This job might no longer be available.
Sr. Director - Enterprise Security Architect
1 year ago
Job Posting Title
Sr. Director - Enterprise Security ArchitectSummary
Aristocrat Leisure. is currently seeking a Senior Director of Enterprise Security Architecture to join a dynamic, multi-national enterprise with a critically important leadership role in the Global Information Security (GIS) organization.
In this role, you will apply critical cyber security expertise to initiatives across all Aristocrat’s lines of business. As a direct report to Aristocrat’s global Chief Information Security Officer (CISO), you will employ your broadly proven expertise to a variety of projects and challenges. You will have nearly limitless opportunity to contribute technology & process solutions to effectively manage cyber risk and to materially deliver security value across the landscape (identify, protect, detect, respond, and recover). Successful candidates must have a rich technical background in cyber security technology and a proven ability to apply that knowledge to solve security risk management challenges and to deliver cyber security value. This role works alongside the Director of GRC, Director of Security Operations, Vice President of Product Security, and key stakeholders across our 3 Business Units (BUs) to lead the GIS function forward.What You'll Do
· Support the design and implementation of an Enterprise Security Architecture strategy that supports the organization's objectives.
· Utilize expertise in cyber security architecture and engineering in support of programs, proposals, and corporate objectives.
· Facilitate architecture and technology reviews of major programs and drive alignment across the various architectural domains (e.g., Business, IT, and Security).
· Align the Enterprise Security capabilities to drive ownership and enterprise delivery.
· Understand, support, and advocate for the Enterprise Security strategy along with assisting in the development and implementation/realization of the various IT security roadmaps.
· Analyze the current security environment to detect critical deficiencies and recommend solutions for improvement through the development of cyber capability reference architectures and knowledge of current threat landscape.
· Analyze industry technology and market trends to determine their potential impact on the enterprise and security posture.
· Work with technology and business stakeholders to realize the implementation of key future state initiatives.
· Proactively identify information security deficiencies and opportunities for improvement to enable effective risk management and to deliver business value.
· Lead stakeholder engagement sessions to capture business and IT requirements in order to evaluate cyber solutions and provide assistance in the development and deployment of technology across the enterprise.
· Direct the creation or modification of cyber defense architectures, cyber engineering plans, and team construction for programs and proposals.
· Manage the recovery of initiatives where cyber security deficiencies have been identified requiring technical, management and policy/governance expertise.
· Evaluate and maximize the usage of network and security technologies, identify security gaps, and evaluate and implement enhancements
· Hire, lead, mentor, and manage Enterprise Security architecture team members.
· Provide regular, timely reporting on information security topics as required.
· Effectively communicate using written, oral, non-verbal, and active listening skills.
What We're Looking For
- Bachelor's degree with 12 years of experience relevant to Cyber Security; additional years of relevant experience will be considered in lieu of a bachelor’s degree.
- Experience developing and deploying cyber security programs, specifically Enterprise Security Architecture to include reference security architecture creation, security program assessment, security operations, incident response, forensic analysis, threat intelligence, identity and access management, data protection, penetration testing, web application security testing, vulnerability management, etc.
- Working knowledge of security products in on-prem, hosted and SaaS models, including GRC platforms, SIEM/SOAR tools, firewalls, vulnerability identification, network security, end point protection, etc.
- Experience with cloud security models, network security architecture development, security policy development, responding to security incidents and coordinating incident activities.
- Experience performing security reviews, identifying gaps in security architecture, and developing security risk management plans.
- Knowledge of Enterprise Security compliance frameworks such as FISMA, NIST 800-53, NIST 800-53A, NIST 800-37, ISO2700 and FIPS 199.
- Strong written, consulting, facilitation, negotiation, and presentation skills.
- Ability to travel up to 25% of the time.
- Cloud Security experience in support of AWS, GCP, and MS Azure IaaS environments preferred.
- Experience with the Cyber Kill Chain and enterprise solutions preferred.
- Knowledge of PCI DSS, GDPR, SOC, and Casino (land/on-line) gaming regulations preferred.
Why Aristocrat?
Aristocrat is a world leader in gaming content and technology, and a top-tier publisher of free-to-play mobile games. We deliver great performance for our B2B customers and bring joy to the lives of the millions of people who love to play our casino and mobile games. And while we focus on fun, we never forget our responsibilities. We strive to lead the way in responsible gameplay, and to lift the bar in company governance, employee wellbeing and sustainability. We’re a diverse business united by shared values and an inspiring mission to bring joy to life through the power of play.
We aim to create an environment where individual differences are valued, and all employees have the opportunity to realize their potential. We welcome and encourage applications from all people regardless of age, gender, race, ethnicity, cultural background, disability status or LGBTQ+ identity. We offer a range of flexible working options through all.flex, our flexible hybrid work model and invite you to have a conversation with us about flexible working. EEO M/F/D/V
- World Leader in Gaming Entertainment
- Robust benefits package
- Global career opportunities
Our Values
- All about the Player
- Talent Unleashed
- Collective Brilliance
- Good Business Good Citizen
The US based roles may require registration with the Nevada Gaming Control Board (NGCB) and/or other gaming jurisdictions in which we operate.
Create Your Profile — Game companies can contact you with their relevant job openings.