Southern Glazer's Wine and Spirits
Enterprise Architect, Security
Southern Glazer's Wine and Spirits, Hollywood, Florida, United States, 33024
What You Need To Know
Open the door to a groundbreaking tech career with an industry leader. Southern Glazer’s Wine & Spirits is North America’s preeminent wine and spirits distributor, as well as a family-owned, privately held company with a 50+ year legacy of success. To create a new era in alcohol beverage sales and service, we’re heavily invested in the most transformative new technologies – and the most brilliant tech professionals. Southern Glazer’s was named by Newsweek as a Most Loved Workplace and is included on the Forbes lists for Largest Private Companies and Best Employers for Diversity.
As a full-time employee, you can choose from a full menu of our Top Shelf Benefits, including comprehensive medical and prescription drug coverage, dental and vision plans, tax-saving Flexible Spending Accounts, disability coverage, life insurance plans, and a 401(k) plan. We also offer tuition reimbursement, a wellness program, parental leave, vacation accrual, paid sick leave, and more.
We offer continuous learning and career growth in a fast-paced environment where you are respected, your voice is heard, and technology is part of our strategy for success. If you’re looking to fill your glass with opportunity, come join our FAMILY.
Overview
The Enterprise Architect Security is a hands-on team player who provides technical security guidance and leadership with the design, installation, operation, service, and maintenance of a variety of information systems across on-premises and multi-cloud environments. This individual understands IT Enterprise Architecture and works with the enterprise architects to ensure that security standards are created and implemented into SGWS's Enterprise Architecture frameworks. This role identifies security gaps, develops controls, determines functional and non-functional security requirements, and designs solutions that meet business objectives while complying with security standards to achieve Security-by-Design principles.
In this executive leadership role, you will oversee a team of solution architects reporting directly to you.
Specialized Skills and Technologies
Security architecture and design
Enterprise architecture frameworks (TOGAF, Zachman)
Cloud security (AWS, Azure, GCP)
Network security (firewalls, IDS/IPS, segmentation)
Application security (web application firewalls, secure coding practices)
Data security (encryption, data loss prevention)
Endpoint security (endpoint detection and response, antivirus)
Identity and access management (IAM)
Threat modeling and risk assessment
Security frameworks and standards (NIST, ISO 27001)
Compliance regulations (HIPAA, PCI-DSS, GDPR)
Security orchestration and automation tools
Artificial intelligence and machine learning in security
Primary Responsibilities
The successful candidate will have a deep understanding of cybersecurity principles, technologies, and industry best practices, and will be responsible for:
Leading the development of a strategic cloud security architecture vision, including standards and frameworks.
Creating security strategies to improve controls and architecture for critical security infrastructure including endpoints, mobile devices, authentication and authorization, logging, and threat detection.
Designing and implementing a robust and scalable security architecture that encompasses:
Network security (firewalls, IDS/IPS, segmentation)
Application security (web application firewalls, secure coding practices)
Data security (encryption, data loss prevention)
Endpoint security (endpoint detection and response, antivirus)
Identity and access management (IAM)
Cloud security (AWS, Azure, GCP)
Developing and maintaining a security roadmap that aligns with industry trends and emerging threats.
Collaborating with cross-functional teams to ensure security is integrated into all aspects of the organization.
Conducting threat modeling, risk assessments, and vulnerability management
Developing and enforcing security policies, standards, and procedures
Security harden Azure, GCP, AWS Identity as a Service (IaaS) and Platform as a Service (PaaS) infrastructure.
Assist DevOps teams with pipeline deployments.
Implementing and managing security tools and technologies
Collaborating with incident response teams to investigate and respond to security incidents.
Staying current with emerging threats and technologies
Lead the design and implementation of security architecture solutions.
Collaborate with stakeholders to identify and prioritize security requirements.
Develop and maintain security standards, policies, and procedures.
Conduct regular security assessments and risk analyses.
Implement and manage security tools and technologies.
Collaborate with incident response teams to investigate and respond to security incidents.
Preferred Qualifications
Master's degree in Cybersecurity or related field
Experience with DevOps and Agile methodologies.
Knowledge of artificial intelligence and machine learning in security
Familiarity with security orchestration and automation tools
Experience with compliance regulations (HIPAA, PCI-DSS, GDPR)
Experience with TOGAF, Zachman, or other enterprise architecture frameworks.
Knowledge of enterprise architecture concepts and principles
Ability to apply enterprise architecture frameworks to security architecture design.
