Sherwin-Williams - Cleveland, OH

posted 27 days ago

Full-time - Senior
Cleveland, OH
Chemical Manufacturing

About the position

The Data Security Architect will collaborate with various teams to design and implement robust data security technology capabilities that are secure, efficient, scalable, and adaptable to the organization's evolving needs. This role involves providing architecture support, mentoring, and training to enhance data security practices and accelerate value creation. The architect will ensure that sensitive data flows are documented and secured, facilitate threat modeling, and provide guidance on security measures to support business objectives.

Responsibilities

  • Security architecture consulting on monthly security governance and DT P1/P2 projects
  • Support design decisions during security solution development and deployment
  • Lead proof of value (PoV) assessment on potential security tools
  • Review business processes from a security perspective and identify solutions to manage risk
  • Research and provide guidance on cyber policies and standards
  • Map cyber technical capabilities to the supported business capabilities
  • Support reference architectures library (i.e., design requirements)
  • Support reusable security patterns library (i.e., consumable security services)
  • Support capability library
  • Assist with roadmaps to mature security services
  • Assist with compensating controls
  • Evaluate tool optimization and identify opportunities to improve efficiency and effectiveness
  • Build relationships and work closely with partners such as Data Security and other security service families, DT Infrastructure & Operations, Application Development, IT Risk Management, Compliance, and Internal Audit
  • Partner with the Global Transformation Office and Enterprise Data & Insights team to align security data architecture with the enterprise data strategy
  • Guide decisions on security capabilities and design
  • Align security services to address the highest risks and support business objectives
  • Support evaluation criteria for security technology proof of value
  • Establish and maintain current state and target state architectures
  • Advocate and promote architecture principles and design requirements
  • Monitor emerging products, technologies, and best practices to improve security maturity
  • Promote the use of industry and SW security standards
  • Mentor security engineers and analysts

Requirements

  • Bachelor's degree in Computer Science, Computer Engineering, or Information Technology or equivalent experience
  • 12+ years of experience in Information Security IT, IT risk management, or Information Technology (IT)
  • 8+ years designing and implementing complex security, audit and compliance systems
  • Experience conducting proof-of-concepts, developing prototypes, or building reference models
  • Experience working in the Manufacturing or Consumer Products industry
  • Ability to understand complex technical concepts and translate them for a non-technical audience

Nice-to-haves

  • Master's degree in Computer Science, Cyber Security, Information Technology, Risk Management, or related field
  • Experience with security architecture frameworks such as SABSA
  • Certifications: CISSP, CISA, or CRISC
  • TOGAF, CEAP, CISSP, CIA, CDCP, CCSP, CEH, CompTIA, Cloud Architecture (AWS/Azure/Google) or similar certifications
  • CSM, SAFe, ITIL, APQC, or similar training/certifications
  • 5+ years of hands-on experience applying systems thinking to create documentation, technical models, reference architecture, whitepapers, and presentations
  • Experience developing and governing architecture standards and principles
  • Experience with common technology control and risk management frameworks like NIST CSF, NIST PF, ISO 27000 series, SOC 2, and compliance regimes like Sarbanes Oxley, GDPR, CCPA, etc.
  • Experience in developing security, audit, and compliance architectures for large-scale, high-risk, strategic projects/products
  • Experience in securing Cloud Platforms
  • 2 years' experience with data loss prevention (DLP) technologies
  • 5 years' experience on data security, data management, or related data projects
  • Experience designing practical security, compliance and audit strategies and communicating the vision to a community of stakeholders
  • Experience applying international constraints and context to enterprise architecture
  • Experience in applying systems and design thinking methodology to architecture practices

Benefits

  • Competitive salary
  • Hybrid work schedule with three days in the office and two days remote
  • Access to professional development opportunities
  • Comprehensive health insurance
  • Retirement savings plan options
  • Paid time off and holidays
© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service