This job is closed
We regret to inform you that the job you were interested in has been closed. Although this specific position is no longer available, we encourage you to continue exploring other opportunities on our job board.
Principal Security Architect / Engineer (Infra, GCP)(Remote Or Hybrid)
Target - Sunnyvale, CA
posted 2 months ago
About the position
As a Principal Security Architect/Engineer at Target, you will play a crucial role in ensuring that systems are designed and built securely. This position involves collaborating with technical and leadership teams across Target Tech to identify security risks, develop mitigation strategies, and integrate security functions into system architecture. You will leverage your deep understanding of security risks and controls to provide guidance and support as new platforms and systems are developed and existing ones are modified. The role requires exceptional communication skills to foster collaboration across the enterprise and drive impactful changes that enhance security and business outcomes.
Responsibilities
- Collaborate with system designers to integrate security requirements into the design phase of IT systems
- Develop and maintain security architecture documentation, including security models, frameworks, and diagrams
- Ensure that security architecture aligns with the organization's business objectives and regulatory requirements
- Understand security risks to identify potential vulnerabilities and threats
- Develop risk mitigation strategies and recommend appropriate security controls
- Design and implement security solutions, including firewalls, encryption protocols, and access control mechanisms
- Collaborate with development and operations teams to ensure secure creation and deployment of IT systems
- Provide guidance on secure coding practices
- Conduct full-stack architecture reviews of products and platforms
- Provide expertise on information security for complex systems and applications in cloud and on-prem environments
- Design security reference architectures and create implementation/configuration guides
- Efficiently assess and communicate risk accurately while negotiating priorities with cross-domain stakeholders
- Collaborate with engineering teams to perform advanced security analysis on complex cloud systems, identifying gaps while contributing to design solutions and security requirements
Requirements
- 4-year degree OR equivalent work experience
- Polyglot programmer comfortable in many languages across different platforms
- 10+ years of hands-on experience in technology, with extensive knowledge of cybersecurity domains including Information Protection, Cloud Security, Networking Security, IAM, Automation, and SIEM
- Proven history of effectively utilizing a variety of security tools and technologies across diverse environments
- Good understanding of security management workflows in large enterprise organizations and complex environments
- In-depth knowledge of security frameworks, standards, and best practices (e.g., NIST, ISO/IEC 27001)
- Strong understanding of network security, cryptography, and secure software development
- Experience with security technologies, such as firewalls, IDS/IPS, SIEM, and DLP
- Excellent analytical, problem-solving, and communication skills
- Stays current on relevant technologies with self-directed learning
- Excellent written and verbal interpersonal skills with strong presentation abilities
- Demonstrated curiosity/learning and seeks out cross-team collaboration opportunities
- Expertise in containerization technologies and tools
- Solid understanding of AI/ML
Nice-to-haves
- Experience with cloud security technologies
- Familiarity with DevSecOps practices
- Knowledge of regulatory compliance requirements
Benefits
- Comprehensive health benefits including medical, vision, dental, and life insurance
- 401(k) plan
- Employee discount
- Short term and long term disability
- Paid sick leave
- Paid national holidays
- Paid vacation
