Principal Architect, Security
Neiman Marcus Group is a relationship business that leads with love in everything we do—for our customers, associates, brand partners, and communities. Our legacy of innovating and our culture of Belonging guide our roadmap for Revolutionizing Luxury Experiences.
Your Role
This position reports to the Chief Information Security Officer and frequently interacts with both the Director of Information Security Architecture and Operations and the Director of Governance, Risk, and Compliance. The principal security architect is responsible for designing security solutions that protect the business without interfering with the business’ ability to execute and innovate. They work closely with many diverse and dynamic teams, including, but not limited to, security engineering, IT infrastructure, application development, security operations, risk and compliance, and end users. This position is also responsible for architecting solutions to secure business-to-business initiatives, third-party relationships, outsourced solutions, and vendors.
The principal security architect provides expert guidance for addressing current security issues and has the foresight to see where the industry is headed to proactively deliver cutting edge secure solutions. The architect is expected to think like an adversary to identify how solutions need to evolve and adapt to an ever-changing threat landscape. A senior-level role, the architect possesses strong communication and organizational skills, and the ability to guide less experienced coworkers. The architect provides technical leadership to delivery and solution design team members. You’ll report to the Chief Information Security Officer and work remotely.
What You’ll Do
- Provide Cybersecurity Technical thought leadership across the following areas: Zero Trust Networking, Identity, Data Security, Endpoint Security, Email Security.
- Remain current with new security threats that target the retail vertical and assess security systems to ensure they properly mitigate the risk associated with the threats.
- Research capabilities of current and new solutions on a regular basis for potential expansion or replacement of security tooling.
- Research, validate and deploy solutions that meet security and business requirements.
- Participate in the development of security team standards, policies, procedures and processes.
- Influence the planning and execution of incident response and postmortem exercises, with a focus on creating measurable benchmarks to show progress (or deficiencies requiring additional attention).
- Possess a SecDevOps focus across technology and security architecture, automation, integration and distribution.
- Drive security efficiencies, enabling security team members to work on more advanced tasks.
- Partner, coach, and functionally lead IT, engineering, development, and business teams.
- Perform engineering performance testing to stress the limitations of security solutions while at the same time ensuring business innovation and day-to-day processes are not negatively impacted.
- Perform other duties as assigned.
What You Bring
- At least 6 to 9+ years’ experience in cybersecurity, with a background in system and network security engineering and architecture.
- A proven deep background in technology design, implementation and delivery.
- Experience in cloud computing technologies, including software-, infrastructure and platform-as-a-service, as well as public, and hybrid environments.
- Excellence in communicating business risk from cybersecurity issues.
- Experience driving measurable improvement in monitoring and response capabilities at scale.
- Experience architecting SIEM systems, threat intelligence platforms, security automation and orchestration solutions, IDS/IPS, file integrity monitoring, data loss prevention, endpoint detection and response, zero trust solutions, identity and access management systems, enterprise browser solutions, and other network and system monitoring tools.
- Track record of acting with integrity, taking pride in work, seeking to excel, being curious and adaptable, and communicating effectively.
Additional Qualifications
- Experience with Amazon Web Services (AWS), Google Cloud, and Microsoft Azure.
- Cloud access security broker, cloud security posture management, SaaS security posture management, and Cloud Native Application Protection Platform experience
- Proficient with scripting in PowerShell, Python, JavaScript, PHP or Ruby.
- Experience with one or more of the following: ISO 27001, NIST, Payment Card Industry Data Security Standard (PCI DSS), Sarbanes-Oxley Act (SOX), the General Data Protection Regulation (GDPR), Center for Internet Security (CIS) standards, or Service Organization Controls (SOC) 2.
- Working knowledge of Windows, Linux, and Unix.
- Ability to think strategically and tactically, with effective decision-making skills.
- Experience with purple teaming (red and blue) to train, identify and remediate issues cohesively.
- Highly trustworthy; leads by example.
Inclusive Benefits
We offer an inclusive and comprehensive range of benefits to our valued associates, including:
• Medical, Dental, Vision Benefits
• Disability Benefits
• Paid Parental Leave, Paid Family Leave, and Adoption Support
• Paid Time Off
• Retirement Savings Plan (401K) and Life Insurance
• Financial Solutions
• NMG Associates Core Discount of 30%
• Personal and Professional Development Opportunities
For more information, please click “Our Benefits” section on our career site or reference the link here: https://www.neimanmarcusgroup.com/benefits
About Neiman Marcus Group
As one of the largest multi-brand luxury retailers in the U.S., with 3,000+ of the world's most desirable brand partners, we're delivering exceptional products and intelligent services enabled by our investments in data and technology. Through the expertise of our associates, we deliver and scale a personalized luxury experience across our three channels of in-store, eCommerce, and remote selling. Our NMG|Way culture, powered by our people, combines individual talents into a collective strength to make life extraordinary. Our brands include Neiman Marcus and Bergdorf Goodman.
Our legacy of innovation and culture of Belonging guide our roadmap for Revolutionizing Luxury Experiences. As a female-founded, female-majority organization that outpaces the U.S. population in racial and ethnic diversity, our people are at the heart of our progress, and we take great care to protect and empower them.
We are committed to equal employment opportunity regardless of race, color, religion, sex, pregnancy, sexual orientation, gender identity and/or expression, marital status, age, national origin, disability, genetic information, veteran status, or any other status protected by federal, state, or local law.
We are committed to providing reasonable accommodations during our Talent Acquisition process. If you have a disability and need assistance or an accommodation, please email us at ApplicantSupport@NeimanMarcus.com.