Loading...
Share this Job
Apply now »

Strategic Security Portfolio Architect

Strategic Security Portfolio Architect

Assago, IT

Assago, IT

Position Snapshot

The Strategic Security Portfolio Architect will be expected to demonstrate the following key behaviors and competencies as they fulfill the core responsibilities of the role:

 

  • Adaptability: Demonstrates flexibility within a variety of changing situations, while working with individuals and groups.
  • Business Acumen: Demonstrates an awareness of internal and external dynamics, and an acute perception of the dimensions of business issues. Conducts research and identifies, collects and analyzes information about markets, economies, technology trends and business operation issues to make informed decisions.
  • Conceptual Thinking: Synthesizes facts, theories, trends, inferences, and key issues and/or themes in complex and variable situations.
  • Openness to Learning: Takes personal responsibility for personal growth. Acquires strategies for gaining new knowledge, behaviors and skills.
Position Summary

We are a team of IT professionals from many countries and diverse backgrounds, each with unique missions and challenges in the biggest health, nutrition and wellness company of the world. We innovate every day through forward-looking technologies to create opportunities for Nestlé’s digital challenges with our consumers, customers and at the workplace. We collaborate with our business partners around the world to deliver standardized, integrated technology products and services to create tangible business value.


In order to complete our Security and Compliance Department, we are currently looking for a Strategic Security Portfolio Architect

 

In this position, you will, in alignment with the security and compliance product groups, develop information security architecture and technology solutions to address the current and emerging information security threats and compliance requirements of the organization. The Strategic Security Portfolio Architect translates technology and environmental conditions into system and security designs and processes to protect digital assets and data. You develop and maintain a security architecture process that enables the enterprise to develop and implement products and solutions that are secure and compliant by design and you create security roadmaps based on sound enterprise architecture practices. The role also liaises with partner management function to conduct security assessments of existing and prospective partners with other security architects and security practitioners to share best practices and insights, and with business continuity management to validate security practices. You will continue to improve the cyber resilience of the Nestlé Group developing and maintaining an effective and agile information security architectural framework, ensuring adherence to appropriate regulations and standards.

A day in the life of...

 

  • Ensure alignment between security architecture frameworks and standards and overall business and IT strategy.
  • Drive security and compliance requirements in cross-functional major IT initiatives.
  • Drive end-to-end architecture across security product offerings and lead the execution of critical architectural priorities for senior technology leaders to develop secure products.
  • Review security technologies, tools and services, and makes recommendations to the broader security team for their use based on security, financial and operational metrics.
  • Perform security assessments of third party and internal applications and networks to define security requirements, and evaluating processes, network designs, and access controls.
  • Serve as an information security expert and trusted advisor to partners in IT and the business.
  • Coordinate with the privacy officer to document data flows of personal information within the organization and recommends controls to ensure this data is adequately secured.
  • Develop standards and practices for data protection within the organization based on the organization's information classification criteria.
  • Review existing security architecture, identifies design gaps, and recommends security enhancements.
  • Validate IS/IT infrastructure and other reference architectures for security best practices and recommend changes to enhance security and reduce risk where applicable.
  • Liaise with the vendor management (VM) team to conduct security assessments of existing and prospective vendors.
  • Liaise with other security architects and security practitioners, internally and externally, to share best practices and insights.
  • The Strategic Security Portfolio Architect will be required to translate complex security-related matters into business terms that are readily understood by colleagues and should anticipate presenting analyses in person and in written formats.
What will make you successful
  • Ideally Bachelor's or Master's degree in Computer Science, Information Security, or a related field (e.g., IT Audit, Enterprise Risk Management, etc.), or equivalent professional experience
  • Desired Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM) or equivalent
  • 10+ years of experience in information security, preferably in a security architect role
  • 10+ years of experience with regulatory compliance and information security management frameworks (e.g., IS0/IEC 27000, COBIT, NIST 800, etc.)
  • Understanding of architecture methodologies such as SABSA, Zachman and TOGAF
  • Thorough understanding of enterprise risk management and reporting
  • Experience in dealing with large and complex projects in hybrid environments (on-prem, Cloud, multi-Cloud)
  • Influence cross-organizational leaders that can drive success for the individual development teams
  • Knowledge and understanding of the impact of emerging business and end-user technologies have on information security requirements and architecture
  • Build strong inter-personal relationships with peers and other key stakeholders that can help smooth execution
  • Effectively communicates in English to any audience within the organization
  • Experience working in a global environment and with virtual teams
  • Strong analysis and synthesis skills, including levels of abstraction
  • Strong presentation and communication skills, document writing skills

 

Show us that you are an enthusiastic, motivated, fast learner and team player person who is used to work with agile practices. Your ability to be flexible, self-motivated and your willingness to do whatever it takes to deliver on a deadline will set you apart among the other candidates. Please don’t hesitate and apply in English.

The Nestlé Group is the world’s largest food and beverage company with 91.4 billion Swiss Francs in sales in 2018. It is present in 189 countries around the world, has 413 factories and its 323,000 employees are committed to Nestlé’s purpose of enhancing quality of life and contributing to a healthier future. Nestlé offers a wide portfolio of products and services for people and their pets throughout their lives. Its more than 2000 brands range from global icons like Nescafé or Nespresso to local favorites. Company performance is driven by its Nutrition, Health and Wellness strategy. Nestlé is based in the Swiss town of Vevey where it was founded more than 150 years ago. Learn more about our Group and reasons to join us on www.nestle.com.

