6,094 Enterprise Security jobs in the United States

Thank you for your interest in our company! To apply, click on the button above. You will be required to create an account (or sign in with an existing account). Your account will provide you access to your application information. The email address used in establishing your account will be used to correspond with you throughout the application process. Please be sure and check the spam folder. You may review, modify, or update your information by visiting and logging into your account.

JOB FUNCTION / SUMMARY:

In conjunction with and/or at the direction of CISO, responsible for the overall "health & wellness" of security infrastructure related to enterprise networks and data systems; plans, coordinates, and implements security measures to safeguard data information against accidental or unauthorized modification, destruction, or disclosure by performing the following duties.

ESSENTIAL DUTIES & RESPONSIBILITIES:

Security Environment Analysis:

• Responsible for the analysis & approval of business requirements associated with information security systems and/or processes.
• Translates security design based on business requirements into functional processes while maintaining controls set forth by information security policies/procedures.
• Develops and recommends new or enhanced security and system designs, including documentation of functional specifications for system configuration and supports system requirements as business processes evolve and system enables are identified.

• Responsible for the documentation and maintenance of security systems to include change management processes and tracking requests ensuring on-going changes and developments and upgrades to systems are performed.
• Designs and develops tests, document testing results for newly created functionality associated with system maintenance, enhancements and upgrades to ensure all systems changes are successfully implemented.

• Plans, researches, designs, analyzes, estimates, identifies options, recommends, installs, tests, schedules, implements, administers, documents, monitors, tunes performance and maintains all primary and auxiliary technical architecture across all information security system platforms as related to assigned areas of specialty to ensure the integrity, security, availability, reliability, and performance of enterprise network & data systems to meet client needs and expectations.

• Evaluates and recommends new information security system products or services related to technical architecture to management as needed for developing, monitoring, and maintaining line of business & corporate support unit strategic/tactical plans conforming to the vision, mission, values, and objectives of the organization.
• Confers with management, programmers, risk assessment staff, auditors, facilities, and security departments and other personnel to identify and plan for data security for data, software applications, hardware, telecommunications, and computer installations.
• Develops and implements tests of computer systems to monitor effectiveness of security.
• Develops, coordinates, and implements disaster or emergency recovery procedures for information security systems to assure business continuity/disaster recovery.
• Assists in the development of information security policy and procedures.
• Analyze systems, network, and applications security and recommend/develop security measures to protect information against unauthorized access, modification, and/or loss.
• Works closely with Project Management Office (PMO) through Strategic Services to ensure that all new IT-related projects are reviewed for security prior to rollout.
• Develops and conducts information security risk assessments, reports findings and recommends corrective action, in applicable, to management.
• Coordinates & oversees information security third-party service providers to validate contracted services are provided according to contract and/or service level agreements.
• Supports Internal Auditor and contracted audit vendors related to information security audits and testing of controls

• Required: Bachelor's degree in Computer Science, Computer Engineering or relevant science degree and 5+ years of related experience and/or training.
• Preferred: Senior certifications (i.e. CISSP-ISSAP, SABSA)
• An equivalent combination of education and experience is allowed

• Ability to work under stress and meet deadlines
• Ability to operate a keyboard if required to perform the essential job functions
• Ability to read and interpret a document if required to perform the essential job functions
• Ability to travel if required to perform the essential job functions
• Ability to lift/move/carry approximately 10 pounds if required to perform the essential job functions. If the employee is unable to lift/move/carry this weight and can be accommodated without causing the department/division an "undue hardship" then the employee must be accommodated; hence omitting lifting/moving/carrying as a physical requirement.

Enterprise Security Architect

Requisition ID: 13950

Location:

Chicago, IL, US, 60631

Pay Type: Salary

Estimated Wage Range $120,000 - $146,000/Annually

COMPANY OVERVIEW

Amrize is building North America. From bridges and railways to data centers, schools, offices and homes, our solutions are inside the buildings and infrastructure that connect people and advance how we live. And we invite you to come and build with us.

As the partner of choice for professional builders, we offer advanced branded solutions from foundation to rooftop. Wherever our customers are, whatever their job, we're ready to deliver. Our 19,000 colleagues work across 1,000 sites supported by an unparalleled distribution network. Infrastructure, commercial and residential, new build, repair and refurbishment: We're in every construction market.

Amrize listed on the New York Stock Exchange and the SIX Swiss Exchange on June 23, 2025, following our spinoff as an independent company. Join us and build your ambition.

