Sr. Lead Cybersecurity Engineer, Cybersecurity

Overview
Chick-fil-A is looking for a Senior Lead Cybersecurity Engineer to safeguard our vertical business lines and international restaurants (entities). In this role you'll design and implement cutting-edge security solutions, collaborating with talented teams to protect our systems from evolving cyber threats. This role offers the opportunity to shape cybersecurity strategies, solve complex challenges, and make a real impact on a global scale. If you're a passionate cybersecurity professional who thrives in a fast-paced, innovative environment, we encourage you to apply and experience the Chick-fil-A culture. This role is based in Atlanta, GA. For candidates that do not live in the Atlanta metropolitan area, Chick-fil-A offers a full relocation policy. Our Flexible Future model offers a healthy mix of working in person and virtually, strengthening key elements of the Chick-fil-A culture by fostering collaboration and community.

Responsibilities

Security Engineering & Architecture

1. Design, implement, and maintain security solutions to address vulnerabilities and risks within our systems, with a specific focus on Chick-fil-A's entities.
2. Develop and enforce technical security standards, patterns, and best practices to establish and maintain a consistent and robust security posture across the organization.
3. Proactively identify and address security gaps in existing systems and architectures, recommending and implementing enhancements to strengthen our overall security posture.
4. Conduct comprehensive threat modeling exercises to identify potential vulnerabilities and recommend countermeasures, contributing to the overall resilience of our systems.
5. Stay abreast of emerging threats and vulnerabilities, researching and recommending proactive security measures to mitigate potential risks.

Consulting, Collaboration, and Relationship Management

1. Collaborate closely with development teams to champion security best practices throughout the software development lifecycle, fostering a culture of security by design.
2. Partner with cross-functional teams to translate strategic security objectives into actionable plans with defined metrics, timelines, and ownership. Drive progress, track key results, and ensure timely completion of initiatives.
3. Proactively engage with teams across the organization to understand their unique security needs and tailor solutions to mitigate their specific risks.

Leadership & Communication

1. Transform cybersecurity objectives into measurable action plans, driving execution, tracking progress, and ensuring successful completion.
2. Regularly report on security posture, initiatives, and key metrics to management, providing actionable insights and recommendations.
3. Contribute to the development and maintenance of security documentation, including policies, procedures, and technical guides.
4. Effectively communicate complex security concepts to both technical and non-technical audiences, ensuring clear understanding and buy-in from stakeholders.
5. Lead by example to instill a culture of growth, trust, and transparent communication.

Minimum Qualifications

Knowledge:

1. Comprehensive understanding of cybersecurity principles.
2. Comprehensive understanding of cloud service providers (prefer AWS).
3. Comprehensive understanding of computer network principles.
4. Comprehensive understanding of identity and access management principles.
5. Strong understanding of cybersecurity engineering best practices.

Skills:

1. Secure architecture design review and threat modeling.
2. Programming experience in a modern software development language.
3. Proficiency in various AWS cloud services and security in the cloud.
4. Technical risk assessment and mitigation planning.
5. Strong problem-solving and analytical skills.
6. Excellent verbal and written communication skills.
7. Collaboration and teamwork skills.

Abilities:

1. Ability to design, implement, and improve cybersecurity solutions.
2. Ability to analyze and respond to security threats and incidents effectively.
3. Ability to review system designs and provide feedback to achieve secure design principles in the solution.
4. Ability to identify and analyze potential methods of attack.
5. Ability to build credibility and influence with stakeholders.
6. Ability to balance cybersecurity initiatives with business priorities.
7. Ability to quickly learn new technologies and architectures.

Preferred Qualifications
Experience in one or more of the following roles: Cybersecurity Architect, Cybersecurity Engineer, Cybersecurity Consultant.

Minimum Years of Experience
5

Travel Requirements
10%

Required Level of Education
High School

Preferred Level of Education
Bachelor's Degree

Major/Concentration
Cybersecurity, Computer Science, MIS, Information Technology, Data Science, or a related technical field of study.