Cox Automotive Inc.
Lead Cybersecurity Integrated Architect
Cox Automotive Inc., Atlanta, Georgia, United States, 30383
Overview
Join to apply for the
Lead Cybersecurity Integrated Architect
role at
Cox Automotive Inc. Summary: A Lead of Integrated Cybersecurity Architecture evangelizes cybersecurity architectural principles, standards, and design patterns, and advises engineering teams on secure product and enterprise tool design for multi-cloud and on-premises environments. This role is integrated with product and engineering teams. A separate function defines the architecture guidelines that this role advises on how to implement. By applying deep cybersecurity knowledge to the design and build of secure software products and tools in both multi-cloud and on-premises environments, this role partners with and influences direct and cross-functional teams to address cybersecurity risks unique to a business unit’s risk profile and products. The role reports directly to a Director of Integrated Cybersecurity Architecture at Cox Automotive.
Primary Responsibilities
Communicate cybersecurity guidelines to engineering and business teams and support their adoption.
Maintain integrated, ongoing collaboration with engineering teams to advise on architecture decisions and assist with cybersecurity control implementation.
Identify and mitigate cybersecurity risks based on threat modeling of products and enterprise tools.
Provide cybersecurity architecture advice and consultation across major program and solution levels.
Collaborate with cybersecurity peers to create a cohesive department; act as the on-the-ground cybersecurity representative to product and engineering teams.
Partner with enterprise architecture, infrastructure, and engineering teams to review architecture, identify gaps, and recommend security enhancements.
Participate in security events and incident response to identify design gaps and propose solutions to prevent repeated threats.
Educate product and enterprise architects and engineers on cybersecurity best practices and standards.
Work with legal and security governance, risk and compliance teams to ensure architecture enables regulatory and contractual compliance.
Minimum Qualifications
Bachelor's degree in a related discipline and 6 years of related experience (alternative combinations allowed: master’s degree with 4 years, Ph.D. with 1 year, or 10 years total).
At least 4 years focused on cybersecurity.
Experience designing, securing, or operating AWS infrastructure and services.
Ability to clearly articulate cybersecurity policy objectives to technical and non-technical stakeholders.
Excellent customer service, writing, and executive presentation skills.
Ability to develop a productive working environment with stakeholders and collaborate with Cox cybersecurity teams to implement best practices.
Consultative approach to complex topics with employees, leaders, and/or senior leadership.
Ability to evaluate risks and recommend actions based on impact and likelihood.
Knowledge of current cybersecurity and technology architectures (e.g., zero trust, IaaS, PaaS, SaaS, virtualization, containerization, DevSecOps, SDN) across various environments.
Creative problem solving with solid business acumen; experience with Agile methodologies; experience in Fortune 1000 environments.
Knowledge of cybersecurity frameworks (ISO 27000, NIST, FFIEC) and regulations (e.g., GDPR, FFIEC, GLBA) guiding architectural requirements.
Preferred Qualifications
Experience developing and designing cybersecurity standard methodologies across cloud and on-premises stacks.
Knowledge of IAM, cryptography/key management, secrets management, access controls and security protocols (e.g., MFA, SAML, OAuth, OIDC).
Experience with application security implementations and standard methodologies.
Extensive knowledge in Python, .NET, Java, Spring, Oracle, serverless, cloud patterns, cloud services, and user authentication.
Experience with firewall/WAFs and edge services; strong understanding of DMZ and network architectures.
AWS Well-Architected Framework experience.
Experience implementing cloud enterprise solutions in AWS, GCP, or Azure; strong understanding of cloud containers and/or serverless (e.g., EKS, ECS, Lambda, Fargate).
Experience in national critical infrastructure industries (e.g., telecommunications, financial services, defense, government).
Big Four or Fortune 500 experience.
Relevant certifications (e.g., CISSP, CEH, OSCP, Azure, AWS, CISM, CISA).
Compensation and Benefits Compensation includes a base salary range of
$119,600.00 - $199,400.00
per year; actual base pay may vary by location and candidate qualifications. Position may be eligible for additional compensation, including incentives. Eligible benefits include substantial paid time off, holidays, and wellness leave as described by company policy.
Additional Information Applicants must currently be authorized to work in the United States for any employer without current or future sponsorship.