Description:

ABOUT THE ROLE

We are seeking a highly skilled and experienced Security Architect to join our dynamic Enterprise Architecture team. As our Security Architect, you will play a pivotal role in shaping and implementing our organization's security architecture, ensuring the confidentiality, integrity, and protection of our critical digital assets and data.

A distinguishing feature of this position is its deep operational embedment within the IT Security team. This structure is intentionally designed to foster a robust collaboration and bridge the critical functions of strategic architectural planning with the practical implementation of security control and requirements defined by the IT Security Team. You will partner closely with senior security and compliance leadership on strategic analysis, roadmap development and capability maturity reporting. Such integration is vital for creating a holistic and proactive cyber risk management capability, moving beyond potential organizational silos.

Your expertise will be crucial in the safeguarding of critical information assets while enabling business objectives, with an initial focus on our newly deployed Identity and Access Management (IAM) solution (Saviynt).

WHAT YOU'LL ACCOMPLISH

• Security Architecture Development and Integration: Develop, champion, and continuously evolve a comprehensive security architecture strategy that aligns with organizational objectives, regulatory requirements, and industry best practices. Collaborate with Enterprise Architects, Infrastructure/Cloud Architects, and Solution Architects to integrate security principles and standards into all layers of our technology landscape.

• Identity Access Management Architecture: Lead the architectural vision, design, and development of comprehensive IAM solutions across the enterprise. This includes the overall map of IAM capability building blocks, maturity assessments and roadmaps to desired targets. You will enable collaborative development and implementation of application role based access control policies and the fundamental security principle of least privilege access for users and systems.

• Collaboration and Stakeholder Engagement: Embed within relevant Security and Compliance teams and actively collaborate with Enterprise Architecture team, contributing to the development of enterprise-wide architectural standards. You will work closely with the IT Security team, which defines security controls, policies and operational requirements, translating these controls and requirements into actionable, effective architectural designs and solutions.

• Security Standards and Governance: Contribute significantly to the definition, implementation and ongoing maintenance of corporate security policies, procedures and standards. Ensure that all security architecture rigorously comply with applicable laws, government regulations and established security and compliance standards and controls.

• Threat Intelligence and Vulnerability Management: Stay abreast of emerging threats, vulnerabilities, and security trends. Provide guidance on threat modeling and participate in vulnerability assessment and penetration testing activities.

• Demonstrate a commitment to communicating, improving and adhering to health, safety and environmental policies in all work environments and areas. Promote a culture of safety and exhibit these behaviors.

• Other duties as assigned.

WHAT WE'RE LOOKING FOR

Education: Bachelor's degree

Field of Study Preferred: Computer Science, Information Security, or a related field.

Required Work Experience: Proven experience (typically 8+ years) in information security with a focus on security architecture.

Required Training/Certifications: Relevant security certifications (e.g., CISSP, CISM, CCSP) are highly desirable.

Additional Requirements:

• Deep understanding of security principles, frameworks, and best practices.

• Hands-on experience with Identity and Access Management (IAM) solutions, with specific knowledge of Saviynt preferred.

• Experience designing and implementing various cybersecurity technologies and controls.

• Familiarity with relevant compliance frameworks and regulatory requirements.

• Excellent analytical and problem-solving skills, with the ability to assess complex security challenges and develop effective solutions.

• Successful candidates must adhere to all safety protocols and proper use of Amrize approved Personal Protection Equipment ("PPE"), including but not limited to respirators. Employees that are required to wear respirators must be clean shaven where the respirator seal meets the face in order to pass the qualitative and quantitative fit tests.

WHAT WE OFFER

• Competitive salary

• Retirement Savings: Choose from 401(k) pre-tax and/or Roth after-tax savings

• Medical, Dental, Disability and Life Insurance

• Holistic Health & Well-being programs

• Health Savings Accounts (HSAs) & Flexible Spending Accounts (FSAs) for health and dependent care

• Vision and other Voluntary benefits and discounts

• Paid time off & paid holidays

• Paid Parental Leave (maternity & paternity)

• Educational Assistance Program

• Dress for your day

BUILDING INCLUSIVE WORKSPACES

At Amrize, there is endless opportunity for you to play your part. Whether you're in a technical, managerial, or frontline role, you can shape a career that works for you. We're seeking builders, creative thinkers and innovators. Come put your expertise to work while developing the knowledge and skills to drive your career forward. With us you'll have the chance to build your ambition!

