Pleasanton, CA, USA
18 days ago
Principal Security Architect, APPSEC Cloud Security

About the company 

Albertsons Companies is at the forefront of the revolution in retail. With a fixation on raising the bar with innovation and building belonging through our culture, our team is rallying our company around a unique purpose: to create joy around each table and inspire a healthier tomorrow for every community.

Albertsons Companies is one of the largest food and drug retailers in the United States, with over 2,200 stores in 34 states and the District of Columbia. Our well-known banners include Albertsons, Safeway, Vons, Jewel-Osco, Shaw's, Acme, Tom Thumb, Randalls, United Supermarkets, Pavilions, Star Market, Haggen, Carrs, Kings Food Markets, and Balducci's Food Lovers Market. We support our stores with 22 distribution centers and 19 manufacturing plants.

Placing a premium on adaptability, safety and family well-being, our work model, Presence with a Purpose, offers a hybrid work environment between remote work and office time. A one-size-fits-all approach does not apply to everyone, and teams are empowered to make decisions best for them.

Bring your flavor

Building the future of food and well-being starts with you. Join our team and bring your best self to the table. #LI-MF1

What you will be doing

In this critical role in our Security Architecture Group, you are responsible for designing, consulting, and overseeing multiple APPSEC capabilities in Platform and Cloud portfolio. You will identify vulnerabilities, develop design and mitigation strategies to ensure we meet multi cloud requirements for platform security. You will be building cloud FW security roadmap working with our enterprise architect across Azure and GCP including our engineering. You will ensure creating system threat models for the platform, working with cross functionals teams to ensure security is incorporated (SDL) throughout the development process and integrated into the platform architecture. You illustrate an in-depth understanding of the security policies, procedures and standards for the cloud platform and innovate our capabilities to drive value. Enhance our associates experience and secure our digital business and assets. 

The position will be based in Pleasanton, CA, Phoenix, AZ or Plano, TX.

Main responsibilities

Collaborate with line of PISOs and engineering leadership on roadmaps, and processes with your diverse Cybersecurity skills and perspectives to achieve common goals  Help accelerate Understand the AppSec cloud deployment costs and business impacts of the technologies and solution you are proposing, keeping business benefits and the InfoSec priorities paramount. Research and knowledge of security best practices in IT environments, including – with next-generation firewalls, IDS/IPS and threat management, remote access, Citrix, IPSec VPN, Web filtering  Develop Zero Trust network principal including strategy development, roadmaps, presentations, and technical/non-technical documentation. Support to cloud native networking, orchestration/automation, and network architecture modernization Develops and coordinates strategies to increase Infrastructure Security knowledge throughout Store, non-store, as well as developing and mentoring junior staff engineers. Provide continuous improvement recommendations and risk mitigations for ZTNA implementation across all security pillars. Leads and develops infrastructure security standards and cloud access policies in partnership with other teams. You will collaborate to networking a long-term security roadmap for our products to ensure suitability for the customer we serve. 

The salary range is $ 182,400 to $ 247,800 annually. Starting salary will vary based on criteria such as location, experience, and qualifications. There may be flexibility for exceptional candidates. Benefits may include medical, dental, vision, disability and life insurance, sick pay (accrued based on hours worked), PTO/Vacation Pay (accrued based on hours worked) or Flexible Time Off, paid holidays (8-9 days annually), bereavement pay, and retirement benefits (such as 401(k) eligibility). [If applicable:] Associates in this position are also eligible for a quarterly bonus.

A copy of the full job description can be made available to you. 

What we are searching for 

8+ years of experience in an AppSec, and cloud Management of architecture/engineering, or similar role. Solid understanding of Terraform, Kubernetes, Golang and Python and best practices. 10+ years of experience in a AppSec engineering, securing infrastructure Platforms, program management, network engineering, or similar role. Minimum 5 years of experience with Zero trust architecture, Firewall, IDS/IPS model, creation and maintenance of large network flow diagrams, communicating and collaboration in enterprise environments. Solid experience conducting enterprise security review, network access models in private and public cloud environments.  Solid experience with next-generation A/V, EDR/XDR, PKI, SSL/TLS, NAC, Microsoft Certificate Services Plan, research and design security architectures risks and roadmaps to senior leadership. Prior participation or responsibility for audits and assessments such as PCI, SOX, HIPPA, etc. Familiarity with industry benchmarks and certifications such as CISO zero trust maturity, CIS top20, NIS-CSF, etc. Hands-on Proficiency with automation within Python (Ansible), PowerShell are preferred.

What is it like at Albertsons? 

Our 290,000 associates have a passion for great service and building lasting relationships with our customers. Through a companywide focus on innovation, we are continually enhancing our digital and product offerings, making it easy for customers to get what they need, wherever they are.

Albertsons is an Equal Opportunity Employer 

This Company is an Equal Opportunity Employer, and does not discriminate on the basis of race, gender, ethnicity, religion, national origin, age, disability, veteran status, gender identity/expression, sexual orientation, or on any other basis prohibited by law. Consistent with applicable state and local law, the Company will consider for employment qualified applicants with arrest and conviction records. 

We endeavor to make this site accessible to any and all users. If you would like to contact us regarding the accessibility of our website or need assistance completing the application process, please contact us at 1-888-255-2269(option #4).

Confirm your E-mail: Send Email