Title: Security ArchitectLocation: PT
At Chain IQ, your ideas move fast.
Chain IQ is a global AI-driven Procurement Service Partner, headquartered in Baar, Switzerland, with operations across main centers and 16 offices worldwide.
We provide tailored, end-to-end procurement solutions that enable transformation, drive scalability, and deliver substantial reductions in our clients' indirect spend.
Our culture is built on innovation, entrepreneurship, ownership, and impact.
Here, your voice matters - bold thinking is encouraged, and action follows ambition.
We are building a modern cloud platform that blends structured workflows, automation and emerging agent capabilities.
This role defines the security patterns that allow the organization to scale safely.
You shape identity, policy, data protection, runtime control and oversight frameworks that support both traditional software and next-generation automated systems.
This is an architectural role focused on forward-looking, adaptable security design, not just hardening infrastructure.
You will help create the baseline for a future where automated agents interact with sensitive data, perform actions on behalf of users and require strong controls, transparency and auditability.
ResponsibilitiesDesign security models that support multi-tenant platforms, diverse user groups and automated system behaviors
Create a clear, scalable identity and access strategy across users, services, workflows and agents
Define policy-based controls for environments, services, data-access layers and workflow execution
Shape data protection standards covering classification, retention, minimization, lineage and usage transparency
Establish runtime controls for safe automation including guardrails, permissible actions, validation steps and human-in-the-loop points
Guide the adoption of secure delivery patterns in engineering and CloudOps including build, deploy and operate practices
Design monitoring and audit structures that make system behavior observable and explainable
Evaluate emerging risks related to automation, agent delegation, external integrations and cross-tenant data flows
What you will work withIdentity and access frameworks such as role, attribute and policy-based access models
Policy engines and validation layers used across infrastructure, APIs, workflows and data surfaces
Runtime controls for distributed systems including API-level permissions, workflow constraints, rate-limiting and isolation patterns
Data governance concepts including classification, encryption, access boundaries and consent-driven use
Observability and audit systems that track behavior across humans, services and automated agents
Security models for advanced automation including safe action sets, agent trust boundaries and control checkpoints
Lightweight design documentation, threat modelling and architecture standards
RequirementsFull professional fluency in English (written and spoken) is mandatory
Strong background in cloud-native security concepts and architectures
Experience with identity, access, policy and data protection in multi-tenant or distributed platforms
Ability to translate security needs into practical, widely adoptable patterns and design systems that support both high operational velocity and strong security posture
Clear communication across technical and non-technical teams
Comfortable designing for evolving requirements and new technical patterns
Capable of transforming complex security concepts into practical designs that teams can adopt
Why this role mattersThe platform processes sensitive commercial, supplier and contract data, and users depend on it for accurate decisions.
As we introduce more automation and intelligent workflows, the need for strong, reliable security becomes central to trust and adoption.
Both customers and internal teams expect systems that are fast, safe and predictable.
This role establishes the security foundation that allows us to innovate quickly while protecting the integrity of our data and the confidence of everyone who relies on the platform.
Join a truly global team.We offer a dynamic and international environment where high performance meets real purpose.
We're proud to be Great Place to Work-certified and even prouder of the people who make that possible.
Let's shape the future of procurement - together.
Chain IQ – Create.
Lead.
Make an impact.Information for agencies: Applications sent or uploaded by placement agencies or similar are not desired, will therefore not be considered and will be deleted.
#J-*****-Ljbffr