Amrize North America Inc. takes pride in our hiring processes and our commitment that all qualified applicants will receive consideration for employment without regard to age, race, color, ethnicity, religion, creed, national origin, ancestry, gender, gender identity, gender expression, sex, sexual orientation, marital status, pregnancy, parental status, genetic information, citizenship, physical or mental disability, past, current, or prospective service in the uniformed services, or any other characteristic protected by applicable federal, state or local law. Amrize North America Inc, and its respective subsidiaries are Equal Opportunity Employers, deciding all employment on the basis of qualification, merit and business need. Amrize Canada Inc. is committed to the principles of employment equity and encourages the applications from women, visible minorities, and persons with disabilities.

In compliance with the ADA Amendments Act (ADAAA), if you have a disability and would like to request accommodation in order to apply for a position with us, please email This email address should only be used for accommodations and not general inquiries or resume submittals. In Ontario, our organization/business is committed to fulfilling our requirements under the Accessibility for Ontarians with Disabilities Act. Under the Act, accommodations are available on request for candidates taking part in all aspects of the selection process.

While we sincerely appreciate all applications, only candidates selected for an interview will be contacted.

Nearest Major Market: Chicago

Key Role:

Lead the planning and tracking of Governance, Risk, and Compliance (GRC) work efforts and deliverables, ensuring alignment with department objectives and regulatory timelines. Establish a centralized source for work efforts for prioritization and workforce planning. Organize and facilitate recurring team meetings, ensuring accountability, ownership, and progress tracking across initiatives. Develop and manage dashboards and reporting frameworks to track Service levels such as SLAs and SLRs, key performance indicators (KPIs), compliance posture, and risk metrics. Partner with workstream leads to ensure accurate, automated reporting to senior leadership and audit stakeholders on a regular schedule. Collaborate with workstream leads to translate high-level goals into detailed annual plans and actionable quarterly objectives with clear owners, milestones, and action items, ensuring effective implementation.Identify gaps and inefficiencies in current GRC operations. Work with workstream leads to design and implement improvements to workflows, tools, and processes. Define, communicate, and implement security architecture to support mission-critical operations and security assessments to maintain our client's ATO and security requirements.Work with the clients' GRC team and our internal product teams to ensure standards are met with information assurance and security requirements. Ensure up-to-date documentation to support audit readiness and organizational transparency. Due to the nature of work performed within this facility, U.S. citizenship is required.

Basic Qualifications:

• 4+ years of experience with IT, information security, or cybersecurity, including GRC, compliance, risk management, or business operations

• 3+ years of experience with performing system or risk assessments or accreditations in accordance with FISMA, NIST 800-53, or the Risk Management Framework (RMF)

• 2+ years of experience in vulnerability management and reporting using Splunk and AWS Security Hub

• 2+ years of experience in a leadership or project management role, including leading cross-functional projects and managing operational metrics within regulated environments

• Experience analyzing impacts of new Common Vulnerabilities and Exposures (CVEs) and Known Exploited Vulnerabilities (KEVs) against a platform and providing justifications for risk ratings

• Experience conducting threat, compliance, vulnerability, and risk assessments of cloud-based networks and network and system analysis, reporting their results, and recommending measures to reduce risk to the platform or application tenants

• Experience with Splunk and AWS native tools, including AWS Inspector, and Security Hub, including security controls and services

• Ability to obtain and maintain a Public Trust or Suitability/Fitness determination based on client requirements

• Bachelor's degree

• CISSP, CISA, or CISM Certification

Additional Qualifications:

• Experience supporting internal and external security assessments and audits

• Experience with scripting and automation

• Experience with project management and reporting tools such as Jira, Confluence, and SharePoint

• Knowledge of approaches to securing and hardening high assurance boundary systems

• Knowledge of zero trust architectures

• Ability to thrive in a fast-paced environment and drive alignment across stakeholder groups

• Possession of excellent interpersonal skills to collaborate with other engineering teams

• AWS Cloud Practitioner, AWS Solutions Architect, or AWS Security Certification

Vetting:

Applicants selected will be subject to a government investigation and may need to meet eligibility requirements of the U.S. government client.

Compensation

At Booz Allen, we celebrate your contributions, provide you with opportunities and choices, and support your total well-being. Our offerings include health, life, disability, financial, and retirement benefits, as well as paid leave, professional development, tuition assistance, work-life programs, and dependent care. Our recognition awards program acknowledges employees for exceptional performance and superior demonstration of our values. Full-time and part-time employees working at least 20 hours a week on a regular basis are eligible to participate in Booz Allen's benefit programs. Individuals that do not meet the threshold are only eligible for select offerings, not inclusive of health benefits. We encourage you to learn more about our total benefits by visiting the Resource page on our Careers site and reviewing Our Employee Benefits page.

