Sr Security Enterprise Architect(70009283)

Job Summary

The Senior Enterprise Security Architect is responsible for providing subject matter expertise in designing and implementing the security direction across Altice USA’s enterprise platforms. This role emphasizes hands-on technical leadership, guiding the implementation, configuration, and automation of security controls to meet and exceed compliance and risk management goals.
You will report to the Director of Enterprise Security Architecture and collaborate with other security architects, security engineers, network engineers, and application architects to ensure deployment of secure, scalable, and resilient solutions. Proficiency in cloud platforms (GCP, AWS, Azure) and a deep understanding of modern security practices are essential.

Responsibilities

• Provide technical leadership and mentorship to other Security Architects and Engineers.
• Design, implement, and maintain enterprise security infrastructure aligned with architectural guidelines.
• Provide subject matter expertise on technologies, best practices, and industry trends, ensuring Altice USA remains at the forefront of innovation.
• Design, implement, Document, and maintain complex security infrastructure to support Application development under defined Architecture Guidelines, in the Enterprise environment.
• Help teams maintain and follow Security Architecture Best Practices, established standards, and provide solutions/proof of concepts. 
• Create, document, and promote security reference architecture consumable by engineering and development teams.
• Provide subject matter expertise to promote a program of Secure by Design principles, ensuring adoption across the organization, ensuring that security is built into solutions from the outset, rather than being added as an afterthought.
• Conduct platform, tool, and process assessments to evaluate existing security controls, identify weaknesses, and make recommendations and process improvements.
• Assess security threats and risks to define and implement appropriate architectural security models.
• Conduct in-depth technical research on the security implications of new technologies.
• Participate in efforts and provide material support to business teams by planning and designing architectural solutions in support of security strategies and cross-functional technology teams throughout the organization.
• Ensure that the platform's security risk controls, mitigations, and approach are aligned with security standards, IT, and business goals.
• Ensure the proper security architecture and governance practices are put in place for emerging technologies such as AI/ML, GenAI, and other emerging technologies.
• Software development architecture, including oversight and mandates for activities such as threat modeling for secure solution design, and specifically for Web Services design, as well as the OWASP Top Ten resilience reference architecture.
• Provide direction and share insights on DevSecOps methodologies and practices, including operational discipline, security logging, monitoring, and alerts, which are essential components of the process.
• Ensure security policy, compliance requirements, and best practices are implemented across the project portfolio.
• Provide enterprise security and architectural guidance to ensure that the infrastructure supporting customer-facing products is compliant with legal, regulatory, and industry security standards.
• Actively participate in long-term roadmap planning and architectural vision for Enterprise Security
• Collaborates with External Vendors, ensuring that their security practices align with the organization's security architecture standards.

Qualifications

• Bachelor’s degree in Computer Science or related field preferred. 
• Enterprise Security /  Enterprise Architecture Certifications (CISSP, CCSP, TOGAF 9, GCP Professional Cloud Architect, Azure Solutions Architect, etc.) preferred
• Prefer ten or more years of experience in Information Technology.
• Prefer eight or more years of direct IT Security experience in one or more of the ten security domains.
• Excellent analytical and problem-solving skills, with the ability to assess complex issues and develop effective solutions.
• Strong communication and interpersonal skills, with the ability to collaborate effectively with stakeholders at all levels of the organization.
• Broad technical experience in several security disciplines, including endpoint and platform (Unix/Linux/Windows, mobile) controls, encryption/tokenization, identity and access management, PKI, data protection, and security tooling integration in complex environments.
• Expertise across multiple security disciplines such as Data Protection, Compliance Validation, Vulnerability Experience with Network Security, Infrastructure Security (Active Directory, Group Policy, Endpoint management), CI/CD Security, Identity and Access Management, Logging and Monitoring, Incident Response, Data and Analytics, and Resiliency.
• Experience with Infrastructure as Code deployments and the security review process.
• Ability to communicate complex technical concepts to diverse audiences.
• Hands-on experience with Security Services in Azure and in AWS such as IAM, KMS, VPC, Security Groups, AWS Inspector, and Guard Duty.
• Experience building security reference architectures for complex information systems based on industry frameworks.