Architect, Cybersecurity, GCS (Corporate)
About the role
The GCS - Security Architecture function is responsible for the development of technical security design specifications, integration specifications, standards, requirements, and implementation of appropriate technology architectures to mitigate risks to Carnival Corp and customer information assets. This position will work with all global brands as a project resource providing guidance and signing off on project implementations, firewall change requests and provide general guidance on Cybersecurity best practices.
Essential Functions
- Work with brand IT teams and/or Business stakeholders on their projects to ensure that new systems and/or applications meet security best practices, published minimum security requirements, corporate standards, and policies.
- Provide security architecture and consulting services to business units and IT/OT-Maritime organizations.
- Research, test and implement security tools to scan, monitor and protect computing and networking environments.
- Document and transition security tools to security operations teams.
- Review network designs, applications data flows, system integrations and provide appropriate signoff
- Create high level network designs for GCS security tools and reference architectures documentation
- Review system design of existing applications/systems utilizing a common framework to identify potential vulnerabilities and gaps in the system, helping to mitigate cyber risks and protect sensitive data by proactively addressing potential threats before they can be exploited.
- Build, support and mature GCS security tools and architectural review process
- Build hardening standards for networking and computing environments using industry best practices.
Qualifications
- Bachelor's degree in Cyber Security (Master's degree a plus).
- Recognized industry Cybersecurity Certifications such as CISSP.
- Cloud environment (Azure, AWS, GCP) security and design.
- Application/Web/API/Container Security.
- Extensive knowledge of Windows, Linux, Network and Cloud Security and Cybersecurity best practices.
- Understanding of IAM and Least Privileged access models.
- 5+ Cyber Security in Large Enterprise setting.
- Solid understanding of Cybersecurity risks in architectural designs and recommending mitigating controls.
- Key experience should includes cloud security (Azure/AWS/GCP), identity and access management (IAM), network segmentation, encryption, threat modeling within Enterprise IT and OT environments.
- Strong communication and strategic leadership skills are vital for aligning security with business goals.
Work Conditions
Work primarily in a climate-controlled environment with minimal safety/health hazard potential. Must be able to remain in a stationary position at a desk and/or computer for extended periods of time. This position is classified as “in-office.” As an in-office role, it requires employees to work from a designated Carnival office in South Florida Monday through Thursday each week. Employees may work from their homes on Fridays. Candidates must be located in (or willing to relocate to) the Miami/Ft. Lauderdale area.