Identity Statement

As part of the application process, you are expected to be on camera during interviews and assessments. We reserve the right to take your picture to verify your identity and prevent fraud.

Work Model
Our people-first culture prioritizes the benefits of flexibility and collaboration, whether that happens in person or remotely.

• If this position is listed as remote or hybrid, you'll periodically work from a Booz Allen or client site facility.
• If this position is listed as onsite, you'll work with colleagues and clients in person, as needed for the specific role.

Commitment to Non-Discrimination

All qualified applicants will receive consideration for employment without regard to disability, status as a protected veteran or any other status protected by applicable federal, state, local, or international law.

• Security Architecture Design:

• Risk Assessment and Management:

• Security Tool Evaluation and Integration:

• Security Policy Development: Define and enforce security policies, standards, and procedures to ensure compliance with regulatory requirements and industry best practices.
• Incident Response and Forensics: Contribute towards development of incident response plans and procedures. Participate in investigations into security incidents, analyze root causes, and implement corrective actions to prevent future occurrences.
• Collaboration and Communication:

• Minimum 7 years of information security experience
• Bachelor's or Master's degree in Computer Science, Information Security, or related field.
• Proven experience in enterprise security architecture (minimum 4 years), with a focus on designing and implementing security solutions in large-scale environments.
• Strong knowledge of security principles, protocols, and technologies, including encryption, authentication, access control, and network security.
• Hands-on experience with security tools such as SIEM, IDS/IPS, DLP, endpoint protection, and vulnerability management systems.
• Familiarity with industry standards and regulations, such as ISO 27001, NIST, GDPR, HIPAA, and PCI DSS.
• Excellent analytical and problem-solving skills, with the ability to assess complex security risks and develop effective mitigation strategies.
• Strong communication and interpersonal skills, with the ability to collaborate effectively with diverse stakeholders at all levels of the organization.
• Relevant certifications (e.g., CISSP, CISM, CEH, CCSP) are a plus.

• Effective communications skills, including both written and verbal communication skills, and the ability to translate security principles into business terms
• Foundational technical expertise, including both business acumen and strategic thinking, as well as the ability to identify issues and provide innovative problem solving
• Passionate about driving and sustaining change through committed leadership
• Creative and results-oriented, who is good at balancing multiple priorities and issues
• Team player up and down the organizational structure, across countries and IT/ Security departments
• Ability to form open, effective, and trusting relationships with global IT leaders
• Provides a high level of professional service to customers (both internal and external) consistent with Lockton standards and procedures

• 7+ years of experience in enterprise security roles, including architecture, policy, and incident management.
• Proven experience designing and implementing security frameworks across cloud-based enterprise applications.
• Strong knowledge of Workday, UKG, and Hyland OnBase security models and integration points.
• Demonstrated leadership in cross-functional security initiatives and governance programs.
• Excellent communication, analytical, and stakeholder engagement skills.
• Experience with audit readiness, risk assessments, and regulatory compliance (e.g., SOX).

• Security architecture and compliance

• Define and maintain role-based access control, segregation-of-duties, domain and business process security.
• Lead security governance, role-change approvals, and SOX/privacy compliance controls.
• Design and maintain enterprise security architecture for Workday, UKG, and Hyland OnBase platforms.
• Develop and enforce security policies, standards, and governance frameworks.
• Lead incident response planning, investigation, and resolution for security-related events.
• Serve as a trusted advisor to leadership on security strategy, risk mitigation, and compliance.
• Collaborate with technical and business stakeholders to ensure secure system design and access controls.
• Oversee security audits, assessments, and readiness for internal and external compliance requirements.
• Contribute to technical roadmap meetings to embed security into new features and integrations.
• Mentor and guide Security Analysts in both Governance/Policy and Operations tracks.
• Monitor emerging threats and recommend proactive security enhancements.
• Ensure alignment of security practices with organizational goals and regulatory standards.

Company Information
For more than 20 years, AEG has played a pivotal role in transforming sports and live entertainment. Annually, we host more than 160 million guests, promote more than 10,000 shows and present more than 22,000 events around the world. We are committed to innovation, artistry, and community, and leverage the power of our 300+ venues, leading sports franchises, marquee music brands, integrated entertainment districts, premier ticketing platform and global sponsorship activations, to create memorable moments that give the world reason to cheer.

