The Security architect In collaboration with VP Enterprise Architecture , under the general direction of the CISO, will define the architecture and technical vision and strategy of cloud and on-premise security controls across the organization. Additionally, the candidate will operate at the intersection of Business and Technology to deliver security products that improve the security posture of Mdlz’s hybrid, multi-cloud environment. This candidate will be responsible for articulating and translating the overall technical strategy, evaluating solutions and vendors. The security architect will be required to effectively translate business objectives and risk management strategies into specific security processes enabled by security technologies and services.
§Develop and implement security solutions and capabilities that are clearly aligned with business, technology and threat drivers.
-Collaborate with the governance and sourcing team to develop security strategy and roadmaps based on sound enterprise architecture practices.
-Develop and maintain security architecture artifacts (models, patterns, templates, and standards) that can be used to leverage security capabilities in projects and operations.
-Partners with Global enterprise security & governance teams to assess and reduce cloud security risks
-Provides clear written and verbal consulting to projects about security architecture and risk management.
-Champions the implementation of industry leading security standards and best practices across the enterprise.
-Provides advice, analysis, and recommendation on the security products in the security space.
-Develop standards and practices for data encryption and tokenization within the organization based on the organization's data classification criteria.
-Conduct vulnerability assessments and other security reviews of systems, and prioritize remediation based on the risk profile of the assets
-Coordinate with DevOps teams to advocate secure coding practices and escalate concerns related to poor coding practices.
-Participate in security assessments of existing and prospective vendors, especially those with which the organization shares confidential, restricted, regulated or other protected data.
-Support the testing and validation of internal security controls.
-Coordinate with operational and facility-management teams to assess the security of operational technology and Internet of Things (IoT) systems.
-Collaborates to establish multi-cloud cybersecurity architecture with a focus on proactive threat detection, security control enforcement and incident response.
-Collaborates with enterprise and domain architects to develop secure solutions.
-Collaborate with global SOC teams to define and enforce security standards.
-In depth understanding of cloud cybersecurity standards, frameworks and best practices.
-Exceptional communication and interpersonal skills - including negotiation, facilitation, and consensus building skills; ability to influence and persuade, without direct control.
-Progressive information security experience across various information security / information technology risk management domains such as but not limited to: application security, infrastructure security, identity and access management, vulnerability and cyber threat management, security architecture
-Experience in identifying gaps in security architecture.
-An ability to communicate complex and technical issues to diverse audiences, orally and in writing, in an easily understood, authoritative, and actionable manner
-Experience with other cloud service providers such as AWS or Azure across SPI (e.g. SaaS, PaaS, IaaS) models and environments (Public, Private, Hybrid)
-Bachelors or Masters Degree in Computer Science or a related discipline. At least 10 years of experience in the security aspects relating to multiple platforms, operating systems, software, communications, and network protocols, or an equivalent combination of education and work experience. At least 5 years of experience designing, architecting and securing IaaS, Pass, and SaaS cloud deployments. Certifications should include CCSP, CISSP, CCSK, and other cloud vendor specific certification.
**More about this role**
**What you need to know about this position:**
**What extra ingredients you will bring:**
**Education / Certifications:**
**Job specific requirements:**
For office-based, salaried roles at Bakery and Customer Service & Logistics locations, and some remote roles proof of COVID-19 vaccination is required to be eligible for employment. Religious, medical and/or other accommodations as required by law will be considered on a case by case basis. You may review the Mondel?z COVID vaccination policy by visiting the US careers website at https://www.mondelezinternational.com/United-States. This COVID-19 vaccine mandate does not apply to several U.S. states that do not permit certain vaccination mandates, including, but not limited to Alabama, Arizona, Arkansas, Florida, Indiana, Montana, North Dakota, Tennessee, Texas, Utah, and West Virginia.
Mondelez Global LLC is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability, protected Veteran status, sexual orientation, gender identity, gender expression, genetic information, or any other characteristic protected by law. Applicants who require accommodation to participate in the job application process may contact 847-943-5460 for assistance.