Solution Architect - Security Risk Management

Company: Costco IT
Location: Seattle
Posted on: March 26, 2025

Job Description:

Costco IT is responsible for the technical future of Costco Wholesale, the third largest retailer in the world with wholesale operations in fourteen countries. Despite our size and explosive international expansion, we continue to provide a family, employee centric atmosphere in which our employees thrive and succeed.This is an environment unlike anything in the high-tech world and the secret of Costco's success is its culture. The value Costco puts on its employees is well documented in articles from a variety of publishers including Bloomberg and Forbes. Our employees and our members come FIRST. Costco is well known for its generosity and community service and has won many awards for its philanthropy. The company joins with its employees to take an active role in volunteering by sponsoring many opportunities to help others.Come join the Costco Wholesale IT family. Costco IT is a dynamic, fast-paced environment, working through exciting transformation efforts. We are building the next generation retail environment where you will be surrounded by dedicated and highly professional employees.Solution Architects create IT architecture & design solutions based on business requirements, industry trends, and technology options. Solution Architects are responsible and accountable for the solution architecture in partnership with enterprise architects, domain architects, and engineering teams. Solution Architects partner with the delivery team for solution planning, delivery, detailed design and implemented solutions. Solution Architects ensure the implemented solutions are consistent with the approved architecture. Solution Architects communicate, mentor, and lead teams based on program or project needs for solution delivery.The role of every Security Compliance Risk team member is to support the overarching values and business goals of Costco Wholesale as they relate to meeting legal, ethical, and regulatory obligations; protecting members' and employees' data; and maintaining a secure and compliant technology environment for our operations.This Security Compliance Risk Solution Architect position is mission-critical and will be a key member of the team that will design and develop security and compliance operations, services, and products that will enable Costco IT in their security and compliance maturity journey. The Solution Architect will take a product led approach and is responsible for enabling compliance by default and supporting a scalable, data driven security & compliance architecture as a way to improve maturity and accountability across the IT division.This position will also serve as an internal trusted advisor across multiple departments, teams, and other IT leaders in an effort to move quickly and accurately; promote and foster collaboration and standardization across multiple internal technology groups based on common technology interests and priorities.If you want to be a part of one of the worldwide BEST companies "to work for", simply apply and let your career be reimagined.ROLE

• Implements a product lead approach to the development of future state for the security risk program.
• Participates in security governance planning, decisions, and coordination.
• Supports security risk and compliance leadership in developing the strategy, product definition, roadmap and delivery to ensure compliance by default and the build out of a scalable, data driven compliance architecture.
• Understands security, risk and compliance gaps and collaborates cross-functionally to gain product roadmap alignment and resource plans to ensure on-time product and service delivery.
• Architects and designs risk solutions and services to meet the needs of the security, compliance and the business, in alignment with the overall IT and InfoSec strategies.
• Collaborates with other architects in developing complex end-to-end enterprise solutions.
• Maintains and improves teams' key fundamentals, including: Metrics and KPIs, Objective Key Results (OKRs), product & service definitions, and product roadmaps.
• Proactively automate technical validation of controls and identification of technical risks, and leverage risk register data to determine root cause.
• Creates and maintains appropriate product and architectural artifacts, such as conceptual solution architecture, system diagrams, logical data and process flow diagrams, ROI calculations, roadmaps, position papers, etc.
• Continues personal growth in technology, business knowledge, and Costco policies and platforms.
• Documents solutions architecture design and analysis work, and communicates architectural decisions that impact solution.
• Adheres to Costco's Architectural Framework and Governance model.REQUIRED
• 3+ years' in a Security Architect, Security/Compliance Product Manager, Security/Compliance Engineering or similar.
• Extensive knowledge in security risk & compliance management, policy and standard development.
• Experience in a product lead environment, with a demonstrated ability to work in agile environments focused on fast and continual value delivery.
• Innovative, creative, and highly responsive, with a strong sense of urgency.
• Professional information technology experience in solutioning, designing, development, and delivering computer systems.
• Willing to share knowledge and assist others in understanding technical and business topics.
• Ability to handle highly confidential information in a strictly professional and ethical manner.
• Excellent verbal and written communication skills (facilitation, negotiation, conflict resolution) at all levels; ability to clearly communicate information in ways that can be easily understood by both technical and non-technical audiences.Recommended
• 5 years 'experience minimum in information security or security risk experience or Bachelor's degree in computer science, information technology, or related field.
• One or more professional certifications such as Security+, Network+, GSEC, CISA or CISSP (or equivalent work experience).
• Experience with ITILv2/v3 processes such as Service Support, Service Delivery, or Continual Service Improvement.
• Experience with Regulatory Compliance and industry standards, such as HIPAA, GDPR, SOX, and PCI.
• Experience in a DevOps or DevSecOps environment.
• Proficient in Google Workspace applications, including Sheets, Docs, Slides, and Gmail.Required Documents
• Cover Letter
• ResumeCalifornia applicants, please click to review the Costco Applicant Privacy Notice.Pay Ranges:Level 3 - $145,000 - $180,000, Bonus and Restricted Stock Unit (RSU) eligibleLevel 4 - $175,000 - $230,000, Bonus and Restricted Stock Unit (RSU) eligibleWe offer a comprehensive package of benefits including paid time off, health benefits - medical/dental/vision/hearing aid/pharmacy/behavioral health/employee assistance, health care reimbursement account, dependent care assistance plan, short-term disability and long-term disability insurance, AD&D insurance, life insurance, 401(k), stock purchase plan to eligible employees.Costco is committed to a diverse and inclusive workplace. Costco is an equal opportunity employer. Qualified applicants will receive consideration for employment without regard of race, national origin, gender, gender identity, sexual orientation, protected veteran status, disability, age, or any other legally protected status. If you need assistance and/or a reasonable accommodation due to a disability during the application or the recruiting process, please send a request to IT-Recruiting@costco.comIf hired, you will be required to provide proof of authorization to work in the United States. Applicants and employees for this position will not be sponsored for work authorization, including, but not limited to H1-B visas.
  #J-18808-Ljbffr

Keywords: Costco IT, Seattle , Solution Architect - Security Risk Management, Executive , Seattle, Washington