Our business is interwoven with the human mind and heart, and we strive to build a diverse and inclusive company that reflects the artists, athletes, and fans that we host; reach beyond traditional boundaries to support the communities in which we operate; and minimize our impact on the environment by adopting sustainable practices throughout our business operations.

If you want to be challenged to up your game and make a difference, then join us in giving the world reason to cheer!

Job Summary

The Enterprise Security Architect (SA) is responsible for designing and implementing secure architectures that align with business objectives and reduce risk, reporting directly to the Chief Information Security Officer (CISO). This role collaborates across functions-including Global Enterprise Services, Infrastructure, Application Development, Legal, Compliance, and Security Operations-to embed security standards into enterprise technology solutions.

Essential Functions

• Secure Architecture Design: Define and maintain enterprise-wide security architecture standards and blueprints across infrastructure, cloud, endpoint, and application layers. Ensure solutions are securely designed and aligned with business goals, regulatory requirements, and the CISO's strategic objectives.
• Solution Reviews and Advisory: Provide expert guidance during solution design and implementation. Lead threat modeling, architecture reviews, and risk assessments as part of technical intake and governance processes.
• Cross-Functional Engagement: Serve as the security subject matter expert within project teams. Partner with Global Enterprise Services, Infrastructure, Application Development, and PMO to ensure secure integration and alignment of technical requirements.
• Security Standards and Frameworks: Develop and maintain reference architectures, secure configuration standards, and solution patterns. Ensure consistency with frameworks such as NIST, PCI-DSS, ISO 27001, and GDPR.
• Cloud and SaaS Security Enablement: Lead secure design of cloud-native and SaaS platforms, including IaaS and PaaS. Collaborate with Cloud Engineering and DevOps to implement secure-by-design deployment practices.
• Innovation and Strategic Foresight: Stay ahead of evolving threats and technology trends. Contribute to the long-term security architecture roadmap by identifying opportunities to improve the organization's security posture.

Required Qualifications

• BA/BS Degree (4-year) Computer Science, Cybersecurity, Engineering, Information Systems, or related field. Master's degree or advanced certifications preferred.
• 10+ years experience in IT and/or cybersecurity, with at least 5 years in a security architecture or engineering role.
• Proven ability to design secure enterprise systems and integrations across on-prem, cloud, and hybrid environments.
• Experience with identity and access management, network segmentation, encryption, logging/monitoring, and secure SDLC.
• Strong understanding of architectural frameworks (SABSA, TOGAF, or similar) and secure design methodologies.
• Experience conducting architecture risk assessments, threat modeling, and security reviews of enterprise systems.
• Expert-level knowledge of security technologies including firewalls, web application firewalls (WAFs), identity and access management (IAM), endpoint protection, cloud-native security controls, and SIEM/SOAR platforms.
• Strong familiarity with modern IT and application architectures, including public cloud platforms (AWS, Azure, GCP), containerization (e.g., Docker, Kubernetes), and DevOps/CI-CD pipelines.
• Proven ability to assess complex technical environments, conduct threat modeling, and deliver actionable risk mitigation strategies.
• Exceptional communication skills, with the ability to clearly articulate technical risks and solutions to both technical and non-technical stakeholders.
• Demonstrated ability to influence and collaborate across Security, IT, Legal, Compliance, and business units in a matrixed environment.
• Proficient in architecture modeling and documentation tools such as Lucidchart, Visio, and Confluence, with an emphasis on clarity and reusability.
• Strategic mindset with a hands-on approach; able to navigate between high-level architectural vision and detailed implementation considerations in fast-paced, evolving environments.
• Relevant certifications such as CISSP, SABSA, CCSP, AWS/Azure Security Certifications, or equivalent highly preferred.

Pay Scale: $164,794 - $224,719

Bonus: This position is eligible for a bonus under the current bonus plan requirements.

Benefits: Full-time: We offer a comprehensive benefits package that includes: medical, dental and vision insurance, paid holidays, vacation and sick time, company paid basic life insurance, voluntary life insurance, parental leave, 401k Plan (with a current employer match of 3%), flexible spending and health savings account options, and wellness offerings.

AEG reserves the right to change or modify the employee's job description whether orally or in writing, at any time during the employment relationship. AEG may require an employee to perform duties outside their normal description.

Who We Are

At Corebridge Financial, we believe action is everything. That's why every day we partner with financial professionals and institutions to make it possible for more people to take action in their financial lives, for today and tomorrow.

