Fruit of the Loom, an independent, wholly owned subsidiary of Berkshire Hathaway Inc. & leading international basic apparel company, has an immediate opening for Information Security Architect at its corporate headquarters in Bowling Green, KY.
The Information Security Architect is a senior member of the Information Security team and works collaboratively with other members of IT and business units aligning strategic goals and objectives with key business and IT initiatives. This position plans and architects security solutions with an integrated view of the enterprise using a repeatable approach, industry standard techniques and best practices.
Security Architecture – Support enterprise technology initiatives as architect, project manager or subject matter expert to define requirements, maintain the architecture frameworks, define processes and ensure the design complies with security standards and business needs. Align approaches with broader vision.
Technical Counter Measures – Collaborate with cross functional teams within IT and business units for large effort mitigations and develop new technical security counter-measures to protect company assets and network environment.
Research – Research the latest security threats, malware, attacks and relevant architecture best practices to determine impact to the company environment. Create metrics and traceability maps to determine the effectiveness of architecture solutions and facilitate governance. Mentoring – Mentor fellow IT members on security strategies, mitigations and best practices. Additional security tasks as required.
Certification Information Systems Security Professional (CISSP) or Global Information Assurance Certification (GIAC) preferred.
Knowledge of generally accepted Information controls (e.g. NIST 800-53, ISO 27001/27002)
Strong technical security experience and knowledge of: Network security Infrastructure and host security Application security Physical security Identity and access management Vulnerability management Incident management
Project management experience and familiarity with SCRUM methodology
Demonstrated technical expertise in existing security and IT systems and an ability to keep pace with changing security and IT technologies.
Familiarity with the latest attack trends, tools and the threat landscape
Excellent communication skills both verbal and written.Ability to communicate complex and technical issues to diverse audiences, in an easily-understood, authoritative and actionable manner
Strong decision-making capabilities, with a proven ability to weigh the relative costs and benefits of potential actions and identify the most appropriate course of action
Ability to multi-task and manage many projects simultaneously
Strong interpersonal skills with an emphasis on the ability to effectively influence others
An understanding of business needs and commitment to delivering high-quality, prompt, and efficient service to the business
We offer competitive pay and benefits including medical, dental, vision, life and disability insurance, vacation, holidays and 401k.
Qualified applicants will receive consideration for employment without regard to their race, color, religion, national origin, sex, protect veteran status, disability or any other protected status.
8+ years of security experience which includes a proven track record as a security practitioner in at least two of the areas listed under the minimum qualifications technical experience
5+ years of experience with Threat Intelligence (TI) data gathering and analysis, Security Information & Event Management (SIEM), intrusion detection/prevention technologies (IDS/IPS), host based, network and/or Web Application (WAF) based firewalls and security assessment tools
5+ years of experience with regulatory compliance and information security management frameworks (e.g. ISO27000, COBIT, NIST 800, etc.)
3+ years of years of experience in a security architect role
Working experience with security architecture compliance, including but not limited to:Sarbanes-Oxley (SOX), Payment Card Industry – Data Security Standard (PCI-DSS), Health Insurance Portability and Accountability Act (HIPAA), Health Information Technology for Economic and Clinical Health (HITECH), Global Data Privacy Requirements (GDPR), as well as state and federal regulations.
Employer will assist with relocation costs.
Additional Salary Information: We offer competitive pay and benefits including medical, dental, vision, life and disability insurance, vacation, holidays and 401k. Qualified applicants will receive consideration for employment without regard to their race, color, religion, national origin, sex, protect veteran status, disability or any other protected status. EOE/Minorities/Females/Vet/Disabled/Sexual Orientation/Gender Identity
Fruit of the Loom, Inc. is a global pioneer, specializing in the design, manufacture, and marketing of a number of iconic family apparel, athletic apparel, and sporting equipment brands including Vanity Fair®, Fruit of the Loom®, Spalding®, and Russell Athletic®. Our brands are driven by innovation, market demands and a strategy clearly focused on meeting consumers' needs. Fruit of the Loom, Inc.i...s a values driven, high integrity organization that embraces corporate social responsibility and the belief that we don't just make products, we make the world a better place!