Siemens Energy

A Snapshot of Your Day

Join Siemens Energy as a PLM Security Architect and take ownership of securing Product Lifecycle Management systems across their entire lifecycle. You will design and implement security architectures that ensure strong access control, data protection, and compliance with industry standards while enabling business operations. Working closely with Asset Owners, IT, compliance, and business teams, you translate principles such as least privilege and need-to-know into scalable, auditable security solutions. Your work directly safeguards sensitive product data and supports the organization’s operational goals.

How You’ll Make an Impact

• Design, define, and maintain the overall security architecture for PLM systems in alignment with organizational security policies and industry best practices.
• Define, document, and act as a consulted authority for authorization concepts within PLM systems, applying need-to-know and least-privilege principles.
• Consult Asset Owners on access control approaches such as Role-Based Access Control (RBAC), detailing roles, privileges, and account management processes.
• Establish and govern a comprehensive access control framework covering standard, privileged, and administrator accounts, including account creation, modification, and deletion.
• Implement data protection measures to secure sensitive product data throughout design, manufacturing, and distribution phases.
• Ensure compliance with data privacy regulations applicable to PLM systems and data handling.
• Oversee lifecycle management of privileged accounts, ensuring correct assignment, modification, and removal of identities.
• Enforce two-factor authentication for privileged and service accounts in accordance with security protocols.
• Ensure all user accounts are assigned to single individuals and use unique identifiers to maintain traceability and accountability.
• Define and operate formal processes for assigning and revoking access rights, ensuring traceability and Asset Owner approval.
• Ensure immediate removal or adjustment of access rights upon termination, contract end, or departmental changes.
• Document operating procedures in an operations manual covering architecture, responsibilities, change management, and incident response.
• Apply the four-eyes principle for critical tasks to ensure controlled and monitored execution.
• Develop and maintain incident response plans and procedures for PLM environments.
• Conduct risk assessments and threat modeling to identify vulnerabilities and threats, and define appropriate mitigation strategies and security controls.
• Ensure compliance with security standards and regulations, including full documentation of security-related processes and changes.
• Collaborate with Asset Owners and Asset Managers to define operational requirements and approval workflows.

What You Bring

• At least 7 years of experience in IT security, including a minimum of 5 years focused on PLM security architecture and access control.
• Bachelor’s degree in Computer Science, Information Technology, or a related field; a Master’s degree is preferred.
• Proven experience developing and managing authorization concepts and access control frameworks within PLM systems.
• In-depth understanding of PLM security architecture, including user roles, authorizations, and access control mechanisms.
• Hands-on experience configuring and managing security settings and roles within PLM platforms such as Siemens Teamcenter, PTC Creo, or NX.
• Proficiency in Role-Based Access Control (RBAC) and other access control models relevant to PLM environments.
• Experience managing the lifecycle of user and privileged accounts within PLM systems.
• Familiarity with PLM security best practices and compliance requirements, including ISO 27001 and NIST.
• Ability to identify and mitigate vulnerabilities in PLM systems.
• Knowledge of application security concepts, including CWEs, injection flaws, and secure coding practices aligned with OWASP guidance.
• Experience with scripting or automation for PLM security tasks.
• Experience identifying, responding to, and managing security incidents within PLM environments.
• Ability to address PLM security audit findings and comply with Segregation of Duties (SoD) principles.
• Experience working with IT, compliance, and business teams to align security practices with business objectives.
• Strong analytical, problem-solving, verbal, and written communication skills.
• Certifications such as CISSP or equivalent and ITIL Foundation are beneficial; CISM, CISA, and PLM vendor security certifications are an advantage.

About the Team

You will be part of the SE DC APB PLM TE organization, supporting enterprise PLM platforms that enable Siemens Energy’s global engineering and manufacturing operations. The team focuses on defining secure architectures, governance models, and operational standards that protect sensitive product data while ensuring compliance and audit readiness. Collaboration across IT, compliance, Asset Owners, and business stakeholders is central to how the team operates.

Who is Siemens Energy?

At Siemens Energy, we are more than just an energy technology company. With ~100,000 dedicated employees in more than 90 countries, we develop energy systems of the future, ensuring that the growing energy demand of the global community is met reliably and sustainably. The technologies created in our research departments and factories drive the energy transition and provide the base for one sixth of the world's electricity generation.

Our distributed team is committed to making sustainable, reliable, and affordable energy a reality by pushing the boundaries of what is possible. We uphold a 150-year legacy of innovation that encourages our search for people who will support our focus on decarbonization, new technologies, and energy transformation.

Find out how you can make a difference at Siemens Energy: https://www.siemens-energy.com/employeevideo

Our Commitment to Diversity

Lucky for us, we are not all the same. Through diversity, we generate power. We run on inclusion, and our combined creative energy is fueled by over 130 nationalities. Siemens Energy celebrates character – no matter what ethnic background, gender, age, religion, identity, or disability. We energize society, all of society, and we do not discriminate based on our differences.

Rewards/Benefits

• All employees are automatically covered under Medical Insurance. Company paid considerable Family floater cover covering employee, spouse and 2 dependent children up to 25 years of age.
• Siemens Energy provides an option to opt for Meal Card to all its employees which will be as per the terms and conditions prescribed in the company policy. – As a part of CTC, tax saving measure
• Flexi Pay empowers employees with the choice to customize the amount in some of the salary components within a defined range thereby optimizing the tax benefits. Accordingly, each employee is empowered to decide on the best Possible net income out of the same fixed individual base pay monthly.

https://jobs.siemens-energy.com/jobs