Cloud Security Architect at NielsenIQ
Our Cybersecurity team works diligently to ensure NielsenIQ’s software, hardware, and related components are protected from cyber-attacks. We’re constantly developing new security systems, analyzing current systems for vulnerabilities, and handling cyber-attacks in an efficient and effective manner worldwide.
As a Cloud Security Architect, you will be responsible for designing and driving end-to-end product security architecture for NielsenIQ Hybrid and multi-cloud environments. In this role, the ideal candidate will help define and build a security strategy, roadmap, security reference architecture, governance, and security maturity model. The position will involve working closely with various business units, technical and non-technical stakeholders to drive widespread cybersecurity programs and their adoption. The position will also drive the innovation, evaluation, execution, and improvement of NielsenIQ cybersecurity solutions/technologies to solve the security challenges throughout our hybrid environments both on-premise and in the clouds.
What you’ll do
Build Nielsen Connect’s security strategy and roadmaps to support business visions and objectives based on security landscape, use cases, risk assessments, and gap analysis
Design a comprehensive adaptive security architecture model that reflects Nielsen’s adoption of Zero Trust security principles. Help build cloud security reference architectures for hybrid and multi-cloud environments
Develop and maintain security governance program to ensure security compliance with security policies, standards, regulatory and contractual requirements, and industry security frameworks/standards & best practices
Build security maturity model for Nielsen Connect and its corresponding strategic plans and roadmaps to achieve realistic security goals through continuous security and continuous improvement mindset and processes
Establish baseline security standards for cloud, data, application, OS, network, web, mobile, and API stacks
Work closely with enterprise architects to identify and mitigate risks, perform security review, design top tier security practices and architecture, and deliver strategic, innovative cloud-based security solutions
Collaborate with Infrastructure, Operations, Development, Cloud, and Risk Management teams to implement secure-by-design/end-to-end security standards and best practices
Proactively and systematically provide new security technology and capability recommendations based on the ever-evolving threat landscape, attack vectors, and cloud adoption and migration processes
Collaborate with GRC, SOC, and IAM teams and LOBs to document identified security issues and risks and develop appropriate remediation plans
Participate in the security architecture design review and change review processes and provide security consulting and/or approval to ensure that security architecture adequately addresses in strategy plans, environmental changes, and proposed architecture designs
Support new initiatives, POCs, risk assessment, and critical applications/systems in an advisory capacity as a security SME
Perform deep analysis and development security metrics that measure current risk & gaps and effectively evaluate and manage threats/risks
Conduct threat modeling, drive continuous optimization, support effective risk remediation and vulnerability management through security strategy and roadmaps
We’re looking for people who have
Bachelor’s degree in a technology-related field, or equivalent work experience.
10+ years of application and cloud security experience in an Agile/DevOps and multi-cloud (Azure, GCP, AWS) environments
5+ years of enterprise architecture experience with at least 3+ years of a security architecture role
5+ years working knowledge of at least two of the leading cloud service providers (Azure, GCP, and AWS). Solid understanding of cloud providers’ native security offerings and capabilities, their well-architectured security frameworks, cloud adoption, and migration best practices, and integration security reference architectures
Demonstrated expert level understanding and working knowledge of key security domains: IAM, SSO, OAuth 2.0, OpenID Connect, Federation, PIM, application security testing, threat modeling, data encryption and key management/PKI, security protocols such as HTTPS/TLS/SSH/RDP, network security, endpoint protection, cloud security posture management, cloud workload protection, CASB, SIEM and continuous security monitoring, assessment, and response
Experience working with container technologies (Docker, Kubernetes, Twistlock, Redlock) and serverless/microservices architecture in different cloud environments
Strong understanding of SSDLC, DevOps, DevSecOps, and CI/CD pipeline
Strong technical architecture and ability to work across all LOBs with all levels to build and ensure sound security architecture
Strong communication and interpersonal skills; capable of understanding business needs and translating them into architectural standards/diagrams; able to translate complex data and architectural concepts and principles into easily-understanding information by LOBs; ability to design and deliver architectural presentations to IT, senior leadership, and business partners
Have critical thinking and take an analytical and logical approach to problem-solving. Must be able to frame and recommend security solutions that are best for NielsenIQ, even where that may not be technically “best practice”
All your information will be kept confidential according to EEO guidelines.
NielsenIQ is a global measurement and data analytics company that provides the most complete and trusted view available of consumers and markets worldwide. We provide consumer packaged goods manufacturers/fast-moving consumer goods and retailers with accurate, actionable information and insights and a complete picture of the complex and changing marketplace that companies need to innovate and grow. Our approach marries proprietary NielsenIQ data with other data sources to help clients around the world understand what’s happening now, what’s happening next, and how to best act on this knowledge. We like to be in the middle of the action. That’s why you can find us at work in over 90 countries, covering more than 90% of the world’s population. For more information, visit www.niq.com.
NielsenIQ is committed to hiring and retaining a diverse workforce. We are proud to be an Equal Opportunity/Affirmative Action-Employer, making decisions without regard to race, color, religion, gender, gender identity or expression, sexual orientation, national origin, genetics, disability status, age, marital status, protected veteran status or any other protected class.