Minimum Qualifications
10+ years of experience in cybersecurity and security architecture
In-depth knowledge of enterprise architecture frameworks (e.g., TOGAF, Zachman)
Bachelor’s degree in computer science, Cybersecurity, or related field
Professional certifications like CISSP, CEH, or CISA
In-depth knowledge of security frameworks and standards (e.g., NIST, ISO 27001)
Experience with cloud security architectures (AWS, Azure, GCP)
Knowledge of web application security, browser security models, and application security vulnerabilities such as the OWASP Top Ten
Deep understanding of network attacks, DDoS, Phishing, email protocols/security/spam, encryption, authentication, logging and log analysis, IP and device reputation, and security rules and policies
High degree of skill and knowledge in managing and participating in incident response, Intrusion Prevention Systems, Intrusion Detection Systems, SEIM, Endpoint security solutions
Knowledge of network applications and services – expertise in the purpose of the application or service, common usage, secure configurations, and threats or attacks against the application or service, as well as mitigation strategies
Strong understanding of networking protocols and technologies
Excellent communication and collaboration skills
Agile Delivery Values
Openness – Team and stakeholders agree to be open about all work and challenges
Commitment – Personally commit to achieving the goals of the team
Respect – Respect your team members to be capable and independent
Courage – You have courage to do the right thing and work on tough problems
Focus – Everyone focus on the work in the sprint and the goal of the scrum team. Rise and fall as a team
Physical Demands
Physical demands include a considerable amount of time sitting and typing/keyboarding, using a computer (e.g., keyboard, mouse, and monitor), or mobile device
Physical demands with activity or condition may occasionally include walking, bending, reaching, standing, squatting, and stooping
May require occasional lifting/lowering, pushing, carrying, or pulling up to 20lbs
EEO Statement
Southern Glazer's Wine and Spirits, an Affirmative Action/EEO employer, prohibits discrimination and harassment of any type and provides equal employment opportunities to all employees and applicants for employment without regard to race, color, religion, age, sex, national origin, disability status, genetics, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state or local laws. This policy applies to all terms and conditions of employment, including recruiting, hiring, placement, promotion, termination, layoff, recall, transfer, leaves of absence, compensation and training. SGWS complies with all federal, state and local laws concerning consideration of a qualified applicant's arrest and/or criminal conviction records. Southern Glazer's Wine and Spirits provides competitive compensation based on estimated performance level consistent with the past relevant experience, knowledge, skills, abilities and education of employees. Unless otherwise expressly stated, any pay ranges posted here are estimates from outside of Southern Glazer's Wine and Spirits and do not reflect Southern Glazer's pay bands or ranges.
Southern Glazer's Wine and Spirits provides equal employment opportunities to all employees and applicants for employment and prohibits discrimination and harassment of any type without regard to race, color, religion, age, sex, national origin, disability status, genetics, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state or local laws. This policy applies to all terms and conditions of employment, including recruiting, hiring, placement, promotion, termination, layoff, recall, transfer, leaves of absence, compensation and training.
Open the door to a groundbreaking tech career with an industry leader. Southern Glazer’s Wine & Spirits is North America’s preeminent wine and spirits distributor, as well as a family-owned, privately held company with a 50+ year legacy of success. To create a new era in alcohol beverage sales and service, we’re heavily invested in the most transformative new technologies – and the most brilliant tech professionals. Southern Glazer’s was named by Newsweek as a Most Loved Workplace and is included on the Forbes lists for Largest Private Companies and Best Employers for Diversity.
As a full-time employee, you can choose from a full menu of our Top Shelf Benefits, including comprehensive medical and prescription drug coverage, dental and vision plans, tax-saving Flexible Spending Accounts, disability coverage, life insurance plans, and a 401(k) plan. We also offer tuition reimbursement, a wellness program, parental leave, vacation accrual, paid sick leave, and more.
We offer continuous learning and career growth in a fast-paced environment where you are respected, your voice is heard, and technology is part of our strategy for success. If you’re looking to fill your glass with opportunity, come join our FAMILY.
Overview
The Enterprise Architect Security is a hands-on team player who provides technical security guidance and leadership with the design, installation, operation, service, and maintenance of a variety of information systems across on-premises and multi-cloud environments. This individual understands IT Enterprise Architecture and works with the enterprise architects to ensure that security standards are created and implemented into SGWS's Enterprise Architecture frameworks. This role identifies security gaps, develops controls, determines functional and non-functional security requirements, and designs solutions that meet business objectives while complying with security standards to achieve Security-by-Design principles.
In this executive leadership role, you will oversee a team of solution architects reporting directly to you.
Specialized Skills and Technologies
Security architecture and design
Enterprise architecture frameworks (TOGAF, Zachman)
Cloud security (AWS, Azure, GCP)
Network security (firewalls, IDS/IPS, segmentation)
Application security (web application firewalls, secure coding practices)
Data security (encryption, data loss prevention)
Endpoint security (endpoint detection and response, antivirus)
Identity and access management (IAM)
Threat modeling and risk assessment
Security frameworks and standards (NIST, ISO 27001)
Compliance regulations (HIPAA, PCI-DSS, GDPR)
Security orchestration and automation tools
Artificial intelligence and machine learning in security
Primary Responsibilities
The successful candidate will have a deep understanding of cybersecurity principles, technologies, and industry best practices, and will be responsible for:
Leading the development of a strategic cloud security architecture vision, including standards and frameworks.
