![]()
Role Overview
This role plays a critical part in building and maintaining a secure, resilient environment that enables the organization to effectively detect, contain, and respond to data security threats. The successful candidate will help balance strong security controls with the needs of a highly collaborative, fast-moving business. You will work in an environment that frequently adopts emerging technologies, including cloud and SaaS platforms, and help ensure those technologies are securely integrated into our security architecture and practices.
Responsibilities
- Lead the solutions architecture function to ensure security is embedded early in the development lifecycle for in-house applications, SaaS platforms, infrastructure initiatives, and technology processes.
- Collaborate with business and technology stakeholders to document workflows, system architectures, and data flows, and to define appropriate security controls.
- Apply threat modeling methodologies to identify risks, vulnerabilities, and attack vectors across infrastructure, applications, and data layers.
- Ensure identified security requirements are properly implemented and that solutions are configured in accordance with security best practices.
- Drive security integrations focusing on areas such as access control and authorization, audit logging, secrets management, data protection, and third party integrations.
- Support SaaS and third party security assessments, partnering with service owners, business leaders, and vendors to deliver solutions aligned with CAA security policies.
- Identify security risks and recommend mitigating controls or risk treatment strategies for proposed and existing solutions.
- Develop and deliver security training to technology teams to promote secure practices when onboarding new technologies.
Required Qualifications
- Bachelor's degree with a minimum of 8 years of experience in Information Security.
- At least 3 years of experience in a Security Architect or similar role.
- Proven ability to create and review system architecture diagrams using Lucidchart or equivalent tools.
- Hands-on experience with SaaS and cloud architectures, including Azure, AWS, and Microsoft 365; exposure to SAP S/4HANA, Workday, Salesforce, and other SaaS platforms preferred. Cloud architecture certifications are a plus.
- Strong understanding of cybersecurity frameworks such as NIST CSF and CSA Cloud Controls.
- Professional security certifications (CISM, CISSP, or equivalent experience) preferred.
- Familiarity with operational and governance tools such as JIRA, ServiceNow, and OneTrust.
- Experience working with regulatory and contractual standards including GDPR, CCPA, FINRA, TISAX, and SOX.
- Experience conducting and supporting third party security assessments and standards such as SOC, ISO 27001, and SIG.
- Ability to communicate complex technical and risk concepts clearly and concisely to stakeholders at all levels, including executives.
- Strong organizational, collaboration, and leadership skills with the ability to coordinate teams toward successful outcomes.
- Comfortable working in a dynamic environment where priorities, requirements, and processes evolve continuously.
All qualified applicants will receive consideration for employment without regard to race, color, national origin, age, ancestry, religion, sex, sexual orientation, gender identity, gender expression, marital status, disability, medical condition, genetic information, pregnancy, or military or veteran status. We consider all qualified applicants, including those with criminal histories, in a manner consistent with state and local laws, including the California Fair Chance Act, City of Los Angeles' Fair Chance Initiative for Hiring Ordinance, and Los Angeles County Fair Chance Ordinance.
Never miss an opportunity! Create an alert based on the job you applied for.