Senior Lead Cloud Security Architect
Cox Automotive Inc. · Atlanta, GA · 2 days ago
On-siteInformation Technology$149k–$248k/yrFull-time
About the role
The Senior Lead Cybersecurity Architect is responsible for defining the principles, standards, and design patterns to build secure products and enterprise tools for all of Cox Automotive's multi-cloud and on-premises environments. This position's architecture focus is on securing multi-cloud infrastructure and services and on-premises infrastructure.
Responsibilities
- Identify and recommend relevant cybersecurity policies, standards, procedures, and guardrails.
- Drive the definition of cybersecurity guidelines across the product and enterprise architecture group by leading working groups focused on cybersecurity.
- Develop secure design patterns in conjunction with the product and enterprise architecture group based on standards that can be adopted and implemented by engineering teams.
- Contribute to the development of non-cyber architecture-related governance patterns, policies, and standards.
- Provides complex analysis of potential risks to information systems' security and recommends innovative solutions.
- Work with cross-functional technical, development and delivery teams to ensure the application of smooth, efficient and scalable release processes.
- Engage with business teams and engineering teams to define cybersecurity guardrails that promote efficient and seamless adoption of secure design patterns.
- Participate in security events and incident response to identify gaps in current design and propose solutions to prevent threats from reoccurring.
- Research and evaluate emerging security trends, threats, and technologies, and recommend appropriate solutions and enhancements.
- Collaborate with data users, software and other technical stakeholders to ensure security considerations are factored into and underpin development and operational decision making.
- Collaborate with cybersecurity peers to incorporate vulnerability management, governance, risk and compliance, cyber defense, continuous controls monitoring, and identity governance into cybersecurity standards as a cohesive cybersecurity organization.