Enterprise Security Architect Sr + | Professionals

Description

Worldwide, the Volkswagen Group has a long tradition of dramatic innovations. The Volkswagen Group with its headquarters in Wolfsburg, Germany is one of the world’s leading automobile manufacturers and the largest carmaker in Europe. The Group comprises twelve brands from seven European countries: Volkswagen Passenger Cars, Audi, SEAT, ŠKODA, Bentley, Bugatti, Lamborghini, Porsche, Ducati, Volkswagen Commercial Vehicles, Scania and MAN. Security Architecture and Ongoing Support – 85% Cybersecurity Monitoring & Incident Handling - 15% of time Years of Experience: 10+ years’ experience in a combination of Security Architecture, Security Operations, Data Security and Auditing with at least 5 years of experience in Information Technology architecture, planning and execution in complex environments. Required Education: Desired Education: Skills: Desired Skills: Work Flexibility: Volkswagen Group of America is an Equal Opportunity Employer. We welcome and encourage applicants from all backgrounds, and do not discriminate based on race, sex, age, disability, sexual orientation, national origin, religion, color, gender identity/expression, marital status, veteran status, or any other characteristics protected by applicable laws. This role description is a guideline and does not create contractual rights between the Company and any of its applicants. The Company does not enter into any type of employment contract, implied or written, with its applicants regarding job security. This Organization participates in E-Verify. We maintain a drug free workplace and perform pre-employment substance abuse testing.

Role Summary

• Under the general supervision of the Sr Manager Cybersecurity, the Enterprise Security Architect, Sr will assure that security principles and company security policies are adhered to in the design and delivery of systems and software including ongoing lifecycle. Within this capacity, the Lead Enterprise Security Architect will support cybersecurity architecture activities across assigned projects and initiatives supporting Volkswagen Group of America.” Primary focus will be supporting secure design, implementation, and deployment activities for assigned systems and projects.”

Company

• Volkswagen Group of America, Inc.

Contract

• Unlimited

Department

• IT and Digitalization

Shift

• Full-time

Experience

• Professionals

Qualifications

• Bachelor’s degree in computer science, Information Technology, or related field or equivalent work experience

• Master’s degree in computer science, Information Technology, or related field or equivalent work experience

• Excellent verbal, written, and other interpersonal communication skills-ability to convey complex technical concepts effectively to a variety of audiences

• Ability to analyze processes, procedures, and architectures for information security for security implications

• Ability to communicate security designs, priorities, and concepts to working level and business level colleagues

• Solid analytical/problem solving skills with capability to identify solutions to unusual and complex problems.

• Proven experience in a multinational environment

• Outstanding team and collaboration skills

• Integration - joining people, processes or systems

• Ability to work independently with minimal supervision

• Ability to inform, educate, and influence managers and employees to support goals and initiatives problems.

• Excellent planning, organization, and time management skills.

Required Skills:

• Certified Information Security System Professional (CISSP) certification or equivalent.

• Proven experience as a technical architect in multiple fields of IT (e.g. network, storage, server, client, web/application, cloud, etc.) with the ability to understand security best practices and implications across all fields.

• Strong experience across multiple cybersecurity domains including cloud security, application security, identity & access management, network security, and data protection.”

• Hands-on experience implementing modern security architectures.

• Excellent knowledge of cybersecurity risk evaluations for applications and systems.

• Adept in translating security requirements into actionable controls and measures.

• Background in securing on-prem, cloud and hybrid systems in theory and practice, including secure architecture design concepts.

• Understanding of DevOps principles, "shift left" philosophy.

• Experience implementing DevSecOps pipelines and automated security testing (SAST, DAST, SCA)

• Strong experience with common web application security concepts, such as the OWASP Top 10, and their practical implementation.

• Understanding of application development secure coding techniques.

• Experience with multi-factor authentication,single sign-on, identity federation, identity management and related technologies for both cloud and on-prem environments, and SaaS solutions.

• Experience with vulnerability management methodologies and implementations.

• Solid understand of intrusion detection and prevention solutions and techniques.

• Experience with encryption technology and industry best practices for practical implementation including Key Management (e.g. PKI, HSM, etc.)

• Security audit and assessment experience (e.g., ISO27001, NIST 800-53, etc.)

• Experience and knowledge with Internet protocols, (e.g., TCP/IP, UDP, DNS, SMTP, etc.)

• Experience with the design of systems across countries/geographic regions

• Experience in the automotive industry with specific expertise in securing those environments

• Strong understanding of investigation and breach best practices

• Software Development Life Cycle (SDLC) experience

• Strong knowledge in the following topics

• API security

• Containers, Kubernetes, OpenShift

• Big data analytics or data mining solutions (e.g., Apache Kafka, Apache Spark and databases like Apache Cassandra or Cloudera data lake)

• Security best practices with major platforms such as Microsoft O365,SAP S/4HANA, and Salesforce.

• Securing Public Cloud platforms (AWS, GCP, Azure)

• Experience assessing and securing AI/ML and Generative AI solutions, including risks such as model leakage, prompt injection, data poisoning, and misuse.

• Experience integrating AI capabilities securely into enterprise architectures,

• Understanding of native app development and deployment to iPhone and Android platforms

• Agile/SCRUM

• Knowledge of AEM, FeatureHub

• Knowledge of GraphQL and microservices

• Knowledge of Java, React, Node.js, Jenkins, GitHub

• Ability to travel as needed including international/overseas travel

• Flexibility regarding start time due to early morning conference calls

• Ability to support off-hour Incident Response in case of Priority 1 Security Incidents

Role Responsibilities

• Design, develop, review and implements security designs for new or existing technology system(s).

• Establishing and maintain trust relationships with the business and project teams through active engagement, clear accountability and expectations, and frequent communication.

• Collaborate with other teams and departments to fit security requirements with other constraints, such as business requirements or technology limitations.

• Support business and project teams with cybersecurity architecture guidance, planning and executing cybersecurity related tasks.

• Provide cybersecurity review and recommendations for system and application designs and architectures as relates to adherence to security principles and company security policies, and develop a security risk management plan for noncompliance.

• Provide input on security requirements to be included in statements of work and other appropriate procurement documents.

• Create and maintain architecture design artifacts such as diagrams and documentation.

• Interpret output of activities such as penetration tests and application security scans, translating into actionable remediation requirements.

• Assist in identifying cybersecurity gaps and recommending remediation solutions, staying abreast of emerging security technologies and trends and apply them where appropriate.

• Provide technical guidance to project team members in areas of security best practice and company security policies.

• Coordinate with the Region Americas Security Operations Centers (RA SOC) to ensure new or modified solutions/systems are monitored continuously for security threats.

• Participate in the documentation process detailing the necessary monitoring processes, event analysis methodologies, response processes, communication requirements, and playbooks for incident response for the new or modified product/system/solution.

• Provide technical support and guidance during priority security incident(s).

• Analyze market and industry trends and adjust cybersecurity strategy accordingly.

• Maintain and expand knowledge of best practices and emerging threat landscape.

Brief Role Description

• This position is Career Level 20P+, located in Auburn Hills, MI, with a Role Classification of Hybrid.