Sr. Manager of Cybersecurity Architecture

Job Description The Sr Manager of Architecture is a leadership role reporting to Sr Director of Cybersecurity Services. This role is critical in strategy development and embedding cybersecurity into the development of technology at AAP. This leader will drive efficiency, effectiveness, and continuous improvement within the cybersecurity function along with design and optimize cybersecurity processes, implement controls, and cross-functional alignment. They will collaborate across security, IT, and business teams to mature security operations, enhance risk management, and align cybersecurity with broader business objectives. The key responsibilities of the role include: Security Architecture Strategy and Process: Develop and maintain a security architecture strategy and process that enables the enterprise to build and implement security solutions and capabilities aligned with business, technology, and threat drivers. Strategic Planning and Roadmap: Develop security strategy plans and roadmaps based on sound enterprise architecture practices for all environments, including multi-cloud (AWS, GCP) and on-premises infrastructure. Security Artifacts: Develop and maintain security architecture artifacts (e.g., models, templates, standards, and procedures) that can be used to leverage security capabilities in projects and operations. Threat Intelligence: Track developments and changes in the digital business and threat environment to ensure they are adequately addressed in security strategy plans and architecture artifacts. Lead Multi-Cloud Security Architecture: Define and evolve the security architecture vision and roadmap across AWS and GCP, ensuring alignment with business objectives and risk management strategies. Infrastructure and Reference Architectures: Validate IT infrastructure (firewalls, IPs, WAFs, and anti-malware/endpoint protection systems) and other reference architectures for security best practices and recommend changes to enhance security and reduce risks, where applicable. Security Solution Design & Implementation: Architect and implement advanced security controls for cloud platforms, including network security, encryption, data protection, and workload protection. Identity and Access Management (IAM): Develop and enforce IAM best practices across the enterprise, including robust authentication (SSO, MFA), authorization (least privilege, RBAC), and identity lifecycle management. Security Assessments and Reviews: Conduct security reviews of solution architectures, infrastructure, cloud, applications, and configurations to ensure adherence to security standards, frameworks, and best practices. Security Standards & Compliance: Define corporate security standards and ensure adherence to industry standards and regulatory compliance requirements (e.g., SOC 2, HIPAA, PCI, NIST). Communication & Stakeholder Management: Clearly communicate security risks and solutions to technical and non-technical stakeholders, influencing decision-making and adoption of security best practices. OT and IoT Security: Coordinate with operational and facility management teams to review the security of operational technology (OT) and Internet of Things (IoT) systems. Liaison and Coordination: Serve as the primary liaison between the enterprise architect and the systems security engineer. Coordinate with system owners, common control providers, and system security officers on the allocation of security controls. Security Incident Response: Participate in cloud security incident investigations and remediation efforts, providing architectural and technical expertise. Continuous Improvement: Stay current with the latest trends and threats in multi-cloud security, evaluating new technologies and methodologies to enhance our security posture. Qualifications: 10 years of experience in cybersecurity, Architecture and Engineering with a strong focus on operational excellence. Proven leadership experience in security architectures, security tools and controls, cloud, operations, governance, or risk management. Strong background in process improvement methodologies (Lean, Six Sigma, ITIL, Agile). Experience with cybersecurity frameworks (NIST, ISO 27001, MITRE ATT&CK). Strong understanding of security architecture principles, frameworks, and best practices (e.g., Zero Trust, data isolation, encryption). Experience with container security (e.g., Docker, Kubernetes, Helm) and serverless technologies. Demonstrated experience with threat modeling methodologies like STRIDE, PASTA, and MITRE ATT&CK. Deep hands-on experience designing, implementing, and managing security solutions on different cloud platforms, infrastructure services, applications, including disaster recovery and business continuity plans. Familiarity with security technologies (SIEM, SOAR, EDR, cloud security tools, vulnerability management). Excellent communication and leadership skills to drive alignment across security, IT, and business teams. Preferred Qualifications: Certifications: CISSP, CISM, CISA, ITIL, Lean Six Sigma, PMP, Architecture frameworks. Experience in large-scale, complex organizations or highly regulated industries. Expertise in cybersecurity automation and analytics. California Residents click below for Privacy Notice: https://jobs.advanceautoparts.com/us/en/disclosures Advance Auto Parts, Inc. is a leading automotive aftermarket parts provider that serves both professional installers and do-it-yourself customers. As of October 5, 2024, Advance operated 4,781 stores primarily within the United States, with additional locations in Canada, Puerto Rico and the U.S. Virgin Islands. The company also served 1,125 independently owned Carquest branded stores across these locations in addition to Mexico and various Caribbean islands. Additional information about Advance, including employment opportunities, customer services and online shopping for parts, accessories and other offerings can be found at www.AdvanceAutoParts.com.