Security Architect (Cloud Security & Compliance)

Security Architect (Cloud Security & Compliance) - Hybrid

New Britain CT United States

Towson MD United States

Come build something that matters.

It takes great people to achieve greatness. People with a sense of purpose and integrity. People with a relentless pursuit of excellence. People who care about making things better For Those Who Make The World. Sound like you Join our top-notch team of approximately 48000 diverse and high-performing professionals globally who are making their mark on some of the worlds most beloved brands including DEWALT BLACKDECKER CRAFTSMAN STANLEY CUB CADET and HUSTLER.

The Job:

As a Security Architect (Cloud Security & Compliance) youll be part of our Information Technology team working as a hybrid employee. Youll get to:

Cloud Security Architecture & Strategy:

• Design develop and oversee the implementation of comprehensive security architectures for AWS cloud environments and connected products ensuring confidentiality integrity and availability of systems and data.

Security Solution Design & Integration:

• Architect and integrate AWS native security tools (e.g. GuardDuty Security Hub IAM KMS CloudTrail Config) and external solutions (e.g. CSPM Secure SDLC SIEM) for holistic security coverage.

AST - Application security testing:

• Knowledge and understanding of static analysis software composition analysis dynamic analysis secret scanner etc.

Compliance & Certification:

• Lead the security strategy for SOC2 NIST ISO27001 and other regulatory certifications. Define and maintain documentation evidence and processes required for compliance readiness.

Governance Risk and Compliance (GRC):

• Architect and oversee GRC processes including risk assessments policy development control mapping and remediation tracking for cloud environments.

Security Automation & Infrastructure:

• Design and implement automated security controls and monitoring solutions using infrastructure-as-code (Terraform CloudFormation) CI/CD pipelines and scripting (Python Shell).

Incident Response Strategy:

• Develop and guide incident response plans lead detection and investigation efforts and coordinate with internal teams for timely resolution and root cause analysis.

Vulnerability Management Oversight:

• Architect vulnerability management programs including regular assessments penetration testing and remediation for cloud infrastructure and applications.

Security Awareness & Enablement:

• Lead organization-wide security awareness initiatives provide training and foster a culture of security through strategic communication and enablement.

Documentation & Reporting:

• Define and maintain security architecture documentation controls incident records and compliance activities. Prepare executive-level reports for stakeholders and leadership.

The Person:

You love to learn and grow and be acknowledged for your valuable contributions. Youre not intimidated by innovation. Wouldnt it be great if you could do your job and do a world of good In fact you embrace it. You also have:

• 10 years of experience in security architecture cloud security or related roles.

• Proventrack recorddesigning and managing security architectures in AWS cloud environments.

• Experience leading organizations through SOC2 NIST ISO27001 or similar compliance frameworks.
• Undergraduate degree in Computer Science Information Technology Cybersecurity Engineering or a related field or equivalent work experience in cloud security and architecture.
• Preferred certifications: AWS Certified Security Specialty Certified Information Systems Security Professional (CISSP) Certified Cloud Security Professional (CCSP).

Core Technologies and Skills

• AWS Security Tools:
  GuardDuty Security Hub IAM KMS CloudTrail Config Macie Inspector.
• External Security Solutions:

• SonarQube Cortex Akamai Cognito Balbix Splunk GitLeaks or similar

• GRC Platforms:
  ServiceNow GRC ArcherOneTrust and related processes.
• Infrastructure as Code:
  Terraform CloudFormation for security automation and compliance.
• CI/CD Security:
  Security integration in CI/CD pipelines (Bitbucket Jenkins GitHub Actions).
• Scripting:
  Python and Shell for automation and security tasks.
• Vulnerability Management:
  Vulnerability scans penetration testing and remediation.
• Regulatory Knowledge:
  SOC2 NIST ISO27001 GDPR and other relevant regulations.
• Monitoring & Logging:
  Security monitoring SIEM solutions and log management.
• Incident Response:
  Security incident detection response and reporting.

The Details:

Youll receive a competitive salary and a great benefits plan including:

• Medical dental life vision disability 401(k) Employee Stock Purchase Plan paid time off and tuition reimbursement in addition to programs & benefits in support of your well-being.
• Discounts on Stanley Black & Decker tools and other partner programs.

And More:

We want our company to be a place youll want to be and stay. Being part of our team means youll get to:

• Grow: Be part of our global company with 20 brands to grow and develop your skills along multiple career paths.

• Learn: Have access to a wealth of learning resources including our digital learning portal.
• Belong: Experience an awesome place to work where we have mutual respect and a great appreciation for a wide range of perspectives and experiences.
• Give Back: Help us continue to make positive changes locally and globally through volunteerism giving back and sustainable business practices.

Whats more youll get that pride that comes from empowering makers doers protectors and everyday heroes all over the world. Were more than the #1 tools company. More than a driving force in outdoor power equipment. More than a global leader in industrial. Were visionaries and innovators. As successful as weve been in the past we have so much further to go. Thats where you come in. Join us!

#LI-RB1

#LI-Hybrid

We Dont Just Build The World We Build Innovative Technology Too.

Joining the Stanley Black & Decker team means working in an innovative tech-driven and highly collaborative team environment supported by over 58000 professionals in 60 countries across the globe. Here youll get the unique chance to impact some of the worlds most iconic brands including STANLEY TOOLS DEWALT CRAFTSMAN MAC TOOLS and Black Decker. Your ideas and solutions have the potential to reach millions of customers as we work together to write the next chapter in our history. Come build with us and take your career to new heights.

Who We Are

Were the Worlds largest tool company. Were industry visionaries. Were solving problems and advancing the manufacturing trade through innovative technology and our Industry 4.0 Initiative. We are committed to ensuring our state-of-the-art smart factory products and services provide greater quality to our customers & greater environmental and social value to our planet. We are unique in that we have a rich and storied history dating back to 1843 but that hasnt stopped us from evolving into a vibrant diverse global growth company.

Benefits & Perks

Youll get a competitive salary and a comprehensive benefits plan that includes medical dental life vision wellness program disability retirement benefits Employee Stock Purchase Plan Paid Time Off including paid vacation holidays & personal days and tuition reimbursement. And of course discounts on Stanley Black & Decker tools and products and well as discount programs for many other vendors and partners.

What Youll Also Get

Career Opportunity: Career paths arent linear here. Being part of our global company with 60 brands gives you the chance to grow and develop your skills along multiple career paths.

Learning & Development:
Our lifelong learning philosophy means youll have access to a wealth of state-of-the-art learning resources including our Lean Academy and online university (where you can get certificates and specializations from renowned colleges and universities).

Diverse & Inclusive Culture:
We pride ourselves on being an awesome place to work. We respect and embrace differences because thats how the best work gets done. Youll find we like to have fun here too.

Purpose-Driven Company:
Youll help us continue to make positive changes in the local communities where we work and live as well as in the broader world through volunteerism giving back and sustainable business practices.

EEO Statement:
All qualified applicants to Stanley Black & Decker are considered for employment without regard to race color religion age sex sexual orientation gender identity national origin disability veterans status or any other protected characteristic.

If you require reasonable accommodation to complete an application or access our website please contact us at or at . Due to volume we cannot respond to unrelated inquiries about the status of a completed application or resetting an account password.

Know Your Rights: Workplace discrimination is illegal ()