Job Description
Primary responsibility of the Security Enterprise Architect is to work with A&F IT internal teams and external partners to ensure platforms are architected utilizing industry best practices, and within the guidelines set forth by A&F.
Oversee global design and roadmap for Security Initiatives and be the senior-most technical resource as it relates to Security Architecture. Facilitate design patterns which support reuse, automation, self-service, reliability, and scale within the organization. This role requires problem solving, high-communication skills, and the ability to facilitate complex discussions to bring them to resolution. The security architect is responsible for designing dynamically scalable, available, fault-tolerant, and reliable application infrastructure on premise and in the Cloud. Provide technical leadership working with Infrastructure, Security leadership and Enterprise architecture to create a security transformation roadmap and create enterprise standards to be leveraged across future build-outs.
In addition, the architect will be responsible for researching emerging advances with our cloud partners and determine fit as it relates to future A&F roadmaps, often providing critical capabilities evaluation and determination to support facilitating overall application simplification in our total portfolio.
WHAT WILL YOU BE DOING?
- Partnering with Security leadership, Enterprise Architecture, Cloud Center of Excellence, and Infrastructure teams to establish a North Star Vision for our Security strategy
- Evaluate total security portfolio roadmap and recommend sequencing to support prioritization
- Work with Project Portfolio Management team and business stakeholders to conceptualize security work as it relates to individual projects, estimates of new work, create overarching solution design, and ensure both business and technical goals are met with the estimates
- Oversee solutions design in the space of security architecture for project delivery efforts. Advise on steps to achieve modernization goals
- Identify risks and dependencies and collaborate with IT partners to deliver portfolio
- Develop a strategic executable roadmap of evolution of total Security strategy portfolio considering strategic business and IT vision
- Develop, train, and mentor other security team members through project work and/or POC work for solutions design. This includes regular technical updates to the team, informal and formal training sessions, and 1-1 coaching
- Serve as an advanced technical leader and as such, a role model both technically and behaviorally
- Document architectural standards and design patterns for reference in decision-making, development and build practices.
- Perform market assessments on new technology tools to understand capability differences amongst providers and ensure alignment with A&F architectural and security standards.
- Support Application Rationalization efforts to simplify application landscape and standardize on modern technology.
- Lead and/or participate on technical user groups, task forces, and committees that are relevant to security architecture.
- Monitor emerging business and cybersecurity trends and proactively identify emerging cybersecurity use cases and drive innovation opportunities
- Develop technical solutions to help mitigate security vulnerabilities
- Perform related duties as assigned.
WHAT WILL YOU NEED TO BRING?
- Bachelor’s degree in Computer Science or related field and 15+ years experience in various roles of technical leadership within a large-scale organization
- Extensive Knowledge of:
- Identity and Access Management
- Cloud Security and Networking
- Data Security
- Infrastructure Security
- Zero Trust
- Security Monitoring
- Expert level understanding of identity management and lifecycle, privileged access, access governance, contextual access, authorization, authentication and next generation authentication signals, access delegation, directory services, certificate lifecycle management, immutable vs mutable identifiers, and interoperability between the components
- Experience with identity standards and protocols including SAML, OAuth, OIDC, SCIM
- Experience with best-practice and implementation frameworks for zero trust, SSO, MFA, adaptive and risk based authentication, ephemeral credentials, secrets management, role/attribute/policy-based access controls, and cloud native identity and access solutions
- Personal Attributes: Self-starter, Collaborative, Curious, Strong work ethic, Highly motivated, Team oriented
- Relevant experience on Microsoft Azure mandatory
- Relevant experience on other cloud technologies, DevOps practices, Monitoring, Measuring helpful
- Relevant experience building global and scalable solutions
- Proactive solution orientation with a drive to overcome obstacles
- Exposure to multiple, diverse technical configurations, technologies, and processing environments
- Exceptional interpersonal skills, including teamwork, facilitation, and negotiation
- Excellent analytical and technical skills
- Excellent planning and organizational skills