Senior Threat Intelligence Architect

Architect intelligence at scale. Design enterprise resilience. Shape the future of detection.

Location: Malmö, Sweden | Hybrid work, with flexibility built on trust
Group IT Security | Global scope | Strategic architecture role

Your next move could define how a global organisation designs and operationalises threat intelligence across the enterprise.

As our digital footprint expands across cloud, connected products, and global operations, intelligence-driven security architecture becomes critical. At ASSA ABLOY, cyber security is not only about responding to threats — it’s about engineering resilience into our platforms from the ground up.

As our Senior Threat Intelligence Architect, you will design and evolve the global architecture for threat detection, response, and intelligence capabilities. You’ll ensure that intelligence is embedded into security platforms, data flows, and automation — turning insights into measurable defensive outcomes that protect people, businesses, and societies worldwide.

This is a role for a technically deep, strategically minded architect who thrives at the intersection of intelligence, engineering, and enterprise architecture — with the mandate to influence at scale.

Your role
As a senior technical authority within Group IT Security, you will own and govern the enterprise threat management architecture. You will ensure threat intelligence directly shapes detection logic, response workflows, and long-term security design decisions.

Working closely with SOC, Incident Response, engineering, cloud teams, and enterprise architecture, you’ll translate intelligence requirements into scalable, resilient, and compliant security solutions aligned with IT strategy, enterprise architecture principles, and regulatory frameworks, while representing Threat Intelligence in architecture and risk forums.

What you’ll work on

• Own and evolve the global threat management architecture, integrating SIEM, EDR/XDR, SOAR, TIPs, and cloud-native security controls into a cohesive detection ecosystem.

• Design intelligence-driven data pipelines (IOC ingestion, TTP mapping, telemetry requirements, enrichment, automation) that increase detection fidelity and reduce noise.

• Architect detection and threat hunting strategies based on attacker TTPs, leveraging MITRE ATT&CK, kill chain analysis, and advanced threat modelling.

• Provide intelligence-driven architecture guidance for Zero Trust, cloud security (AWS, Azure, GCP), and identity security (Entra ID/IAM).

• Act as technical authority during major incidents — delivering deep threat context and driving post-incident architectural improvements.

• Drive innovation and maturity uplift through automation, AI-driven detection, measurable KPIs, and continuous architectural improvement.

What will help you succeed

• Extensive experience architecting threat detection and intelligence capabilities in complex, global enterprises — not only operating them, but designing them.

• Deep expertise in attacker tactics, techniques, and procedures (TTPs) and frameworks such as MITRE ATT&CK, intelligence lifecycle, and threat modelling methodologies.

• Strong hands-on knowledge of SIEM, SOAR, EDR/XDR, TIPs, telemetry engineering, and detection logic design — including cloud-native integrations.

• Ability to translate intelligence into architecture: defining data flows, telemetry requirements, automation workflows, and defensive controls.

• Experience aligning security architecture with governance frameworks such as ISO 27001, NIST CSF, GDPR, and DORA.

• Senior-level communication skills with the credibility to influence architects, engineers, SOC teams, and executive stakeholders.

Why ASSA ABLOY

• Enterprise impact: Shape global threat detection architecture across a complex international organisation operating in over 70 countries.

• Real architectural ownership: Define standards, blueprints, and long-term roadmaps — not just implementations.

• Strategic influence: Play a key role in shaping enterprise-wide cloud, identity, and Zero Trust architecture through intelligence-driven design.

• Stability with ambition: Join a global market leader investing long-term in cyber maturity and innovation.

• Scandanavian leadership culture: High trust, low ego, flexible work, and sustainable performance.

Ready to architect global cyber resilience?

If you’re ready to design intelligence-driven security at enterprise scale, we want to hear from you.

Apply today. Architect resilience. Enable intelligence. Lead with impact.

We review applications continuously and are committed to building diverse, inclusive teams. We encourage applications from all who see themselves thriving here. To protect your personal data, we do not review applications sent via email or post.

For questions about the role or process, contact Léa Rein, Senior Talent Acquisition Business Partner.

Let’s create a safer and more open world — together.

We are the ASSA ABLOY Group
Our people have made us the global leader in access solutions. In return, we open doors for them wherever they go. With nearly 63,000 colleagues in more than 70 different countries, we help billions of people experience a more open world. Our innovations make all sorts of spaces – physical and virtual – safer, more secure, and easier to access. 

As an employer, we value results – not titles, or backgrounds. We empower our people to build their career around their aspirations and our ambitions – supporting them with regular feedback, training, and development opportunities. Our colleagues think broadly about where they can make the most impact, and we encourage them to grow their role locally, regionally, or even internationally.

As we welcome new people on board, it’s important to us to have diverse, inclusive teams, and we value different perspectives and experiences.