We align to a set of Values that are the core pillars that define our culture and help bring our brand purpose to life:

• We are stronger as one: We collaborate across the enterprise, scale what works and act decisively for our customers and partners
• We deliver on commitments: We are accountable, empower each other and go above and beyond for our stakeholders
• We learn, improve and innovate: We get better each day by challenging the status quo and equipping ourselves for the future
• We are inclusive: We embrace different perspectives, enabling our colleagues to make an impact and bring their whole selves to work

Who You'll Work With

The Information Technology organization is the technological foundation of our business and works in collaboration with our partners from across the company. The team drives technology and digital transformation, partners with business leaders to design and execute new strategies through IT and operations services and ensures the necessary IT risk management and security measures are in place and aligned with enterprise architecture standards and principles.

About The Role

The Enterprise Security Architect will help to lead the design, implementation, and oversight of secure systems and architectures across our organization. This role is critical to embedding security into enterprise processes, aligning with industry standards, and building a scalable security foundation. The ideal candidate will bring deep technical expertise, strong communication skills, and the ability to work independently or collaboratively to drive security initiatives and foster a security-first culture.

Responsibilities

• Design, document, and maintain secure architecture patterns, diagrams, and reference architectures to guide security implementations across the organization.
• Conduct comprehensive security reviews of applications, systems, and networks, identifying vulnerabilities and recommending secure design strategies.
• Perform threat modeling and risk assessments to identify potential vulnerabilities and recommend appropriate mitigating controls.
• Partner with enterprise and line-of-business architects to integrate security seamlessly into designs and processes.
• Translate complex technical security concepts into clear, actionable insights for C-level executives, business leaders, non-technical stakeholders, and technical engineering teams.
• Recommend mitigating controls, security tools, and remediation strategies to address security gaps and minimize risk.
• Stay current on security threats, vulnerabilities, and technologies to enhance the organization's security posture.
• Promote a security-first culture by mentoring technical teams, educating stakeholders, and embedding security best practices into organizational workflows.

• 7+ years of hands-on experience in infrastructure, systems, networks, applications, or cloud security.
• Ability to create and review diagrams using tools such as Visio or Lucidchart.
• Familiarity with secure architecture patterns, reference architectures, and frameworks.
• Expertise in SaaS, PaaS, and IaaS environments, including platforms like AWS, Azure, M365, and Salesforce.
• Experience working with various identity and access management (IAM) solutions such as CyberArk, Okta, Ping Identity, Entra ID/Azure AD, and other tools supporting SSO, MFA, and PAM.
• Familiarity with tools like Jira, Confluence, and ServiceNow for workflow management and documentation.
• Expertise in threat modeling, vulnerability management, and risk assessments.
• Working knowledge of regulatory requirements and compliance standards such as NYDFS, CCPA, GLBA, PCI-DSS, HIPAA, SOX, and GDPR.
• Relevant certifications such as CISSP, CCSP, or equivalent.
• Ability to work independently or collaboratively in a team-oriented environment.
• Bachelor's degree in a relevant field or proven record of experience in Information Technology and Cyber Security roles.

• Familiarity with protocols such as SAML, OAuth, OIDC, FIDO, PKI, JWT, LDAP, and Kerberos.
• Strong knowledge of common network protocols, including TCP/IP, HTTP/HTTPS, DNS, SMTP, SNMP, SSH, and VPN technologies.
• Expertise in encryption technologies (e.g., TLS, AES, RSA) and key management practices (e.g., KMS, HSM, PKI).
• Familiarity with firewalls, IDS/IPS, WAF, VPN, Routers, Switches, Load Balancers, Zero-Trust, microsegmentation, and SD-WAN security solutions, CASB, Proxy, SSE.
• Experience with SIEM tools such as Splunk, QRadar, or ArcSight and logging/monitoring best practices.
• Knowledge of Docker, Kubernetes, EKS, ECS, and OCP, including their security considerations.
• Proficiency in integrating security into DevOps pipelines with tools such as Jenkins, GitHub, Artifactory, Terraform, and Vault.

