Cybersecurity Integrated Architect Lead Job at Cox Automotive in Sandy Springs

Summary

As a Cybersecurity Integrated Architect Lead, you will play a vital role in promoting and implementing cybersecurity architectural principles, standards, and design patterns. You will guide engineering teams in creating secure products and enterprise tools in both multi-cloud and on-premises environments. This is an essential role that integrates with product and engineering teams, ensuring strong security measures throughout the entire development lifecycle.

With your extensive knowledge of cybersecurity, you will collaborate with teams across the organization to address unique cybersecurity risks associated with various business unit products. This position reports directly to the Director of Integrated Cybersecurity Architecture at Cox Automotive.

Primary Responsibilities

• Clearly communicate cybersecurity guidelines to engineering and business teams while supporting their adoption.
• Maintain continuous integration and communication with engineering teams to advise on architecture decisions and assist with implementing cybersecurity controls.
• Identify and mitigate cybersecurity risks through effective threat modeling of products and enterprise tools.
• Provide expert cybersecurity architecture consultation across major programs and solutions.
• Collaborate with cybersecurity peers to create a cohesive cybersecurity department and represent cybersecurity interests to product and engineering teams.
• Partner with enterprise architecture and infrastructure teams to review existing designs, identify vulnerabilities, and recommend security enhancements.
• Engage in security events and incident response to highlight design gaps and propose effective solutions.
• Educate product architects and engineers about cybersecurity best practices and relevant standards.
• Work closely with legal, security governance, risk, and compliance teams to ensure architectural decisions align with regulatory and contractual requirements.

Minimum Qualifications

• Bachelor's degree in a relevant discipline and at least 6 years of experience. Other combinations may include a master's degree with 4 years of experience or a Ph.D. with 1 year of experience. Alternatively, a total of 10 years of experience in a related field is acceptable.
• A minimum of 4 years specializing in cybersecurity.
• Proven experience in designing, securing, or managing AWS infrastructure and services.
• Ability to effectively convey specific cybersecurity policies and procedures to both technical and non-technical stakeholders.
• Strong customer service, writing, and executive presentation skills.
• Capability to foster productive relationships with stakeholders and collaborate with other cybersecurity teams.
• Consultative skills to navigate complex or controversial topics with employees and senior leadership.
• Effective risk evaluation and actionable recommendations based on potential impact to the business.
• In-depth knowledge of cybersecurity architectures such as zero trust, IaaS, PaaS, SaaS, virtualization, containerization, DevSecOps, and software-defined networking.
• Proven problem-solving skills to address complex cybersecurity challenges with sound business acumen.
• Experience in Agile methodologies.
• Demonstrated ability to implement change and solutions in Fortune 1000 companies.

• Familiarity with cybersecurity frameworks (e.g., ISO 27000, NIST, FFIEC) and industry relevant regulations (e.g., GDPR, FFIEC, GLBA).

Preferred Qualifications

• Experience in developing cybersecurity best practices applicable to all layers of hosting and application stacks in cloud and on-premises environments.
• Knowledge of Identity and Access Management (IAM), cryptography/key management, secrets management, and security protocols (e.g., multi-factor, SAML, OAuth, OIDC).
• Experience in application security implementations and practices.
• Extensive expertise in technologies such as Python, .NET, Java, Spring frameworks, Oracle, serverless functions, and cloud service authentication.
• Experience with firewalls, web application firewalls, and network architectures including DMZ.
• Familiarity with the AWS Well-Architected Framework.
• Experience in establishing strategies for cloud enterprise solutions in AWS, GCP, or Azure.
• Strong understanding of cloud containers or serverless platforms (e.g., EKS, ECS, Lambda, Fargate).
• Experience in critical infrastructure industries (e.g., telecommunications, financial services, defense, government).
• Experience with Big Four consulting or Fortune 500 companies.
• Relevant industry certification (e.g., CISSP, CEH, OSCP, Azure, AWS, CISM, CISA).

Compensation:

Compensation includes a base salary in the range of $119,600.00 to $199,400.00, which may vary based on the role's location, as well as the candidate's experience and skills. Additional compensation may be available through incentive programs.

Benefits:

The company offers flexible vacation policies, seven paid holidays annually, and up to 160 hours of paid wellness time for personal or family needs. Additional paid leave options include bereavement, voting, jury duty, volunteer time, military leave, and parental leave.

Applicants must be authorized to work in the United States without any current or future sponsorship.