Director, Security Architecture
Englewood Cliffs, New Jersey, United States
Applications have closed
Job Description
As the Director of Security Architecture, you will lead security consulting engagements for projects across all NBCU businesses. You will interface with cyber and technology team leadership, evangelize practical security controls that comply with our policies and draw from industry best practices and drive our overall cybersecurity strategy.
You will:
- Consult on complex enterprise-wide security assessments and engagements to help engineers see the big picture and incorporate enterprise technology direction into security roadmaps.
- Communicate the vision and value of what we’re offering. Help grow adoption and increase support for enterprise security.
- Help advance and improve our cybersecurity architecture review engagement process.
- Collaborate with the Security Product Management and Engineering teams, as well as other security teams to identify areas of need and opportunity.
- Serve as an escalation point of contact during security reviews to confirm and if necessary, defend security controls recommended by the security architecture team.
- Review the work of other security architects and engineers for quality and completeness.
- Assist cyber leadership on strategic projects.
- Recruit, mentor, coach, train, develop, and support security talent at all levels.
You need:
- Security leadership experience. Comfort managing work, processes, and people in a risk-focused team.
- Strong written and spoken communication. An ability to discuss the what and why of complex technical concepts at various levels.
- Threat-focused security experience. An understanding of how threats operate, and how we can build the best possible defenses.
- Enterprise perspective. Insight to adapt security approaches that meet technical scale and diverse organizational processes.
- A willingness and desire to dig into the technical details – the flexibility to know when to look at strategic plans and high-level views, and when to talk about architectures and tools.
- Empathy for customers and engineers when designing security requirements. You should be able to recommend security measures that are operationally feasible, but also keep our customers safe and allow the product to rapidly evolve.
- The ability to serve as a collaborative team member and leader who can take and give constructive feedback.
- The ability to explain common threats to application components including web & software applications, microservices, containers, orchestration platforms, code repositories, CI/CD pipelines, auth systems, and protocols. You should be an expert in securing one or more and be able to research the others and make recommendations.
Bonus Points for:
- Threat modelling experience.
- Experience with cloud-based application development and hosting.
- Understanding of end-to-end secure development methodologies and have expertise in one or more tools/methods used to identify security flaws in applications including: Code Reviews, SAST, DAST, and/or Penetration Testing tools.
- Experience with threat analysis frameworks, such as MITRE ATT&CK.
- Experience with varied security controls and regulatory frameworks (PCI-DSS, NIST, SOX, GDPR, CCPA, etc.) and ability to create an environment where compliance flows from security.
- Knowledge or experience in the media and entertainment space, and awareness of the technical landscape involved in content creation and delivery.
Security Architecture Directors typically have an advanced degree and 10+ years of experience. Relevant experience can substitute for a degree.
This position is eligible for company sponsored benefits, including medical, dental and vision insurance, 401(k), paid leave, tuition reimbursement, and a variety of other discounts and perks. Learn more about the benefits offered by NBCUniversal by visiting the Benefits page of the Careers website. Salary range: $190,000 - $230,000 and bonus eligible.
Additional Information
NBCUniversal's policy is to provide equal employment opportunities to all applicants and employees without regard to race, color, religion, creed, gender, gender identity or expression, age, national origin or ancestry, citizenship, disability, sexual orientation, marital status, pregnancy, veteran status, membership in the uniformed services, genetic information, or any other basis protected by applicable law. NBCUniversal will consider for employment qualified applicants with criminal histories in a manner consistent with relevant legal requirements, including the City of Los Angeles Fair Chance Initiative For Hiring Ordinance, where applicable.
If you are a qualified individual with a disability or a disabled veteran, you have the right to request a reasonable accommodation if you are unable or limited in your ability to use or access nbcunicareers.com as a result of your disability. You can request reasonable accommodations in the US by calling 1-818-777-4107 and in the UK by calling +44 2036185726.
Tags: CCPA CI/CD Cloud Compliance Content creation DAST GDPR Microservices MITRE ATT&CK NIST Pentesting SAST Security assessment SOX Strategy
Perks/benefits: Career development Health care Insurance Medical leave
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Staff Security Engineer jobs
- Open Information Security Specialist jobs
- Open Senior Security Analyst jobs
- Open Security Operations Engineer jobs
- Open Senior Cyber Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Senior Information Security Analyst jobs
- Open Product Security Engineer jobs
- Open Cyber Security Specialist jobs
- Open Cybersecurity Analyst jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Principal Security Engineer jobs
- Open Cybersecurity Consultant jobs
- Open Senior Information Security Engineer jobs
- Open Consultant SOC / CERT H/F jobs
- Open IT Security Analyst jobs
- Open Cybersecurity Specialist jobs
- Open Security Specialist jobs
- Open Security Researcher jobs
- Open Chief Information Security Officer jobs
- Open Senior Penetration Tester jobs
- Open Senior Security Architect jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Senior Cyber Security Specialist jobs
- Open IT Security Engineer jobs
- Open Agile-related jobs
- Open ISO 27001-related jobs
- Open Application security-related jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open Pentesting-related jobs
- Open CISM-related jobs
- Open Vulnerability management-related jobs
- Open GCP-related jobs
- Open Analytics-related jobs
- Open SaaS-related jobs
- Open IAM-related jobs
- Open Threat intelligence-related jobs
- Open CISA-related jobs
- Open Security assessment-related jobs
- Open DevOps-related jobs
- Open Java-related jobs
- Open Kubernetes-related jobs
- Open EDR-related jobs
- Open Security Clearance-related jobs
- Open Malware-related jobs
- Open IDS-related jobs
- Open CEH-related jobs
- Open APIs-related jobs
- Open CI/CD-related jobs