Job description

What You Need To Know Open the door to a groundbreaking tech career with an industry leader. Southern Glazer’s Wine & Spirits is North America’s preeminent wine and spirits distributor, as well as a family-owned, privately held company with a 50+ year legacy of success. To create a new era in alcohol beverage sales and service, we’re heavily invested in the most transformative new technologies – and the most brilliant tech professionals. Southern Glazer’s was named by Newsweek as a Most Loved Workplace and is included on the Forbes lists for Largest Private Companies and Best Employers for Diversity. As a full-time employee, you can choose from a full menu of our Top Shelf Benefits, including comprehensive medical and prescription drug coverage, dental and vision plans, tax-saving Flexible Spending Accounts, disability coverage, life insurance plans, and a 401(k) plan. We also offer tuition reimbursement, a wellness program, parental leave, vacation accrual, paid sick leave, and more. We offer continuous learning and career growth in a fast-paced environment where you are respected, your voice is heard, and technology is part of our strategy for success. If you’re looking to fill your glass with opportunity, come join our FAMILY. Overview The Security Architect is a hands-on team player with technical leadership and expertise in designing secure information systems across on-premises and multi-cloud environments. Collaborates closely with enterprise architects to create and implement security standards within SGWS's Enterprise Architecture frameworks. Focuses on identifying security gaps, developing appropriate controls, and determining both functional and non-functional requirements. Additionally, design security solutions that adhere to established standards and uphold Security-by-Design principles. The successful candidate will deeply understand cybersecurity principles, technologies, and industry best practices. Primary Responsibilities • Collaborate with cross-functional teams to integrate security into all aspects of the organization. • Collaborate with stakeholders to identify and prioritize security requirements. • Conduct regular security assessments and risk analyses. • Develop and enforce security policies, standards, and procedures. • Design, enhance, and lead the implementation of scalable security architecture solutions encompassing: • Cloud security controls, standards, and frameworks (AWS, Azure, GCP) • Critical infrastructure, including endpoints, mobile devices, authentication and authorization, logging, and threat detection. • Application security (web application firewalls, secure coding practices) • Data security (encryption, data loss prevention) • Endpoint security (endpoint detection and response, antivirus) • Identity and access management (IAM) • Network security (firewalls, IDS/IPS, segmentation) • Harden the security of Azure, GCP, AWS Identity as a Service (IaaS), and Platform as a Service (PaaS) infrastructure. • Conduct threat modeling, risk assessments, and vulnerability management. • Maintain a security roadmap aligned with industry trends and emerging threats. • Assist DevOps teams with pipeline deployments. • Implement and manage security tools and technologies. • Support incident response teams in investigating and responding to security incidents. • Staying current with emerging threats and technologies Specialized Skills and Technologies • Security architecture and design • Enterprise architecture frameworks (TOGAF, Zachman) • Cloud security (AWS, Azure, GCP) • Network security (firewalls, IDS/IPS, segmentation) • Application security (web application firewalls, secure coding practices) • Data security (encryption, data loss prevention) • Endpoint security (endpoint detection and response, antivirus) • Identity and access management (IAM) • Threat modeling and risk assessment • Security frameworks and standards (NIST, ISO 27001) • Compliance regulations (HIPAA, PCI-DSS, GDPR) • Security orchestration and automation tools • Artificial intelligence and machine learning in security Minimum Qualifications • 10+ years in cybersecurity and security architecture. • Bachelor’s degree in computer science, Cybersecurity, or related field. • Professional security certifications like CISSP, CEH, CISA. • Knowledge of security frameworks (NIST, ISO 27001) and cloud security (AWS, Azure, GCP). • Knowledge of application security and classification of vulnerabilities (OWASP Top Ten). • Knowledge of network applications and services, expertise in the purpose of the application or service, common usage, secure configurations, threats or attacks against the application or service, as well as mitigation strategies • Deep understanding of network attacks, DDoS, Phishing, email protocols/security/spam, encryption, authentication, logging and log analysis, IP and device reputation, and security rules and policies • Knowledge and experience participating in incident response, Intrusion Prevention Systems, Intrusion Detection Systems, SEIM, Endpoint security solutions. • Strong understanding of networking protocols and technologies • Excellent communication and collaboration skills. Enterprise Architecture Framework Experience • Experience with TOGAF, Zachman, or other enterprise architecture frameworks. • Understanding of enterprise architecture concepts and principles • Ability to apply enterprise architecture frameworks to security architecture design. Nice To Have • Master's degree in Cybersecurity or related field • Experience with DevOps and Agile methodologies. • Experience with compliance regulations (HIPAA, PCI-DSS, GDPR) • Experience conducting application vulnerability assessments. • Knowledge of artificial intelligence and machine learning in security • Familiarity with security orchestration and automation tools Physical Demands • Physical demands include a considerable amount of time sitting and typing/keyboarding, using a computer (e.g., keyboard, mouse, and monitor), or mobile device • Physical demands with activity or condition may occasionally include walking, bending, reaching, standing, squatting, and stooping • May require occasional lifting/lowering, pushing, carrying, or pulling up to 20lbs EEO Statement Southern Glazer's Wine and Spirits, an Affirmative Action/EEO employer, prohibits discrimination and harassment of any type and provides equal employment opportunities to all employees and applicants for employment without regard to race, color, religion, age, sex, national origin, disability status, genetics, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state or local laws. This policy applies to all terms and conditions of employment, including recruiting, hiring, placement, promotion, termination, layoff, recall, transfer, leaves of absence, compensation and training. SGWS complies with all federal, state and local laws concerning consideration of a qualified applicant's arrest and/or criminal conviction records. Southern Glazer's Wine and Spirits provides competitive compensation based on estimated performance level consistent with the past relevant experience, knowledge, skills, abilities and education of employees. Unless otherwise expressly stated, any pay ranges posted here are estimates from outside of Southern Glazer's Wine and Spirits and do not reflect Southern Glazer's pay bands or ranges.

Requirements