Creating security strategies to improve controls and architecture for critical security infrastructure including endpoints, mobile devices, authentication and authorization, logging, and threat detection.
Designing and implementing a robust and scalable security architecture that encompasses:
Network security (firewalls, IDS/IPS, segmentation)
Application security (web application firewalls, secure coding practices)
Data security (encryption, data loss prevention)
Endpoint security (endpoint detection and response, antivirus)
Identity and access management (IAM)
Cloud security (AWS, Azure, GCP)
Developing and maintaining a security roadmap that aligns with industry trends and emerging threats.
Collaborating with cross-functional teams to ensure security is integrated into all aspects of the organization.
Conducting threat modeling, risk assessments, and vulnerability management
Developing and enforcing security policies, standards, and procedures
Security harden Azure, GCP, AWS Identity as a Service (IaaS) and Platform as a Service (PaaS) infrastructure.
Assist DevOps teams with pipeline deployments.
Implementing and managing security tools and technologies
Collaborating with incident response teams to investigate and respond to security incidents.
Staying current with emerging threats and technologies
Lead the design and implementation of security architecture solutions.
Collaborate with stakeholders to identify and prioritize security requirements.
Develop and maintain security standards, policies, and procedures.
Conduct regular security assessments and risk analyses.
Implement and manage security tools and technologies.
Collaborate with incident response teams to investigate and respond to security incidents.
Preferred Qualifications
Master's degree in Cybersecurity or related field
Experience with DevOps and Agile methodologies.
Knowledge of artificial intelligence and machine learning in security
Familiarity with security orchestration and automation tools
Experience with compliance regulations (HIPAA, PCI-DSS, GDPR)
Experience with TOGAF, Zachman, or other enterprise architecture frameworks.
Knowledge of enterprise architecture concepts and principles
Ability to apply enterprise architecture frameworks to security architecture design.
Minimum Qualifications
10+ years of experience in cybersecurity and security architecture
In-depth knowledge of enterprise architecture frameworks (e.g., TOGAF, Zachman)
Bachelor’s degree in computer science, Cybersecurity, or related field
Professional certifications like CISSP, CEH, or CISA
In-depth knowledge of security frameworks and standards (e.g., NIST, ISO 27001)
Experience with cloud security architectures (AWS, Azure, GCP)
Knowledge of web application security, browser security models, and application security vulnerabilities such as the OWASP Top Ten
Deep understanding of network attacks, DDoS, Phishing, email protocols/security/spam, encryption, authentication, logging and log analysis, IP and device reputation, and security rules and policies
High degree of skill and knowledge in managing and participating in incident response, Intrusion Prevention Systems, Intrusion Detection Systems, SEIM, Endpoint security solutions
Knowledge of network applications and services – expertise in the purpose of the application or service, common usage, secure configurations, and threats or attacks against the application or service, as well as mitigation strategies
Strong understanding of networking protocols and technologies
Excellent communication and collaboration skills
Agile Delivery Values
Openness – Team and stakeholders agree to be open about all work and challenges
Commitment – Personally commit to achieving the goals of the team
Respect – Respect your team members to be capable and independent
Courage – You have courage to do the right thing and work on tough problems
Focus – Everyone focus on the work in the sprint and the goal of the scrum team. Rise and fall as a team
Physical Demands
Physical demands include a considerable amount of time sitting and typing/keyboarding, using a computer (e.g., keyboard, mouse, and monitor), or mobile device
Physical demands with activity or condition may occasionally include walking, bending, reaching, standing, squatting, and stooping
May require occasional lifting/lowering, pushing, carrying, or pulling up to 20lbs
EEO Statement
Southern Glazer's Wine and Spirits, an Affirmative Action/EEO employer, prohibits discrimination and harassment of any type and provides equal employment opportunities to all employees and applicants for employment without regard to race, color, religion, age, sex, national origin, disability status, genetics, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state or local laws. This policy applies to all terms and conditions of employment, including recruiting, hiring, placement, promotion, termination, layoff, recall, transfer, leaves of absence, compensation and training. SGWS complies with all federal, state and local laws concerning consideration of a qualified applicant's arrest and/or criminal conviction records. Southern Glazer's Wine and Spirits provides competitive compensation based on estimated performance level consistent with the past relevant experience, knowledge, skills, abilities and education of employees. Unless otherwise expressly stated, any pay ranges posted here are estimates from outside of Southern Glazer's Wine and Spirits and do not reflect Southern Glazer's pay bands or ranges.
Southern Glazer's Wine and Spirits provides equal employment opportunities to all employees and applicants for employment and prohibits discrimination and harassment of any type without regard to race, color, religion, age, sex, national origin, disability status, genetics, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state or local laws. This policy applies to all terms and conditions of employment, including recruiting, hiring, placement, promotion, termination, layoff, recall, transfer, leaves of absence, compensation and training.