• Security Frameworks:
• NIST Cybersecurity Framework (CSF)
• ISO 27001 and 27002
• CSA CCM (Cloud Controls Matrix)
• CIS Controls
• Architecture Frameworks:
• SABSA (Sherwood Applied Business Security Architecture)
• TOGAF (The Open Group Architecture Framework)
• AWS Well-Architected Framework

• TOGAF (The Open Group Architecture Framework)
• SABSA Foundation or Practitioner
• CISSP-ISSAP (Concentration in Security Architecture)
• Certified Cloud Security Professional (CCSP)
• GIAC Security Architecture (GDSA)
• AWS Certified Solutions Architect - Associate or Professional
• AWS Certified Security - Specialty
• Microsoft Certified: Azure Solutions Architect Expert

• Strong analytical and problem-solving abilities.
• Excellent interpersonal and collaboration skills.
• Strong organizational and time management skills.
• Adaptability and a commitment to continuous learning of new technologies and methodologies.
• Attention to detail and dedication to delivering high-quality results.
• High level of integrity and ethical conduct.

• Experience in financial services, insurance, or other regulated environments.
• Proven ability to design and implement security controls that align with industry regulations and standards.
• Experience conducting security assessments and audits in regulated industries.
• Familiarity with industry-specific threats and vulnerabilities to tailor security solutions.

• Health and Wellness: We offer a range of medical, dental and vision insurance plans, as well as mental health support and wellness initiatives to promote overall well-being.
• Retirement Savings: We offer retirement benefits options, which vary by location. In the U.S., our competitive 401(k) Plan offers a generous dollar-for-dollar Company matching contribution of up to 6% of eligible pay and a Company contribution equal to 3% of eligible pay (subject to annual IRS limits and Plan terms). These Company contributions vest immediately.
• Employee Assistance Program: Confidential counseling services and resources are available to all employees.
• Matching charitable donations: Corebridge matches donations to tax-exempt organizations 1:1, up to 5,000.
• Volunteer Time Off: Employees may use up to 16 volunteer hours annually to support activities that enhance and serve communities where employees live and work.
• Paid Time Off: Eligible employees start off with at least 24 Paid Time Off (PTO) days so they can take time off for themselves and their families when they need it.

About the Team

Within the OpenAI Security organization, our IT team works to ensure our team of researchers, engineers, and staff have the tools they need to work comfortably, securely, and with minimal interruptions. As an Enterprise Security Engineer, you will work in a highly technical and employee-focused environment.

Our IT team is a small and nimble team, where you'll have the opportunity to dive into a wide breadth of areas and build from the ground up. We're well supported and well resourced, and have a mandate to deliver a world-class enterprise security program to our teams.

About the Role

As an Enterprise Security Engineer, you will be responsible for implementing and managing the security of OpenAI's internal information systems' infrastructure and processes. You will work closely with our IT and Security teams to develop security capabilities, enforce security policies, and monitor internal systems for security threats.

In this role, you will:

• Develop and implement security measures to protect our company's information assets against unauthorized access, disclosure, or misuse.

• Monitor internal and external systems for security threats and respond to alerts.

• Contribute to and enforce our company's IT and Security policies and procedures.

• Work closely with our IT department to harden our infrastructure using best practices in AzureAD, GSuite, Github, and other SaaS tooling.

• Advise our employees on best practices for maintaining the security of their endpoints, and office AV and network infrastructure.

• Devise novel sharing controls and associated monitoring to protect company data, including intelligent groups management, Data Loss Prevention (DLP) and other security controls as appropriate.

• Employ forward-thinking models like "secure by default" and "zero trust" to create sustainably secure environments for knowledge workers and developers.

• Identify and remediate vulnerabilities in our internal systems, adhering to best practices for data security.

• Use our own AI-driven models to develop systems for improved security detection and response, data classification, and other security-related tasks.

• Educate employees on the importance of data security, and advise them on best practices for maintaining a secure environment.

• Contribute to OpenAI's endpoint and cloud security roadmaps by staying up to date with the latest security threats, and making recommendations for improving our security posture.

You might thrive in this role if you have:

• Experience in protecting and managing macOS fleets.

• Experience deploying and managing endpoint security solutions (e.g. management frameworks, EDR tools).

• Experience with public cloud service providers (e.g. Amazon AWS, Microsoft Azure).

• Experience with identity and access management frameworks and protocols, including SAML, OAUTH, and SCIM.

• Experience with e-mail security protocols (e.g. SPF, DKIM, DMARC) and controls.

• Intermediate or advanced proficiency with a scripting language (e.g. Python, Bash, or similar).

• Knowledge of modern adversary tactics, techniques, and procedures.

• Ability to empathize and collaborate with colleagues, independently manage and run projects, and prioritize efforts for risk reduction.

.

