Senior Cybersecurity Integrated Architect
Company: Cox Automotive
Location: Redan
Posted on: July 15, 2025
|
|
|
Job Description:
Summary The Senior Cybersecurity Integrated Architect is
responsible for evangelizing the agreed upon cybersecurity
architectural principles, standards, and design patterns, and
advising engineering teams on how to build secure products and
enterprise tools for multi-cloud and on-premises environments. This
role is focused on being an integrated member of the product and
engineering teams. A separate function defines the architecture
guidelines that this role is responsible for advising the teams on
how to implement. By having deep cybersecurity knowledge in the
design and build of secure software products and tools in both
multi-cloud and on-premises environments, this role will partner
with direct and cross-functional teams throughout the organization
and collaborate cross-functionally to solve cybersecurity risks
that are unique to a business unit's risk profile and products.
This role will report directly to a Director of Integrated
Cybersecurity Architecture at Cox Automotive. Primary
Responsibilities Communicate cybersecurity guidelines to
engineering teams and business teams and support their adoption of
the guidelines. Be integrated with and in continuous contact with
engineering teams to advise on their architecture decisions, assist
with cybersecurity control implementation, and resolve
cybersecurity risks that arise based on threats and risks occurring
for their products. Collaborate with business, technical and other
relevant stakeholders to understand current areas of security risk,
control standards and requirements. Participate in the
identification and mitigation of cybersecurity risks based on
threat modeling of products and enterprise tools. Contribute to the
design and development of new systems / controls based on
identified business requirements and risks. Engage with
cybersecurity peers to create a cohesive cybersecurity department
and share back internally regarding business specific activities.
Act as the on the ground cybersecurity security representative to
the product and engineering teams. Participate in security events
and incident response to identify gaps in current design and
propose solutions to prevent threats from reoccurring. Minimum
Qualifications Bachelor's degree in a related discipline and 4
years of experience in a related field. The right candidate could
also have a different combination, such as a master's degree and 2
years of experience; a Ph.D. and 1 years of experience in a related
field; or 8 years' experience in a related field. At least 2 years
focused on cybersecurity. Relevant experience with designing,
securing, or operating AWS infrastructure and services. Clearly
articulate the objective of specific cybersecurity policies and
procedures to technical stakeholders. Excellent customer service
skills, writing, and executive presentation skills. Develop a
strong and productive working environment with key stakeholders and
collaborate closely with other Cox entities' cybersecurity teams to
implement cybersecurity best practices. Consultative nature to work
through controversial or complex topics to employees, leaders,
and/or senior leadership. Evaluate risks and make informed
decisions based on impact and likelihood of the risk to the
business. Knowledge of current cybersecurity and technology
architectures such as zero trust, IaaS, PaaS, SaaS, virtualization,
containerization, DevSecOps, and software-defined networking across
a variety of environments and deployments. Creatively solving
complex cybersecurity challenges while exhibiting solid, pragmatic
business acumen. Experience utilizing Agile methodologies.
Initiating change and deploying solutions in Fortune 1000
companies. Knowledge of cybersecurity frameworks (e.g., ISO 27000,
NIST, FFIEC) and industry relevant regulations that will guide
architectural requirements (e.g., GDPR, FFIEC, GLBA). Preferred
Qualifications Experience in the development and design of
cybersecurity standard methodologies to all layers of the hosting
and application stack in both cloud and on-premises environments.
Knowledge of Identity and Access Management (IAM), cryptography /
key management, secrets management, access controls and security
protocols (e.g., multi-factor, SAML, OAuth, OIDC). Experience with
application security implementations and standard methodologies.
Extensive technology knowledge and recognized expertise in several
areas including Python, .NET, Java, Spring frameworks, Oracle,
serverless, cloud patterns, cloud service and user authentication
or similar. Experience with firewall, web application firewalls,
and other edge services as well as deep understanding of DMZ and
other network architectures. AWS Well-Architected Framework.
Experience establishing a strategy for and implementing cloud
enterprise solutions in AWS, GCP, or Azure. A strong understanding
of cloud containers and/or serverless platforms (e.g., EKS, ECS,
Lambda, Fargate). Experience in national critical infrastructure
industries (telecommunications, financial services, defense,
government, etc.). Big four consulting or Fortune 500 company
experience. Relevant industry certification (e.g., CISSP, CEH,
OSCP, Azure, AWS, CISM, CISA). USD 99,000.00 - 165,000.00 per year
Compensation: Compensation includes a base salary of $99,000.00 -
$165,000.00. The base salary may vary within the anticipated base
pay range based on factors such as the ultimate location of the
position and the selected candidate's knowledge, skills, and
abilities. Position may be eligible for additional compensation
that may include an incentive program. Benefits: The Company offers
eligible employees the flexibility to take as much vacation with
pay as they deem consistent with their duties, the company's needs,
and its obligations; seven paid holidays throughout the calendar
year; and up to 160 hours of paid wellness annually for their own
wellness or that of family members. Employees are also eligible for
additional paid time off in the form of bereavement leave, time off
to vote, jury duty leave, volunteer time off, military leave, and
parental leave. Applicants must currently be authorized to work in
the United States for any employer without current or future
sponsorship.
Keywords: Cox Automotive, Athens , Senior Cybersecurity Integrated Architect, IT / Software / Systems , Redan, Georgia
