Safeway
Overview
Security Architect (Zero Trust) role at Safeway. Responsibilities
Define and guide the research, design, and proof of value of existing and new security software applications and hardware platforms for the Albertsons environment. Collaborate with networking, engineering and business leaders to ensure that security is built in from the start of the environment to improve the security posture without impeding development. Evaluate new and emerging threats to better secure the environment using new and emerging technologies. Act as the face of the InfoSec Architecture and Innovation group to other areas of the organization with an in-depth understanding of the technology landscape. Provide strategic guidance to business and engineering. Additional Responsibilities
Collaborate with line of PISOs and engineering leadership on roadmaps and processes with diverse cybersecurity skills and perspectives to achieve common goals. Assess Zero Trust deployment costs and business impacts of proposed technologies and solutions, prioritizing business benefits and InfoSec priorities. Research and apply security best practices in IT environments (e.g., next-generation firewalls, IDS/IPS, threat management, remote access, Citrix, IPSec VPN, Web filtering). Develop Zero Trust network standards including strategy development, roadmaps, presentations, and technical/non-technical documentation. Support cloud-native networking, orchestration/automation, and network architecture modernization. Develop and coordinate strategies to increase Infrastructure Security knowledge across stores and non-store areas, and mentor junior staff engineers. Provide continuous improvement recommendations and risk mitigations for ZTA implementation across all ZTA pillars. Lead and develop infrastructure security standards and cloud access policies in partnership with other teams. Collaborate on a long-term security roadmap for products to ensure suitability for customers. Qualifications
Minimum 10 years of experience in service engineering, securing infrastructure platforms, program management, network engineering, or a similar role. Minimum 5 years of experience with SASE architecture, firewall/IDS/IPS, large network diagrams, and enterprise collaboration. Solid experience conducting enterprise security reviews and network access models in private and public clouds. Solid experience with next-generation EDR/XDR, PKI, SSL/TLS, NAC, Microsoft Certificate Services. Ability to plan, research, and design security architectures and roadmaps to senior leadership. Prior participation in or responsibility for audits and assessments (e.g., PCI, SOX, HIPAA). Familiarity with industry benchmarks/certifications (e.g., CISO zero trust maturity, CIS Top 20, NIS-CSF). Hands-on proficiency with automation (Python/Ansible, PowerShell) preferred. Location
The position will be based in Pleasanton, CA or Boise, ID. Benefits
Competitive wages paid weekly Associate discounts Health and financial well-being benefits for eligible associates (Medical, Dental, 401k and more) Time off (vacation, holidays, sick pay) Leaders invested in your training, career growth and development An inclusive work environment with talented colleagues who reflect the communities we serve Job Details
Seniority level: Mid-Senior level Employment type: Full-time Job function: Information Technology Industries: Retail Salary and openings vary by location and experience. This posting does not guarantee a role is currently available. #J-18808-Ljbffr
Security Architect (Zero Trust) role at Safeway. Responsibilities
Define and guide the research, design, and proof of value of existing and new security software applications and hardware platforms for the Albertsons environment. Collaborate with networking, engineering and business leaders to ensure that security is built in from the start of the environment to improve the security posture without impeding development. Evaluate new and emerging threats to better secure the environment using new and emerging technologies. Act as the face of the InfoSec Architecture and Innovation group to other areas of the organization with an in-depth understanding of the technology landscape. Provide strategic guidance to business and engineering. Additional Responsibilities
Collaborate with line of PISOs and engineering leadership on roadmaps and processes with diverse cybersecurity skills and perspectives to achieve common goals. Assess Zero Trust deployment costs and business impacts of proposed technologies and solutions, prioritizing business benefits and InfoSec priorities. Research and apply security best practices in IT environments (e.g., next-generation firewalls, IDS/IPS, threat management, remote access, Citrix, IPSec VPN, Web filtering). Develop Zero Trust network standards including strategy development, roadmaps, presentations, and technical/non-technical documentation. Support cloud-native networking, orchestration/automation, and network architecture modernization. Develop and coordinate strategies to increase Infrastructure Security knowledge across stores and non-store areas, and mentor junior staff engineers. Provide continuous improvement recommendations and risk mitigations for ZTA implementation across all ZTA pillars. Lead and develop infrastructure security standards and cloud access policies in partnership with other teams. Collaborate on a long-term security roadmap for products to ensure suitability for customers. Qualifications
Minimum 10 years of experience in service engineering, securing infrastructure platforms, program management, network engineering, or a similar role. Minimum 5 years of experience with SASE architecture, firewall/IDS/IPS, large network diagrams, and enterprise collaboration. Solid experience conducting enterprise security reviews and network access models in private and public clouds. Solid experience with next-generation EDR/XDR, PKI, SSL/TLS, NAC, Microsoft Certificate Services. Ability to plan, research, and design security architectures and roadmaps to senior leadership. Prior participation in or responsibility for audits and assessments (e.g., PCI, SOX, HIPAA). Familiarity with industry benchmarks/certifications (e.g., CISO zero trust maturity, CIS Top 20, NIS-CSF). Hands-on proficiency with automation (Python/Ansible, PowerShell) preferred. Location
The position will be based in Pleasanton, CA or Boise, ID. Benefits
Competitive wages paid weekly Associate discounts Health and financial well-being benefits for eligible associates (Medical, Dental, 401k and more) Time off (vacation, holidays, sick pay) Leaders invested in your training, career growth and development An inclusive work environment with talented colleagues who reflect the communities we serve Job Details
Seniority level: Mid-Senior level Employment type: Full-time Job function: Information Technology Industries: Retail Salary and openings vary by location and experience. This posting does not guarantee a role is currently available. #J-18808-Ljbffr