security architect
Company: Starbucks
Location: Seattle
Posted on: October 3, 2024
|
|
Job Description:
Job DescriptionFrom the beginning, Starbucks set out to be a
different kind of company. One that not only celebrated coffee and
the rich tradition, but that also brought a feeling of connection.
At Starbucks, our mission is to inspire and nurture the limitless
possibilities of human connection - one person, one cup, and one
neighborhood at a time. We are known for developing extraordinary
leaders who share this passion and are guided by their service to
others. Starbucks technologists work to achieve this mission with
innovative technology delivered to our partners, customers, stores,
roasters, and global communities.\nThis role contributes to
Starbucks success by safeguarding information and systems assets
against unauthorized use, disclosure, modification, damage, or
loss. The group -provides -services to protect the value and use of
information through collaboration, standardization, enforcement,
and education across the Company. \nSecurity Architecture uses risk
frameworks and methodologies to assess technology risk, evaluate
technology providers, review trends, threats, and solutions. We use
these assessments to inform decision making, establish, and
interpret cybersecurity policies and standards, and provide
implementation guidance to manage risk. \nThis role will deliver
security architecture expertise, and best practices oversight
across complex multi-cloud, multi-partner environments. It entails
deep-level architecture reviews, crafting advisory and design
reference architectures and secure design patterns. The end goal
drives Starbucks Technology into compliance with standards,
policies, and applicable regulations globally.\nThis position
reports to the director, Security Architecture within the Global
Cybersecurity Services (GCS) organization. GCS is chartered with
leading, inspiring, and supporting Starbucks to cultivate trust in
our brand by ensuring confidentiality, integrity, and availability
in every partner, customer & supplier experience.\nThis position
models and acts in accordance with Starbucks guiding
principles.\n\nAs an information security, security architect, you
will---\n - - - - - - - - Ensure delivery of a world class
cybersecurity program. \no - - Develop reference architectures that
can be used to solve common requirements or mitigate trends in
security findings in a repeatable way following (and -identifying)
recommended best -practices. -\no - - Lead threat modeling and
partner with technical delivery teams to integrate security
requirements and practices into -solutions. -\no - - Drive security
architecture reviews of platforms & applications in complex
multi-tenant, multi-provider, -and vendor-cloud environments. -\no
- - Provide -consultative services and guidance for tech builders
during technical design of -solutions. -\n - - - - - - - - Deliver
strategic roadmaps - Research and investigate new effective ways of
delivering security as code, automation into the existing security
architecture assessments and processes and other service delivery
-optimizations. -\n - - - - - - - - Inspire and influence others to
achieve results - Partner with the tech builder and delivery teams
to follow progress on strategic platform initiatives. Proactively
-manage oversight and pace for the architecture reviews, -and
promptly address any critical issues that may create risk.\n - - -
- - - - - Be accountable for the quality and successful outcome of
the work - Ensure assessments are known, documented, and properly
performed to produce consistent, timely, high-quality deliverables.
