Security Architect

This role is office hybrid and based in Louisville, Kentucky.

What the Role Is
The Security Architect will be the lead information security technologist for Heaven Hill.
This position will be responsible for assessment of information security risks and threats, security technology architecture, development and execution of roadmaps to reduce risks to acceptable levels and close gaps to desired maturity states, lead cyber incident response and recovery, and drive continuous improvement of security operations.

This position will be responsible for leading the information security team and will report to the Director of Technology Services, who will be the overall owner of the information security function.

How You Will Spend Your Time?
Develop and implement security capabilities, technology, and process roadmaps for both Enterprise and OT security to achieve short-term and long-term objectives
Develop and enhance security policies and standards, based on sound security and architecture practices
Lead an appropriate and effective response and restoration process in the case of any security event
Ensure capability of business restoration to required objectives in a case of a breach or intrusion and resulting loss of data or access to systems and data
Consult, advise and oversee the secure design of key IT system and infrastructure projects to ensure alignment with enterprise security architecture in collaboration with other business and IT stakeholders
Identify, establish and monitor appropriate metrics and leading and lagging indicators of security performance and capabilities
Lead vulnerability and security maturity assessments, and gap closure plans and execution
Coordinate, review and implement actions to maintain compliance with regulatory, insurance and security requirements
Identify unacceptable 3rd and 4th party risks and exposures and define and implement actions necessary; monitor ongoing performance to reduce these risks to acceptable levels
Maintain a thorough understanding of security threats and attacks to identify potential vulnerabilities along with their appropriate remediations
Monitor the environment (e.
g.
, network, systems, end points) for security breaches, malware, and loss of data
Conduct regular system tests and ensure continuous monitoring of network security
Who You Are.


Bachelor's degree in computer science, information systems, engineering or related degree; Advanced degree preferred
Minimum 5 years of experience in the following areas:
Information Security Architecture and Engineering, Risk Management, Endpoint Security, Network Security, Identity and Access Management, Security Assessment and Testing and Security Operations required
Robust experience in Information Security domains, including experience within security functions of a global enterprise level entity required.

Current information security certifications, such as Certified Information Systems Security Professional (CISSP) or Certified Information Security Manager (CISM)
Knowledgeable in security concepts and practices (e.
, IAM, Mesh architecture, zero trust, NIST CSF, MITRE Att&ck)
Experience with common industry enterprise class products and services for information security
Experience with networking (e.
, DNS, routing, PKI, certificate management, IDS, IPS, scanning, firewalls, segmentation and microsegmentation)
Experience and understanding of standard IT management frameworks
Experience with NIST 800-53, CSF, HIPAA, PII, PHI, NY-DFS, PCI
Practical experience with database security, content filtering, vulnerability scanning and anti-malware
Experience developing and leading incident response plans
Demonstrated leadership and problem-solving skills
Physical Requirements
While performing duties of job, employee is occasionally required to stand; walk; use hands and fingers to handle, or feel objects, and use of computer; reach with hands and arms.
Employee must occasionally lift and/or move up to 10 pounds.

Benefits

Paid Vacation
11 Paid Holidays
Health, Dental & Vision eligibility from day one
FSA/HSA
401K match
EAP
Maternity/Paternity Leave

Heaven Hill and its affiliates are committed to fostering a diverse workforce as an Equal Employment Opportunity company.
We invite applications from candidates of all backgrounds, without regard to race, religion, color, sex, sexual orientation, natural origin, gender identity or expression, age, disability, veteran status or any other legally protected characteristic.