About OpenAI

OpenAI is an AI research and deployment company dedicated to ensuring that general-purpose artificial intelligence benefits all of humanity. We push the boundaries of the capabilities of AI systems and seek to safely deploy them to the world through our products. AI is an extremely powerful tool that must be created with safety and human needs at its core, and to achieve our mission, we must encompass and value the many different perspectives, voices, and experiences that form the full spectrum of humanity.

We are an equal opportunity employer, and we do not discriminate on the basis of race, religion, color, national origin, sex, sexual orientation, age, veteran status, disability, genetic information, or other applicable legally protected characteristic.

For additional information, please see OpenAI's Affirmative Action and Equal Employment Opportunity Policy Statement.

Qualified applicants with arrest or conviction records will be considered for employment in accordance with applicable law, including the San Francisco Fair Chance Ordinance, the Los Angeles County Fair Chance Ordinance for Employers, and the California Fair Chance Act. For unincorporated Los Angeles County workers: we reasonably believe that criminal history may have a direct, adverse and negative relationship with the following job duties, potentially resulting in the withdrawal of a conditional offer of employment: protect computer hardware entrusted to you from theft, loss or damage; return all computer hardware in your possession (including the data contained therein) upon termination of employment or end of assignment; and maintain the confidentiality of proprietary, confidential, and non-public information. In addition, job duties require access to secure and protected information technology systems and related data security obligations.

To notify OpenAI that you believe this job posting is non-compliant, please submit a report through this form. No response will be provided to inquiries unrelated to job posting compliance.

We are committed to providing reasonable accommodations to applicants with disabilities, and requests can be made via this link.

OpenAI Global Applicant Privacy Policy

At OpenAI, we believe artificial intelligence has the potential to help people solve immense global challenges, and we want the upside of AI to be widely shared. Join us in shaping the future of technology.

Compensation Range: $260K - $325K

• Enhances security team accomplishments and competence by planning delivery of solutions; answering technical and procedural questions for less experienced team members; teaching improved processes; mentoring team members.
• Determines security requirements by evaluating business strategies and requirements; researching information security standards; conducting system security and vulnerability analyses and risk assessments; studying architecture/platform; identifying integration issues; preparing cost estimates.
• Plans security systems by evaluating network and security technologies; developing requirements for local area networks (LANs), wide area networks (WANs), virtual private networks (VPNs), routers, firewalls, and related security and network devices; designs public key infrastructures (PKIs), including use of certification authorities (CAs) and digital signatures as well as hardware and software; adhering to industry standards.
• Implements security systems by specifying intrusion detection methodologies and equipment; directing equipment and software installation and calibration; preparing preventive and reactive measures; creating, transmitting, and maintaining keys; providing technical support; completing documentation.
• Verifies security systems by developing and implementing test scripts.
• Maintains security by monitoring and ensuring compliance to standards, policies, and procedures; conducting incident response analyses; developing and conducting training programs.
• Upgrades security systems by monitoring security environment; identifying security gaps; evaluating and implementing enhancements.
• Prepares system security reports by collecting, analyzing, and summarizing data and trends.
• Updates job knowledge by tracking and understanding emerging security practices and standards; participating in educational opportunities; reading professional publications; maintaining personal networks; participating in professional organizations.
• Enhances department and organization reputation by accepting ownership for accomplishing new and different requests; exploring opportunities to add value to job accomplishments.
• Performs other incidental and related duties as required and assigned.
• Other assignments as assigned my management.

• Must be at least 21.
• Extensive experience in information security and/or IT risk management with a focus on security, performance and reliability.
• Solid understanding of security protocols, cryptography, authentication, authorization and security.
• Good working knowledge of current IT risks and experience implementing security solutions.
• Experience implementing multi-factor authentication, single sign-on, identity management or related technologies.
• Ability to interact with a broad cross-section of personnel to explain and enforce security measures.
• Excellent written and verbal communication skills as well as business acumen and a commercial outlook.
• Minimum of 10 years' experience in Enterprise IT security.
• Must adhere to all grooming standards, no "visible" tattoos/piercings or unnatural hair and nail colors

• Nevada Gaming Registration
• Colorado Gaming License
• CISM
• Security+
• CCNP
• CISSP

• Comprehensive benefits (medical, dental, vision, supplemental coverage)
• 401K retirement savings plan + discretionary match
• Education Tuition Reimbursement Program
• Paid Vacation
• Holiday Pay
• Recreation /Fitness Discounts
• Weekly Resort Prizes
• Career Development and Training Workshops
• FREE daily meal
• Internal Advancement