Job Information
Carter's/OshKosh Sr Security Architect in Atlanta, Georgia
QUESTIONNAIRE-6-38
03
Serving the needs of all families with young children, Carter’s Inc. is the largest North American apparel retailer exclusively for babies and young children, encompassing Carter’s, OshKosh B’gosh, Skip*Hop and Little Planet brands. Meaningful work, constant learning, genuine people, and a community guided by core values that promote inclusion and innovation is in everything we do. There are many reasons to build your career at Carter's.
How You’ll Make an Impact:
The Sr. Security Architect is a member of the Information Security team which works across the enterprise to develop security requirements, security guidance, security architecture, and technology solutions to address existing and emerging security issues.
The Sr. Security Architect will perform problem analysis, solutions development, and provide inputs across the company. They will partner with application development, engineering, and support teams to protect the organization.
This role is a hybrid, onsite opportunity based in the Carter's Atlanta Headquarters, and reports to the Director of Information Security.
What you'll do:
Solution Review & Design (70%)
Evaluate new and emerging security technologies for potential suitability in the company's environment.
Utilize current information security technology disciplines and industry standards to ensure confidentiality, integrity, and availability of information assets.
Acts as a subject-matter expert to multiple tasks and/or programs.
Reviews completion and implementation of system additions and/or enhancements and makes recommendations to internal IT teams.
Plans and directs upgrades of operating systems and designs systems enhancements associated with information security. Identifies, analyzes, and resolves system problems.
Leads technical assessments to determine what solutions should be implemented in the future to protect Carter’s from emerging threats while having minimal business impact.
Administrative / Documentation (20%)
Aid in review of security policies and guide the administration of security tools that control and monitor information security, including: access control, alert on and investigating potential misuse or breaches, design computer system access and reports to limit risk and identify possible security violations, document data privacy and protection.
Develops procedural documentation to ensure all security processes are well defined and maintained.
Maintain current architectural diagrams of our security solutions.
IT / Security Operations Support (10%)
Assist resource owners and IT staff in understanding and responding to security audit failures reported by internal and external auditing departments.
Provide technical consultation in new systems development and enhancement of existing systems related to system security.
Understands and supports the Company’s goals and objectives and makes certain that his/her actions and decisions are consistent with them.
Keeps his/her supervisor informed of all matters of importance and particularly those instances where deviations from planned results are likely to occur.
We'd Love to Speak to you if:
10+ years of experience with Architecture, Install and/or administration of security solutions.
Security Engineering background, deep technical knowledge.
Experience with cloud computing and security in the cloud such as AWS.
Clear understanding and experience implementing security controls to comply with regulatory requirements and laws such as CCPA, SOX as well as risk, control, and assurance frameworks, such as SOC2, ISO, NIST, PCI DSS, etc.
Experience with multiple information technology and security technologies: IIS, SQL, firewall, IPS/IDS, Windows, Linux, Anti-Virus, mail filtering, WAF, encryption, CA authority, IDM/IAM, multi factor authentication, SSO, VPN, Zero Trust Technologies, Vulnerability Management, DDoS, SIEM, FIM, WIPS, MDM, Pen Testing, VMware and VM server platforms.
Nice to have:
Bachelor’s degree in computer science or related field, preferred.
Current SANS certification holder (technical tracks) strongly preferred.
Security Certifications desired, CISSP, CISA, CISM, CRISC, OSCP, OSWP.
Other industry certifications preferred, CCNA, CCNP, CCIE, MCSE, GSEC.
OUR Team Members:
Lead Courageously: Have a strong sense of personal values that align with our Company values
Collaborates Broadly: Build cooperation, trust, and thrive in a consensus driven environment
Customer Focus: Proactively seek opportunities to leverage data and fact-based insights to serve customers and/or internal clients
Drive Growth: Set aggressive goals and implement plans precisely
Cultivates Innovation: Respectfully challenge the "we’ve always done it this way" mentality and explore new ways to achieve desired outcomes
Make a career at Carter’s:
- Career Development: Success starts from within, and we have several paths from which you can choose to enhance your career evolution. From Carter’s University to Toastmasters to mentorship programs and more, we encourage you to utilize these tools to elevate your professional prowess.
NOTE: This job description is not intended to be all-inclusive. The duties described may be changed or reassigned at the discretion of management, and the employee may be required to perform duties that are not listed in the job description.
#LI-Hybrid
Carters is committed to creating a diverse environment and is proud to be an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, gender identity, sexual orientation, national origin, genetics, disability, age, veteran status, or any other status protected by federal, state, or local law.