Seniority level: Mid-Senior level
Employment type: Full-time
Job function: Engineering and Information Technology
Industries: Software Development
#J-18808-Ljbffr
Join to apply for the
Lead Cybersecurity Integrated Architect
role at
Cox Automotive Inc. Summary: A Lead of Integrated Cybersecurity Architecture evangelizes cybersecurity architectural principles, standards, and design patterns, and advises engineering teams on secure product and enterprise tool design for multi-cloud and on-premises environments. This role is integrated with product and engineering teams. A separate function defines the architecture guidelines that this role advises on how to implement. By applying deep cybersecurity knowledge to the design and build of secure software products and tools in both multi-cloud and on-premises environments, this role partners with and influences direct and cross-functional teams to address cybersecurity risks unique to a business unit’s risk profile and products. The role reports directly to a Director of Integrated Cybersecurity Architecture at Cox Automotive.
Primary Responsibilities
Communicate cybersecurity guidelines to engineering and business teams and support their adoption.
Maintain integrated, ongoing collaboration with engineering teams to advise on architecture decisions and assist with cybersecurity control implementation.
Identify and mitigate cybersecurity risks based on threat modeling of products and enterprise tools.
Provide cybersecurity architecture advice and consultation across major program and solution levels.
Collaborate with cybersecurity peers to create a cohesive department; act as the on-the-ground cybersecurity representative to product and engineering teams.
Partner with enterprise architecture, infrastructure, and engineering teams to review architecture, identify gaps, and recommend security enhancements.
Participate in security events and incident response to identify design gaps and propose solutions to prevent repeated threats.
Educate product and enterprise architects and engineers on cybersecurity best practices and standards.
Work with legal and security governance, risk and compliance teams to ensure architecture enables regulatory and contractual compliance.
Minimum Qualifications
Bachelor's degree in a related discipline and 6 years of related experience (alternative combinations allowed: master’s degree with 4 years, Ph.D. with 1 year, or 10 years total).
At least 4 years focused on cybersecurity.
Experience designing, securing, or operating AWS infrastructure and services.
Ability to clearly articulate cybersecurity policy objectives to technical and non-technical stakeholders.
Excellent customer service, writing, and executive presentation skills.
Ability to develop a productive working environment with stakeholders and collaborate with Cox cybersecurity teams to implement best practices.
Consultative approach to complex topics with employees, leaders, and/or senior leadership.
Ability to evaluate risks and recommend actions based on impact and likelihood.
Knowledge of current cybersecurity and technology architectures (e.g., zero trust, IaaS, PaaS, SaaS, virtualization, containerization, DevSecOps, SDN) across various environments.
Creative problem solving with solid business acumen; experience with Agile methodologies; experience in Fortune 1000 environments.
Knowledge of cybersecurity frameworks (ISO 27000, NIST, FFIEC) and regulations (e.g., GDPR, FFIEC, GLBA) guiding architectural requirements.
Preferred Qualifications
Experience developing and designing cybersecurity standard methodologies across cloud and on-premises stacks.
Knowledge of IAM, cryptography/key management, secrets management, access controls and security protocols (e.g., MFA, SAML, OAuth, OIDC).
Experience with application security implementations and standard methodologies.
Extensive knowledge in Python, .NET, Java, Spring, Oracle, serverless, cloud patterns, cloud services, and user authentication.
Experience with firewall/WAFs and edge services; strong understanding of DMZ and network architectures.
AWS Well-Architected Framework experience.
Experience implementing cloud enterprise solutions in AWS, GCP, or Azure; strong understanding of cloud containers and/or serverless (e.g., EKS, ECS, Lambda, Fargate).
Experience in national critical infrastructure industries (e.g., telecommunications, financial services, defense, government).
Big Four or Fortune 500 experience.
Relevant certifications (e.g., CISSP, CEH, OSCP, Azure, AWS, CISM, CISA).
Compensation and Benefits Compensation includes a base salary range of
$119,600.00 - $199,400.00
per year; actual base pay may vary by location and candidate qualifications. Position may be eligible for additional compensation, including incentives. Eligible benefits include substantial paid time off, holidays, and wellness leave as described by company policy.
Additional Information Applicants must currently be authorized to work in the United States for any employer without current or future sponsorship.
Seniority level: Mid-Senior level
Employment type: Full-time
Job function: Engineering and Information Technology
Industries: Software Development
#J-18808-Ljbffr