Security Architect

  • Full-time
  • Employment Status: Regular

Company Description

Join the thousands of innovators, advocates and forces who are making an impact every day at one of the biggest footwear brands in the world. Whether you love to connect with consumers on the retail floor or want to drive our award-winning powerhouse in new directions, the SKECHERS team is the place to be. Learn more about our brand at http://about.skechers.com. 

Job Description

JOB PURPOSE

The Security Architect at Skechers will lead the development and implementation of an enterprise security architecture to support current and future security and compliance requirements of the organization. The security architect will partner with various teams and business units to effectively balance information assurance against other factors in support of business goals, objectives, and priorities.

The role will involve working closely with various infrastructure, application, and business teams globally to provide guidance and thought leadership in support of the overall enterprise security strategy. 

ESSENTIAL JOB RESULTS

•    Review existing IT infrastructure, applications and systems to identify design gaps and recommend security enhancements as needed
•    Develop standards and practices for data protection including encryption, tokenization, masking, anonymization, etc. based on the organization's data classification criteria and business requirements
•    Develop standards and practices to support infrastructure and operational assurance such as secure network design, remote access controls, secure practices for PAM/IAM, etc. 
•    Provide guidance and direction in the best-practices implementation of security technologies such as firewalls, intrusion prevention/detection, secure email gateways, endpoint protection, SIEM/UEBA, etc.
•    Track developments and changes in the digital business and threat environments to ensure that these are adequately addressed in security strategy plans and architecture artifacts.
•    Create conceptual and technical design artifacts in alignment with long term business and enterprise security strategies
•    Interpret business, technology and threat drivers, and develop practical security roadmaps to deal with these drivers
•    Participate in business and IT initiatives as an information security architecture expert in order to provide of guidance on proper security practices
•    Assist with making key decisions on security initiatives and acting as quality gatekeeper for security signoff
•    Evaluate technical designs, operational methods, business process, and other IT and business artifacts for their alignment with the enterprise security architecture
•    Maintain security architecture compliance in adherence with PCI-DSS, SOX, HIPAA/HITECH, GDPR, CCPA, as well as various other global data privacy requirements, and state and federal regulations
•    Advise and maintain Skechers’ strategic enterprise technology plan; develop and refine architectural governance, standards, and policy within the IT department.


ADDITIONAL RESPONSIBILITIES

•    Other duties as assigned


SUPERVISORY RESPONSIBILITIES 

•    No

Qualifications

JOB REQUIREMENTS

•    Full-stack knowledge of IT infrastructure, including Applications, Databases, Operating systems (Windows, Unix and Linux), Networking (Wired/Wireless, WAN, LAN), Enterprise backup & recovery, Workstations, Servers, and Mobile devices
•    Direct, hands-on experience managing security infrastructure such as firewalls, IPSs, WAFs, endpoint protection, SIEM and log management technology
•    Strong familiarity with SaaS/PaaS/IaaS and associated security implications
•    Experience designing and/or securing the deployment of applications and infrastructure into public cloud services (AWS, Azure, GCP)
•    Strong decision-making capabilities, with a proven ability to weigh the relative costs and benefits of potential actions and identify the most appropriate one
•    An understanding of the impact that digital and emerging business and end-user technologies have on information security posture and risk factors
•    Demonstrated technical expertise in existing security and IT systems and an ability to keep pace with changing security and IT technologies
•    Ability to quantify purchasing and licensing options, estimate labor costs for a given service or technology, and provide TCO and ROI for services or technologies that are replacing existing capabilities
•    Excellent written and oral communication skills, with the specific ability to translate complex technology and information security related concepts into terms that are easily understood by members of other technology teams and lines of business
•    Excellent documentation skills, including experience creating and maintaining architectural governance, process, standards, and policy.
•    A team-focused mentality with the proven ability to work effectively with diverse stakeholders
•    Strong work ethic with attention to detail
•    Ability to excel in a fast paced and rapidly changing environment


EDUCATION & EXPERIENCE

•    Bachelor’s degree in related field or equivalent work experience
•    10+ years of experience across multiple IT security, systems, network, infrastructure, or software engineering roles
•    5+ years of experience in a dedicated information security role
•    GIAC, ISACA, or (ISC)2 Certification a plus

Additional Information

PHYSICAL DEMANDS

While performing the duties of this job, the employee is regularly required to stand; use hands to finger, handle, or feel, and talk or hear.  The employee frequently is required to walk, sit, reach with hands and arms, stoop, and kneel. The employee is occasionally required to sit for long period of times.  

All your information will be kept confidential according to EEO guidelines.

 

Privacy Policy