Job Summary : The Security Solutions Architect will play a pivotal role in safeguarding our digital ecommerce platform, specifically focusing on the Order Management System (OMS).
This position will be responsible for designing, implementing, and maintaining robust security architectures to protect sensitive customer data and ensure compliance with industry standards and regulations.
Key Responsibilities :
Security Architecture Design :
Develop and maintain the security architecture for the ecommerce order management system. Ensure the architecture aligns with industry standards, regulatory requirements, and best practices.
Collaborate with development, infrastructure, and operations teams to integrate security into the system design and deployment processes.
Threat Modeling and Risk Assessment :
Conduct comprehensive threat modeling and risk assessments for the OMS. Identify potential vulnerabilities and threats, and develop mitigation strategies.
Establish and maintain a risk register to track and manage identified risks.
Secure SDLC Implementation :
Integrate security into the software development lifecycle. Provide guidance on secure coding practices and conduct code reviews to identify and remediate security vulnerabilities.
Implement automated security testing tools and processes.
Compliance and Regulatory Adherence :
Ensure compliance with relevant regulatory requirements such as GDPR, CCPA, and PCI-DSS. Develop and maintain security policies, standards, and procedures.
Conduct regular security audits and assessments to ensure ongoing compliance.
Incident Response and Management :
Develop and maintain incident response plans and procedures. Lead incident response efforts for security breaches and vulnerabilities related to the OMS.
Coordinate with internal and external stakeholders to address and resolve security incidents.
Stakeholder Collaboration :
Work closely with business, IT, and security stakeholders to align security initiatives with business objectives. Provide security expertise and guidance to project teams throughout the project lifecycle.
Communicate security risks and recommendations to senior management and business stakeholders.
Responsibilities :
Directs the identification and recommendation of appropriate solutions, upgrades, replacements, or decommissioning options incorporating business and technology productivity, usability, and total cost of ownership.
Develops and executes solutions which further reduce the percentage of time spent on reactive work.
Works with business and technology subject matter experts to derive end-to-end solutions that provide value to the enterprise and these solutions comply with standards and guidelines set forth by Enterprise Architecture.
Interacts with business leadership to establish a solid working relationship between IT and operations.
Must be able to model solutions from conceptual, logical, and physical perspectives (N+ views)
Creates artifacts that define the N+ views of the end-to-end solution (context, data domain, logical, physical, and deployment).
Facilitates the requirements refinement process; with special focus on service-level requirements.
Collaborates with other parts of IT to ensure a thorough understanding of the proposed architecture; must be willing to accept and factor-in feedback.
Participates in design reviews to ensure traceability of the design to the proposed solution architecture.
Contributes to enterprise guidelines, standards and principles as precedents are discovered and adopted.
Articulates architecture decisions behind the solution architecture.
Takes initiative in working with business stakeholders to ensure their requirements (immediate and future) will be addressed by IT.
Develops a thorough understanding of Academy's policies, procedures, and safety rules.
Duties may change; Team Member may be required to perform other duties as assigned.
Skills :
Ability to bridge the gap between waterfall and agile methodologies.
Strong interpersonal, written, and verbal communication skills, and interface effectively with individuals at various levels.
Ability to build consensus around proposed solutions.
Ability to work well independently, as well as effectively contribute to a team environment.
Analytical, with strong problem-solving abilities and creative resolution skills.
Self-motivated, with the ability to work on multiple projects in a fast-paced environment.
Preferred skills include strong optimization skills stochastic modeling, optimization algorithms, holistic planning.
Ability to understand and derive lower-level roadmaps with business leadership to help set requirements' context.
Strong Microsoft Office program experience, including Excel, Word and PowerPoint and SharePoint.
Work Experiences :
- years of experience related to IT Management or other information technology solutions architecture role.
- years of retail experience is preferred.
Experience in Data Integration patterns and tools.
Experience in designing solutions in cloud and hybrid cloud environments.
Understanding of networks and security as it relates to integration and data flow between systems.
Solid grasp of security in both onprem as well as cloud environments.
Familiar with vendor management tools and integration with EA tools.
Knowledge of IT Architectural frameworks like TOGAF and Zachman.
Knowledge of retail supply chain and planning, including merchandising preferred.
At least two implementations of enterprise class supply chain management systems preferred.
Strong experience in services (SOA / Microservices) design preferred.
Strong experience with retailing COTS enterprise class applications preferred.
Education :
Bachelor's degree in Computer Science, Computer Engineering, Systems Engineering or other related Engineering discipline or relevant field of study required.