The Sherwin-Williams Company
Data Security Architect
The Sherwin-Williams Company, Cleveland, Ohio, us, 44101
The Data Security Architect will collaborate with security architects, technical leads, and other partners to design optimal data security technology capabilities that are secure, efficient, scalable, resilient, and adaptable to the organization's changing needs. This role provides architecture support, mentoring, and training to increase the maturity of our data security architecture practices and accelerate value creation. The Data Security Architect will synchronize with the Data Security, Privacy, and Enterprise Data & Insights teams to ensure data flows of sensitive information are documented and recommend controls to ensure this data is adequately secured. The Data Security Architect facilitates threat modeling of services and applications to understand the risk and data associated with the service or application. The Data Security Architect is expected to provide transformational guidance, tactical advice, and technical expertise in architecture deliverables related to securing data. This position will identify opportunities for processes and technical controls to mature data security access capabilities such as data loss prevention, encryption, data classification, and data handling across the information lifecycle. The Data Security Architect is a thought leader who reviews current security measures and recommends enhancements to support the security strategy and enable the business. This role will engage with various partners to translate business objectives into security capabilities. The Data Security Architect will define target architectures and partner with the solution delivery teams to ensure that the business benefit is realized. Responsibilities: Security architecture consulting on monthly security governance and DT P1/P2 projects Support design decisions during security solution development and deployment Lead proof of value (PoV) assessment on potential security tools Review business processes from a security perspective and identify solutions to manage risk Research and provide guidance on cyber policies and standards Map cyber technical capabilities to the supported business capabilities Support reference architectures library (i.e., design requirements) Support reusable security patterns library (i.e., consumable security services) Support capability library Assist with roadmaps to mature security services Assist with compensating controls Evaluate tool optimization and identify opportunities to improve efficiency and effectiveness Build relationships and work closely with partners such as Data Security and other security service families, DT Infrastructure & Operations, Application Development, IT Risk Management, Compliance, and Internal Audit Partner with the Global Transformation Office and Enterprise Data & Insights team to align security data architecture with the enterprise data strategy Additional Responsibilities Guide decisions on security capabilities and design Align security services to address the highest risks and support business objectives Support evaluation criteria for security technology proof of value Establish and maintain current state and target state architectures Advocate and promote architecture principles and design requirements Monitor emerging products, technologies, and best practices to improve security maturity Promote the use of industry and SW security standards. Mentor security engineers and analysts This position is not eligible for sponsorship for work authorization now or in the future, including conversion to H1-B visa. This position has a hybrid work schedule with three days in the office and the option for working remotely two days. Job duties include contact with other employees and access confidential and proprietary information and/or other items of value, and such access may be supervised or unsupervised. The