Director, Security Architecture

Englewood Cliffs, New Jersey, United States

Applications have closed

Job Description

As the Director of Security Architecture, you will lead security consulting engagements for projects across all NBCU businesses. You will interface with cyber and technology team leadership, evangelize practical security controls that comply with our policies and draw from industry best practices and drive our overall cybersecurity strategy.

You will:

  • Consult on complex enterprise-wide security assessments and engagements to help engineers see the big picture and incorporate enterprise technology direction into security roadmaps.
  • Communicate the vision and value of what we’re offering. Help grow adoption and increase support for enterprise security.
  • Help advance and improve our cybersecurity architecture review engagement process.
  • Collaborate with the Security Product Management and Engineering teams, as well as other security teams to identify areas of need and opportunity.
  • Serve as an escalation point of contact during security reviews to confirm and if necessary, defend security controls recommended by the security architecture team.
  • Review the work of other security architects and engineers for quality and completeness.
  • Assist cyber leadership on strategic projects.
  • Recruit, mentor, coach, train, develop, and support security talent at all levels.

You need:

  • Security leadership experience. Comfort managing work, processes, and people in a risk-focused team.
  • Strong written and spoken communication. An ability to discuss the what and why of complex technical concepts at various levels.
  • Threat-focused security experience. An understanding of how threats operate, and how we can build the best possible defenses.
  • Enterprise perspective. Insight to adapt security approaches that meet technical scale and diverse organizational processes.
  • A willingness and desire to dig into the technical details – the flexibility to know when to look at strategic plans and high-level views, and when to talk about architectures and tools.
  • Empathy for customers and engineers when designing security requirements. You should be able to recommend security measures that are operationally feasible, but also keep our customers safe and allow the product to rapidly evolve.
  • The ability to serve as a collaborative team member and leader who can take and give constructive feedback.
  • The ability to explain common threats to application components including web & software applications, microservices, containers, orchestration platforms, code repositories, CI/CD pipelines, auth systems, and protocols.  You should be an expert in securing one or more and be able to research the others and make recommendations.  

Bonus Points for:

  • Threat modelling experience.
  • Experience with cloud-based application development and hosting.
  • Understanding of end-to-end secure development methodologies and have expertise in one or more tools/methods used to identify security flaws in applications including: Code Reviews, SAST, DAST, and/or Penetration Testing tools.
  • Experience with threat analysis frameworks, such as MITRE ATT&CK.
  • Experience with varied security controls and regulatory frameworks (PCI-DSS, NIST, SOX, GDPR, CCPA, etc.) and ability to create an environment where compliance flows from security.
  • Knowledge or experience in the media and entertainment space, and awareness of the technical landscape involved in content creation and delivery.

Security Architecture Directors typically have an advanced degree and 10+ years of experience. Relevant experience can substitute for a degree.

This position is eligible for company sponsored benefits, including medical, dental and vision insurance, 401(k), paid leave, tuition reimbursement, and a variety of other discounts and perks. Learn more about the benefits offered by NBCUniversal by visiting the Benefits page of the Careers website. Salary range: $190,000 - $230,000 and bonus eligible.

Additional Information

NBCUniversal's policy is to provide equal employment opportunities to all applicants and employees without regard to race, color, religion, creed, gender, gender identity or expression, age, national origin or ancestry, citizenship, disability, sexual orientation, marital status, pregnancy, veteran status, membership in the uniformed services, genetic information, or any other basis protected by applicable law. NBCUniversal will consider for employment qualified applicants with criminal histories in a manner consistent with relevant legal requirements, including the City of Los Angeles Fair Chance Initiative For Hiring Ordinance, where applicable.

If you are a qualified individual with a disability or a disabled veteran, you have the right to request a reasonable accommodation if you are unable or limited in your ability to use or access nbcunicareers.com as a result of your disability. You can request reasonable accommodations in the US by calling 1-818-777-4107 and in the UK by calling +44 2036185726.

Tags: CCPA CI/CD Cloud Compliance Content creation DAST GDPR Microservices MITRE ATT&CK NIST Pentesting SAST Security assessment SOX Strategy

Perks/benefits: Career development Health care Insurance Medical leave

Region: North America
Country: United States
Job stats:  7  2  1

More jobs like this

Explore more InfoSec / Cybersecurity career opportunities

Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.