Position Snapshot

The Strategic Security Portfolio Architect will be expected to demonstrate the following key behaviors and competencies as they fulfill the core responsibilities of the role:

 

  • Adaptability: Demonstrates flexibility within a variety of changing situations, while working with individuals and groups.
  • Business Acumen: Demonstrates an awareness of internal and external dynamics, and an acute perception of the dimensions of business issues. Conducts research and identifies, collects and analyzes information about markets, economies, technology trends and business operation issues to make informed decisions.
  • Conceptual Thinking: Synthesizes facts, theories, trends, inferences, and key issues and/or themes in complex and variable situations.
  • Openness to Learning: Takes personal responsibility for personal growth. Acquires strategies for gaining new knowledge, behaviors and skills.
Position Summary

We are a team of IT professionals from many countries and diverse backgrounds, each with unique missions and challenges in the biggest health, nutrition and wellness company of the world. We innovate every day through forward-looking technologies to create opportunities for Nestlé’s digital challenges with our consumers, customers and at the workplace. We collaborate with our business partners around the world to deliver standardized, integrated technology products and services to create tangible business value.


In order to complete our Security and Compliance Department, we are currently looking for a Strategic Security Portfolio Architect

 

In this position, you will, in alignment with the security and compliance product groups, develop information security architecture and technology solutions to address the current and emerging information security threats and compliance requirements of the organization. The Strategic Security Portfolio Architect translates technology and environmental conditions into system and security designs and processes to protect digital assets and data. You develop and maintain a security architecture process that enables the enterprise to develop and implement products and solutions that are secure and compliant by design and you create security roadmaps based on sound enterprise architecture practices. The role also liaises with partner management function to conduct security assessments of existing and prospective partners with other security architects and security practitioners to share best practices and insights, and with business continuity management to validate security practices. You will continue to improve the cyber resilience of the Nestlé Group developing and maintaining an effective and agile information security architectural framework, ensuring adherence to appropriate regulations and standards.

A day in the life of...

 

  • Ensure alignment between security architecture frameworks and standards and overall business and IT strategy.
  • Drive security and compliance requirements in cross-functional major IT initiatives.
  • Drive end-to-end architecture across security product offerings and lead the execution of critical architectural priorities for senior technology leaders to develop secure products.
  • Review security technologies, tools and services, and makes recommendations to the broader security team for their use based on security, financial and operational metrics.
  • Perform security assessments of third party and internal applications and networks to define security requirements, and evaluating processes, network designs, and access controls.
  • Serve as an information security expert and trusted advisor to partners in IT and the business.
  • Coordinate with the privacy officer to document data flows of personal information within the organization and recommends controls to ensure this data is adequately secured.
  • Develop standards and practices for data protection within the organization based on the organization's information classification criteria.
  • Review existing security architecture, identifies design gaps, and recommends security enhancements.
  • Validate IS/IT infrastructure and other reference architectures for security best practices and recommend changes to enhance security and reduce risk where applicable.
  • Liaise with the vendor management (VM) team to conduct security assessments of existing and prospective vendors.
  • Liaise with other security architects and security practitioners, internally and externally, to share best practices and insights.
  • The Strategic Security Portfolio Architect will be required to translate complex security-related matters into business terms that are readily understood by colleagues and should anticipate presenting analyses in person and in written formats.
What will make you successful
  • Ideally Bachelor's or Master's degree in Computer Science, Information Security, or a related field (e.g., IT Audit, Enterprise Risk Management, etc.), or equivalent professional experience
  • Desired Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM) or equivalent
  • 10+ years of experience in information security, preferably in a security architect role
  • 10+ years of experience with regulatory compliance and information security management frameworks (e.g., IS0/IEC 27000, COBIT, NIST 800, etc.)
  • Understanding of architecture methodologies such as SABSA, Zachman and TOGAF
  • Thorough understanding of enterprise risk management and reporting
  • Experience in dealing with large and complex projects in hybrid environments (on-prem, Cloud, multi-Cloud)
  • Influence cross-organizational leaders that can drive success for the individual development teams
  • Knowledge and understanding of the impact of emerging business and end-user technologies have on information security requirements and architecture
  • Build strong inter-personal relationships with peers and other key stakeholders that can help smooth execution
  • Effectively communicates in English to any audience within the organization
  • Experience working in a global environment and with virtual teams
  • Strong analysis and synthesis skills, including levels of abstraction
  • Strong presentation and communication skills, document writing skills

 

Show us that you are an enthusiastic, motivated, fast learner and team player person who is used to work with agile practices. Your ability to be flexible, self-motivated and your willingness to do whatever it takes to deliver on a deadline will set you apart among the other candidates. Please don’t hesitate and apply in English.

The Nestlé Group is the world’s largest food and beverage company with 91.4 billion Swiss Francs in sales in 2018. It is present in 189 countries around the world, has 413 factories and its 323,000 employees are committed to Nestlé’s purpose of enhancing quality of life and contributing to a healthier future. Nestlé offers a wide portfolio of products and services for people and their pets throughout their lives. Its more than 2000 brands range from global icons like Nescafé or Nespresso to local favorites. Company performance is driven by its Nutrition, Health and Wellness strategy. Nestlé is based in the Swiss town of Vevey where it was founded more than 150 years ago. Learn more about our Group and reasons to join us on www.nestle.com.

Apply now »