Senior Cyber Security Architect

About the job

Job Description

Are You Ready to Make It Happen at Mondelēz International?

Join our Mission to Lead the Future of Snacking. Make It Uniquely Yours.

You work with business and IT stakeholders to support a future-state vision in terms of requirements, principles and models in a specific technology, process or function.

How You Will Contribute

You will work closely with the enterprise architecture team to chart technology roadmaps, standards, best practices and guiding principles, providing your subject matter expertise and technical capabilities to oversee specific applications in architecture forums and when participating in workshops for business function requirements. In collaboration with the enterprise architecture and solution teams, you will help evaluate specific applications with a goal to bring in new capabilities based on the strategic roadmap. You will also deliver seamless integration with the existing ecosystem and support project teams in implementing these new technologies, offer input regarding decisions on key technology purchases to align IT investments with business strategies while reducing risk and participate in technology product evaluation processes and Architecture Review Board governance for project solutions.

What You Will Bring

A desire to drive your future and accelerate your career. You will bring experience and knowledge in:

• Defining and driving successful solution architecture strategy and standards
• Components of holistic enterprise architecture
• Teamwork, facilitation and negotiation
• Prioritizing and introducing new data sources and tools to drive digital innovation
• New information technologies and their application
• Problem solving, analysis and communication
• Governance, security, application life-cycle management and data privacy

Responsibilities

• Develops security designs and implementable solutions based on sound enterprise architecture practices
• Providing expert security architecture guidance to technical and non-technical stakeholders
• Identifying and implementing process improvements with an emphasis on automation
• Leading threat modeling exercises around cloud native, SaaS, and cloud-first technologies
• Developing and refining security architecture artifacts (models, templates, and standards) with consumable documentation
• Driving IdAM and RBAC best practices and provide oversight, guidance, and design support of security related initiatives such as network segmentation, IAM, and cloud
• Provides substantive contributions to the program’s strategic roadmap, technical direction, and development of program wide standards and best practices
• Keeps current on developments and changes to threat environments as input into security strategy plans and architecture artifacts
• Define and integrate security-by-design & privacy-by-design requirements and considerations into systems during their implementation, deployment, and support
• Provide consultancy on IAM Best Practices to different stakeholders/teams
• Conducts or facilitates threat modeling of services and applications that tie to the risk and data associated with the service or application
• Coordinates with appropriate compliance and privacy officers to understand sensitive data across systems and recommends controls to ensure this data is adequately secured
• Collaborates with other architects and security practitioners to share best practices and insights
• Act as a SME in application and infrastructure projects to provide security planning advice

Qualifications

• Recent experience translating business objectives and requirements into deployable Zero Trust, modern auth, and hybrid cloud solutions in an Agile/DevOps organization.
• 5+ years of enterprise security experience supporting technologies such as: IAM/IDAM, hybrid cloud, and infrastructure/boundary security
• Industry experience in security architecture, analytics, design, and development of enterprise solutions for multiple technology platforms
• Knowledge of Identity and Access Management (IAM), Cryptography / Key Management, Access Controls and Security Protocols e.g. Multi-factor, SAML, OAuth, OIDC, XACML etc
• Experience establishing a cloud/hybrid cloud security strategy in Azure and/or AWS
• Experience with Agile delivery
• Relevant certifications (CISSP, SANS GIAC, AWS/GCP)
• Effective listening, communication, and influencing competencies to influence outcomes
• Ability to articulate complex topics effectively to technical and non-technical stakeholders
• Experience performing threat modeling and design reviews to assess security implications and requirements for introduction of new technologies

No Relocation support available, however for candidates voluntarily moving internationally some minimal support is offered through our Volunteer International Transfer Policy Business Unit Summary The United States is the largest market in the Mondelēz International family with a significant employee and manufacturing footprint. Here, weproduce our well-loved household favorites to provide our consumers with the right snack, at the right moment, made the right way. We have corporate offices, sales, manufacturing and distribution locations throughout the U.S. to ensure our iconic brands—including Oreo and Chips Ahoy! cookies, Ritz, Wheat Thins and Triscuit crackers, and Swedish Fish and Sour Patch Kids confectionery products —are close at hand for our consumers across the country.

Mondelēz Global LLC is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability, protected Veteran status, sexual orientation, gender identity, gender expression, genetic information, or any other characteristic protected by law. Applicants who require accommodation to participate in the job application process may contact 847-943-5460 for assistance.

Where permitted by applicable law, new hires are required to be fully vaccinated with the COVID-19 vaccine as a condition of employment by their date of hire, unless they are granted a medical , religious, or other accommodation as required by law. You may review the Mondelēz COVID vaccination policy by visiting the US careers website at https://www.mondelezinternational.com/United-States . This COVID-19 vaccine mandate does not apply to several U.S. states that do not permit certain vaccination mandates, including, but not limited to Alabama, Arizona, Arkansas, Florida, Montana, North Dakota, Tennessee, Texas, Utah, and West Virginia.

Job Type RegularTechnology ArchitectureTechnology & Digital