Diebold nixdorf automates, digitizes and transforms the way people bank and shop.
as a partner to the majority of the world's top 100 financial institutions and top 25 global retailers, our integrated solutions connect digital and physical channels conveniently, securely and efficiently for millions of consumers each day.
we are seeking a senior security architect.
the information security architect provides industry recognized expert guidance for addressing current security issues but has the foresight to see where the industry is headed and proactively deliver optimal secure solutions.
the architect is expected to think like an adversary and identify how solutions should evolve as the threat landscape changes.
a senior-level role, the architect possesses strong communication and organizational skills, and the ability to guide less experienced coworkers.
the architect possesses a great understanding of computer systems and network architectures and provides technical leadership to delivery and solution design team members.
- delivers strategic thought leadership to the team that extends the information security strategy into the broader business, it and enterprise architecture functions.
- defines and takes ownership of a multiyear roadmap detailing capability, coverage, maturity, and effectiveness model that is used to measure the progress toward a desired target state for security
- evaluate and monitor emerging security architectural trends in the industry and develop a robust reporting methodology for delivering the results of this analysis to management
- evaluate, analyze, and provide direction on the current domestic and international enterprise information security infrastructure to ensure security best practices are implemented and identify areas for improvement
- evaluates the current state and provides future state cloud security reference architecture.
architects friction-less preventative and detective security controls to be built into multi-cloud environments for azure and aws and works to provide guidance on continuous improvement
- provides cybersecurity integration and automation architectures for the next gen cloud native security stack that is identity and api driven.
provides guidance on reducing/mitigating the attack surface on the identity stack and designing for zero-trust identity protections
- deeply understands the threat landscape and emerging threats (i.e. Ransomware) that may impact diebold nixdorf and knows how to architect leading strategies to mitigate risk
- leverages threat intelligence for strategic architectural decisions to recommend security enhancement projects to improve the posture of the organization.
utilizes threat models and countermeasures to prioritize risk remediation and security enhancements
- in depth understanding of vulnerability management best security practices for mobile, app, and infrastructure security and embedding of toolsets within a continuous integration/continuous delivery (ci/cd) pipeline
- provide architectural leadership and design capabilities to ensure network architecture is properly implemented and maintained.
- act as an advisor on technology solutions and it processes
- assist risk management & compliance team with development of domestic and international security policies, standards and reference models to be implemented in the appropriate areas of the networks
- build security reference architectures and patterns that can be implemented by engineering teams to address common security threats
- maintain and update the security model, technologies and standards for system architects and designers
- provide security architecture design services to portfolio teams during their engagement within the established solutions development lifecycle (sdlc)
- serve as the security architecture domain expert for the sdlc by reviewing, developing architectural plans, and preparing architecture documentation and associated artifacts for internal projects through-out the sdlc
- review and contribute to the incident management process to provide architectural solutions to address root cause of incidents
- influence the planning and execution of incident response and postmortem exercises, with a focus on creating measurable benchmarks to show progress (or deficiencies requiring additional attention).
- minimum of 8 - 10 years' experience in the information security industry or demonstrable experience as an information security architect with an additional 4 - 5 years' experience with information security
- experience with microsoft azure and/or amazon web services (aws)
- demonstrated security platform design and implementation experience
- experience driving measurable improvement in monitoring and response capabilities at scale.
- security frameworks (nist, mitre att&ck, kill chain)
- expert visio documentation experience
- excellent verbal communication, organizational, presentation and planning skills
- experience translating business directio