Brief Role DescriptionThis position is
Career Level 20P+, located in Auburn Hills, MI, with a Role Classification of
Hybrid.Role SummaryUnder the general supervision of the Sr Manager Cybersecurity, the Enterprise Security Architect, Sr will assure that security principles and company security policies are adhered to in the design and delivery of systems and software including ongoing lifecycle. Within this capacity, the Lead Enterprise Security Architect will support cybersecurity architecture activities across assigned projects and initiatives supporting Volkswagen Group of America." Primary focus will be supporting secure design, implementation, and deployment activities for assigned systems and projects."
Role ResponsibilitiesSecurity Architecture and Ongoing Support - 85%- Design, develop, review and implements security designs for new or existing technology system(s).
- Establishing and maintain trust relationships with the business and project teams through active engagement, clear accountability and expectations, and frequent communication.
- Collaborate with other teams and departments to fit security requirements with other constraints, such as business requirements or technology limitations.
- Support business and project teams with cybersecurity architecture guidance, planning and executing cybersecurity related tasks.
- Provide cybersecurity review and recommendations for system and application designs and architectures as relates to adherence to security principles and company security policies, and develop a security risk management plan for noncompliance.
- Provide input on security requirements to be included in statements of work and other appropriate procurement documents.
- Create and maintain architecture design artifacts such as diagrams and documentation.
- Interpret output of activities such as penetration tests and application security scans, translating into actionable remediation requirements.
- Assist in identifying cybersecurity gaps and recommending remediation solutions, staying abreast of emerging security technologies and trends and apply them where appropriate.
- Provide technical guidance to project team members in areas of security best practice and company security policies.
Cybersecurity Monitoring & Incident Handling - 15% of time- Coordinate with the Region Americas Security Operations Centers (RA SOC) to ensure new or modified solutions/systems are monitored continuously for security threats.
- Participate in the documentation process detailing the necessary monitoring processes, event analysis methodologies, response processes, communication requirements, and playbooks for incident response for the new or modified product/system/solution.
- Provide technical support and guidance during priority security incident(s).
- Analyze market and industry trends and adjust cybersecurity strategy accordingly.
- Maintain and expand knowledge of best practices and emerging threat landscape.
QualificationsYears of Experience:10+ years' experience in a combination of Security Architecture, Security Operations, Data Security and
Auditing with at least 5 years of experience in Information Technology architecture, planning and execution in complex environments.
Required Education:- Bachelor's degree in computer science, Information Technology, or related field or equivalent work experience
Desired Education:- Master's degree in computer science, Information Technology, or related field or equivalent work experience
Skills:- Excellent verbal, written, and other interpersonal communication skills-ability to convey complex technical concepts effectively to a variety of audiences
- Ability to analyze processes, procedures, and architectures for information security for security implications
- Ability to communicate security designs, priorities, and concepts to working level and business level colleagues
- Solid analytical/problem solving skills with capability to identify solutions to unusual and complex problems.
- Proven experience in a multinational environment
- Outstanding team and collaboration skills
- Integration - joining people, processes or systems
- Ability to work independently with minimal