Develop and -maintain -technical -proficiency -and related
certifications for core products and solution -areas. -\n - - - - -
- - - Enjoy working on an energetic, fun team and have a clear
ability to drive the business forward as part of a highly
collaborative team, while acting in accordance with Starbucks
guiding principles and values.\nWe'd love -to hear from people
with:\n - - - - - - - - Minimum of 7+ -years -working in
cybersecurity related field. -\no - - We prefer 3 years
demonstrated experience in cybersecurity and a total minimum of 7
years in information technology or related field.\n - - - - - - - -
Demonstrated knowledge of:\no - - cybersecurity frameworks (e.g.,
NIST, ISO, CSA), policies, design principles, practices and
enabling tools.\no - - public cloud services (AWS, Azure, GCP,
etc.) and serverless and containerized environments. -\no - -
encryption, -authentication/authorization, API security, secrets
best practices. -\no - - IaC -(Infrastructure as Code) and
supporting technologies (Cloud Formation, Terraform, etc.).\no - -
general security threats, attack vectors, and vulnerabilities -
ability to act as SME on threat -modeling. -\no - - architecture
tools, patterns, serverless ecosystems, pipeline security. -\n - -
- - - - - - Ability to analyze problems related to security
architecture tools and -provide -improvements for enhancing
development -processes -and mitigating risks.\n - - - - - - - -
Able to use critical and logical thinking to prioritize work that
drives the most impact to overall security -posture -and risk
management.\n - - - - - - - - Strong written and verbal
communication skills.\n - - - - - - - - Ability to establish
cross-functional, collaborative relationships with business and
technology partners.\n - - - - - - - - Demonstrated ability to work
in a challenging, dynamic, and fast-paced environment with limited
supervision. Candidate should be able to succeed in both
independent and collaborative work -scenarios. -\n - - - - - - - -
Certifications such as CISSP, CISM, CIPM or others focused on
information security, data privacy or information risk management
are desired.\n\n\n\n\nAs a Starbucks partner, you (and your family)
will have access to medical, dental, vision, basic and supplemental
life insurance, and other voluntary insurance benefits. Partners
have access to short-term and long-term disability, paid parental
leave, family expansion reimbursement, paid vacation from date of
hire*, sick time (accrued at 1 hour for every 25 hours worked),
eight paid holidays, and two personal days per year. Starbucks also
offers eligible partners participation in a 401(k) retirement plan
with employer match, a discounted company stock program (S.I.P.),
Starbucks equity program (Bean Stock), incentivized emergency
savings, and financial well-being tools. - Additionally, Starbucks
offers 100% upfront tuition coverage for a first-time bachelor's
degree through Arizona State University's online program via the
Starbucks College Achievement Plan, student loan management
resources, and access to other educational opportunities. - You
will also have access to backup care and DACA reimbursement. - -
Starbucks will comply with any applicable state and local laws
regarding employee leave benefits, including, but not limited to
providing time off pursuant to the Colorado Healthy Families and
Workplaces Act, and in accordance with its plans and policies. This
list is subject to change depending on collective bargaining in
locations where partners have a certified bargaining
representative. For additional information regarding partner perks
and more detailed information about benefits, go to
starbucksbenefits.com. \n*If you are working in CA, CO, IL, LA, ME,
MA, NE, ND or RI, you will accrue vacation up to a maximum of 120
hours (190 in CA) for roles below director and 200 hours (316 in
CA) for roles at director or above. - For roles in other states,
you will be granted vacation time starting at 120 hours annually
for roles below director and 200 hours annually for roles director
and above.\n -\nThe actual base pay offered to the successful
candidate will be based on multiple factors, including but not
limited to job-related knowledge/skills, experience, geographical
location, and internal equity. -At Starbucks, it is not typical for
an individual to be hired at the high end of the range for their
role, and compensation decisions are dependent upon the facts and
circumstances of each position and candidate.\n -\nIf you live in
the -greater Seattle area, we offer a -flexible workplace that
allows for -hybrid work. Partners -can work remotely up to two days
per week\n -\nJoin us and inspire with every cup. Apply today!\n
-\nAll qualified applicants will receive consideration for
employment without regard to race, color, religion, sex, national
origin, age, physical or mental disability, sexual orientation,
marital status, military or veteran status, gender identity and
expression, genetic information, or any other factor protected by
law.\nWe are committed to creating a diverse and welcoming
workplace that includes partners with diverse backgrounds and
experiences. We believe that enables us to better meet our mission
and values while serving customers throughout our global
communities. People of color, women, LGBTQIA+, veterans and persons
with disabilities are encouraged to apply.\nQualified applicants
with criminal histories will be considered for employment in a
manner consistent with all federal state and local ordinances.
Starbucks Corporation is committed to offering reasonable
accommodations to job applicants with disabilities. If you need
assistance or an accommodation due to a disability, please contact
us at applicantaccommodation@starbucks.com. \n -\n -
Keywords: Starbucks, Seattle , security architect, Hospitality & Tourism , Seattle, Washington
Click
here to apply!
|