The
Senior Manager, Security Architecture & Engineering is responsible for establishing and leading Ball Corporation's security architecture and engineering capability. This role sets the technical vision and standards that protect enterprise environments from the design stage forward. You will hold executive accountability across six sub-capabilities: Architecture Risk Review & Governance, Security Platform Engineering, Application Security & Secure SDLC / DevSecOps, Data Protection, Cloud Security, and Infrastructure Security, owning the roadmap that translates security strategy into durable technical controls.
What you will do:Architecture & Roadmap Alignment- Own the enterprise security architecture roadmap and align it to business strategy, IT investment, and risk priorities.
- Represent Security in enterprise architecture forums and executive technology councils.
Governance & Review- Lead Architecture Risk Review & Governance, which includes security review boards, architecture standards, and exception processes.
Cloud & Infrastructure Security- Drive Cloud Security strategy across Azure/AWS, embedding zero-trust and secure-by-design principles.
- Own Data Protection and Infrastructure Security standards for network, compute, and connectivity environments.
Platform & Application Security- Govern Security Platform Engineering by rationalizing the security tooling portfolio and overseeing the platform lifecycle.
- Champion Application Security & Secure SDLC / DevSecOps across software development and product engineering teams.
Team Leadership- Build and lead a high-performing team of architects and engineers.
Tools & Technologies:- Cloud Security: Azure/AWS, zero-trust, cloud-native controls, and CSPM.
- Application Security: OWASP, SAST/DAST, and DevSecOps integration into CI/CD pipelines.
- Data & Infrastructure: Encryption, DLP, data classification, privacy-by-design, network segmentation, micro-segmentation, and endpoint hardening.
- Frameworks: Deep knowledge of security frameworks including NIST CSF, ISO 27001, CIS Controls, and SABSA.
What you bring:- Experience: 12+ years in cybersecurity with 5+ years leading security architecture or engineering functions at enterprise scale.
- Environment Expertise: Demonstrated experience designing and governing security architecture across hybrid, cloud, and industrial environments.
- Education: Bachelor's degree in Computer Science, Engineering, Information Security, or a related technical field; Master's degree preferred.
- Certification: CISSP is required; CCSP, SABSA, or TOGAF (Security) is highly preferred.
- Strategic Execution: Proven track record leading large-scale security architecture transformation programs across multi-cloud and hybrid environments. Advanced proficiency in security tooling portfolio management and enterprise technology evaluation.
- Communication: Exceptional ability to translate complex technical security risk into business-aligned language for executive audiences.
- Advisory: Recognized as a trusted technology advisor by IT, engineering, and product leadership.
