as planning and implementing IT infrastructure and software solutions.
Description
- Company Type
- Recruiting Agency
- Working Model
- Full Remote, Hybrid, Onsite
- Industry
- Internet, IT, Telecommunication
Security architect
- Location
- Nuremberg
- Working Model
- Hybrid, Onsite
- Diversity
- Open for all genders
