Cloud Security Architect

Cloud Security Architect

IMPACT and OPPORTUNITY

We are seeking a Cloud Security Architect who is passionate about their work and making a difference. This person will have with a proven track record of utilizing solid business knowledge and expert technical experience in security to help develop strategy, roadmap and execution of our cloud security program as well as mature our existing on-premise security operations.

This highly visible, high impact role will partner with the Chief Information Officer and members of the IT staff on a daily basis;

as well as interact with company leadership and Gentherm’s Board of Directors on a periodic basis through ongoing review of the IT Security framework for the company.

This person plays a critical role in directly influencing how decisions relating to privacy, security, governance, policy enforcement, and compliance recommendations are made especially those relating to the expansion of our global on-premise manufacturing footprint and evolution of our cloud architecture.

This is a position with a high degree of autonomy, candidate must be able to prioritize competing tasks and initiatives and follow through to completion.

ESSENTIAL FUNCTIONS AND RESPONSIBILITIES

Develop next-generation cloud security framework, governance, and policies

Architect Gentherm’s transformation roadmap from current IT security tools to streamlined desired future state.

Implement Microsoft Defender ATP, End Point Protection (Intune), MFA and SSPR

Evaluate Microsoft E5 Security capabilities and right-size solution for our environment

Manage ongoing security operations of multiple locations

Oversees security awareness initiatives related to cloud and collaboration platforms

OTHER CORE FUNCTIONS

Participate in IT security and governance meetings

Mentor other Security system analysts to develop their skills and guide where appropriate. Assist in staffing processes as Gentherm continues to grow its global footprint.

Act as a subject matter expert on the implementation and capabilities of existing security controls

Coordinate and address security related concerns for manufacturing and office systems

Collaborate with our enterprise architect, engineering, IT management, and other stakeholders on IT security related matters

Coordinates with corporate legal to ensure compliance with federal, state, and local regulations

Serve as a key partner from due diligence and beyond, for any acquisitions that Gentherm performs.

Provide systems integration guidance and a run book for Security Information & Event Management (SEIM) and Azure ATP alerts

MINIMUM QUALIFICATIONS

4 Years’ experience in a security engineering or technology architecture role

Bachelor’s Degree in computer science, computer engineering, management information systems, information technology, or a similar field;

Experience working with common information security, compliance, and audit frameworks, e.g., ISO 27001 / 27002, ISO 27017 / 27018, NIST, SSAE, PCI DSS.

Demonstrated track record of successful technical delivery of Information Technology and Information Security projects by working directly with key business stakeholders, executives, and project teams.

Demonstrated ability to translate complex security-related matters into business terms that are readily understood by colleagues.

Strong communication skills. Ability to present technical analysis, both written and verbal, effectively to all levels of the company.

Program management skills and solution support for security transformation / implementation programs

A continual learner who will work along side the global Gentherm team to design / configure / implement robust solutions.

Strong up-to-date technical and hands-on knowledge & experience in current attack methods and approaches to detect and defend against attacks, expertise in Microsoft Cloud Suite, Cortex and Cloud security preferred.

Solid understanding of security best practices, RSA, Web Application Firewalls (WAF), Network security, Networking controls (Firewall, VPN, Proxy, AV, SIEM, etc.).

Available for off hours support as needed.

PREFERRED QUALIFICATIONS

Eight years in a security engineering and architectural role with advanced experience in data access controls (ABAC / RBAC), IAM technologies, and policy management.

Post-graduate degree in computer science, computer engineering, management information systems, information technology, or a similar field

Subject-matter expertise across the identity and access management space as it relates to both cloud-based and on-premise technologies, and the relationship between the architectures.

Demonstrated experience implementing Microsoft Defender ATP for End Point Protection, Azure MFA, Azure Advanced Threat Protection, Conditional Access Deployment, MCAS, and MFA

Proven implementation of on-prem and cloud security models, particularly identity, network, and encryption

Experience with Enterprise Mobility and Security Suite (EM+S), Azure Advanced Threat Protection (ATP), Azure Information Protection (AIP), Intune, and conditional access design

Configure native Office data loss prevention ( DLP ) sensitivity types as required

Experience with Palo Alto Networking equipment, GlobalProtect VPN, PAN-OS

Experience with Security incidents, ServiceNow Tickets (SNOW)

Demonstrated experience communicating technical information to business clients

Demonstrated experience addressing IP of company information with external parties

COMPETENCIES

Deliver Results Understand the mission and output of your team; set SMART objectives and deliver

Drive Change Focus on agility and commitment to continuous improvement; Understand and act on internal and external drivers of change

Build Capability Foster a culture of learning and development; Support individual growth through continuous feedback to achieve personal and professional goals

Cultivate Innovation Openly embrace, create, implement and support new and innovative ideas, processes and technology that deliver business results

LI-TO1

PHYSICAL DEMANDS / WORK ENVIRONMENT

All positions in our office require interaction with people and technology while either standing or sitting. In order to best service our customers, internal and external, all associates must be able to communicate face-to-face and on the phone with or without reasonable accommodation.

Gentherm is committed to compliance with its obligations under all applicable state and federal laws prohibiting employment discrimination.

In keeping with this commitment, it attempts to reasonably accommodate applicants and employees in accordance with the requirements of the disability discrimination laws.

It also invites individuals with disabilities to participate in a good faith, interactive process to identify reasonable accommodations that can be made without imposing an undue hardship.

Gentherm is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, age, national origin, genetic information, sexual orientation, gender identity, disability or protected veteran status.