Publix Associate Services is able to offer virtual employment for this position in Texas Only.

** Please note that Publix Associate Services will not sponsor any hire for this position for an H-1B visa or permanent residence.**

Description:

The position will provide security best practices and guidance. The job responsibilities for this position are:

• define the security architecture for application technologies, including:
• micro-service security, API security, web application security, web services security,
• non-web application security,
• middleware security,
• database security, data protection,
• public cloud infrastructure and,
• enterprise identity and access management
• develop principles, best practices, standards, and guidelines for security technologies,
• define current and future security processes and systems so they align with core policies and strategic direction,
• provide consulting services to software development and technology teams to ensure strategic alignment and integration of required security technologies and standards into solution designs,
• help identify weaknesses in security designs and guide how to rectify them,
• provide direction on tools to incorporate within our Software Development Lifecycle to test for vulnerabilities in custom developed applications and adequately,
• provide training, mentoring, and knowledge transfer to analysts, developers, engineers, and other architects to ensure a strong focus on the seamless integration of security controls in a highly distributed environment

Required Qualifications:

• must have a bachelor’s degree in computer science or ananalytical discipline, or equivalent experience,
• must have one or more relevant security qualifications, such as CISA, CISSP, CISSM, GIAC, cloud security, or other information security/technology certifications,
• must have a minimum of eight years' experience in application development, technology architecture, solution strategies formation, design, product selection, testing, and implementation, including at least five years pertaining specifically to security
• must have five years of combined experience in one or more of the following security disciplines (Identity and Access Management, Role-Based Access Control, Single Sign On, OAuth / OpenID / SAML, Web Access Management, Web Services Security, LDAP, PKI/PKM, Encryption, Federation),
• must have a minimum of five years' experience in full lifecycle application development of web applications, non-web applications, web services, and databases using object-oriented analysis and design techniques, preferably in a large enterprise environment,
• must have a minimum of three years of defining security standards, best practices of cloud computing infrastructure, application development methodologies, best practices, and available and emergent services in public cloud provider environments, including Amazon Web Services (AWS) and Microsoft Azure
• must have strong knowledge of various network security technologies such as Firewall, IPS, AV, Micro-segmentation, Zero-Day attack, Cloud security group management, Secure Access Service Edge, Remote Access VPN, and Authentication servers/MFA,
• must have experience with end-to-end system integration from back-end databases through front-end user interfaces with the ability to identify, analyze, and test security interfaces at each integration point,
• must have experience and a strong understanding of API security and API management security,
• must have experience with information security controls and methods for application integration use cases (event messaging rest, web services/SOAP, EDI, message queuing, etc.),
• must have strong interpersonal, communication, and leadership skills,
• must have strong analytical, problem-solving, and conceptual skills,
• must have excellent planning and organizational skills,
• must have the ability to resolve complex business and technical issues and to make decisions using sound business judgment,
• must have a high degree of confidentiality, maturity, self-motivation, commitment, and integrity, and
• must have excellent attendance and punctuality record,

Preferred Qualifications:

• experience with Microsoft Azure Active Directory
• experience with Kubernetes security
• experience with CASB technologies
• an affinity and experience with automation and a development-based approach to security
• hands-on experience with cloud, SaaS, PaaS, aPaaS, and IaaS concepts and technologies
• a working knowledge of ISO 17799, CobIT DS5 (and other security-related controls within CobIT), Sarbanes-Oxley security requirements, PCI Data Security Standards, HIPAA compliance, and other regulatory standards

Frequency of Pay: Monthly

Potential Annual Pay with Bonus: $131,885 - $199,225

Year End Bonus: As a year-end bonus to associates, Publix Associate Services issues one month’s extra pay (pro-rated in the first year) each year if associate remains employed through issue date of the bonus check that year. This is calculated as a 13th month of pay in the Potential Annual Pay with Bonus line above.

Benefits Information:

• 401(k) retirement savings plan
• Group health plan (with prescription benefits)
• Group dental plan
• Group vision plan
• Vacation pay
• Sick pay
• Paid Parental Leave
• Long-term disability insurance
• Company-paid life insurance (with accidental death & dismemberment benefits)
• Tuition reimbursement
• Paycheck direct deposit
• 6 paid holidays (associates can exchange the following holidays with their manager’s approval: New Year’s Day, Memorial Day, Fourth of July, and Labor Day).

Additional Information:

Your application may have additional steps that you will need to complete in order to remain eligible for consideration. Please be sure to monitor your email, including your spam folder, on a daily basis for critical, time-sensitive emails that could require action within 24-48 hours.