JOB SUMMARY:

We are seeking a Cybersecurity Architect to design, implement, and enhance the security architecture of our enterprise environment. This role will be responsible for developing security frameworks, ensuring compliance with industry standards, and integrating security controls across on-premises and cloud environments. The Cybersecurity Architect will work closely with IT, DevOps, Application, and Security Operations teams to mitigate risks, enforce security best practices, and align security strategies with business objectives.
The ideal candidate has deep expertise in cybersecurity principles, application security, cloud security, network security, threat modeling, and risk management, with hands-on experience in designing secure architectures for large-scale enterprises.

REQUIRED QUALIFICATIONS:

• Bachelor’s Degree with a Cybersecurity focus
• 10+ years of experience in cybersecurity architecture, security engineering, or a related role.
• Strong knowledge of network security, cloud security, endpoint security, and application security.
• Hands-on experience with security frameworks (NIST, CIS, MITRE ATT&CK, Zero Trust).
• Expertise in AWS, Azure, GCP, and Oracle Cloud security best practices.
• Experience integrating security with Kubernetes, Docker, and microservices architectures.
• Proficiency in IDS/IPS, SIEM, EDR, SOAR, IAM, and encryption technologies.
• Strong understanding of PKI, TLS/SSL, cryptography, and secure authentication mechanisms.
• Experience with DevSecOps, Infrastructure-as-Code (IaC), and secure cloud automation.
• Strong analytical and problem-solving skills, with the ability to communicate security concepts to technical and non-technical stakeholders.
• Knowledge of machine learning & AI in cybersecurity.

PREFERRED QUALIFICATIONS:

• Master’s Degree with a Cybersecurity focus
• Certifications: CISSP, CISM, CISA, CCSP, AWS Security Specialty, Azure Security Engineer, or GIAC (GSEC, GCIH, GCIA).
  If an hourly or salary range is included in this ad it represents the range 7-Eleven in good faith believes is the range of compensation for this role at the time of this posting. The Company may ultimately pay more or less than the posted range. This range is only applicable for jobs to be performed in this state. This range may be modified in the future. No amount is considered to be wages or compensation until such amount is earned, vested, and determinable under the terms and conditions of the applicable policies and plans. The amount and availability of any bonus, commission, long-term incentive compensation, benefits, or any other form of compensation and benefits that are allocable to a particular employee remains in the Company’s sole discretion unless and until paid and may be modified at the Company’s sole discretion, consistent with the law.
  For a general description of all benefits 7-Eleven is offering in the US for the position, please visit this link.
  SSC_Irvin

• Security Architecture Design: Develop and implement enterprise-wide security architectures, covering network, endpoint, cloud, and application security.
• Cloud & Hybrid Security: Design secure cloud architectures for AWS, Azure, GCP, and Oracle, ensuring compliance with cloud security best practices (e.g., CIS Benchmarks, NIST, CSA CCM).
• Security Tooling & Automation: Recommend and integrate security tools (SIEM, SOAR, EDR, XDR, IDS/IPS, WAF, DLP) to enhance visibility and response capabilities.
• Secure SDLC & DevSecOps: Work with development teams to embed security in CI/CD pipelines, conduct secure code reviews, and enforce application security best practices.
• Incident Response & Threat Modeling: Support SOC and Incident Response teams by developing threat models, response playbooks, and attack simulations.
• Regulatory & Compliance Alignment: Ensure security programs comply with regulations such as PCI-DSS, SOX, GDPR, CCPA, HIPAA, CSA CSM, and NIST 800-53.
• Identity & Access Management (IAM): Architect robust IAM solutions, including Multi-Factor Authentication (MFA), Single Sign-On (SSO), and Privileged Access Management (PAM).
• Risk Assessment & Mitigation: Identify security gaps, assess threats, and recommend security solutions to mitigate risks effectively.
• Security Awareness & Training: Guide stakeholders on secure architecture principles and risk mitigation strategies.