Cyber Security Architect

**Responsibilities**:
1. Security Architecture & Secure by Design
- Enable the right integration of Cyber security requirements in new programs, drive architecture reviews, security architecture risk assessments; studying architecture/platform; identifying integration issues.
- Define & drive Cyber security technology roadmaps to enable right level of threat detection and prevention capabilities for Garrett. Continuous focus on Security technology roadmap enhancements to integrate advanced technologies such as AI/ML, Blockchain, Quantum safe cryptography. Integrate best practices and strengthen cyber security systems by evaluating network and security technologies; developing security architecture requirements for networks (LAN/WANs/VPNs), routers, firewalls, and related security and network devices; designs public key infrastructures (PKIs), including use of certification authorities (CAs) and digital signatures as well as hardware and software; adhering to industry standards.
- Responsible to define Cyber Security Technology stack to support overarching Cyber Security Strategy & mitigate emerging cyber security threats.
- Responsible to define Cyber Security Reference Architecture for key use cases across all IT Strategic initiatives such as Data Lake, eCommerce, Parametric Design for Engineering, Cloud Security, DevOps, Containerization project unique to organization line of business and functional teams.
- Drive Cyber Advisories by analysing the latest threats from industry and providing concise advisories to Garrett stakeholders.
- Responsible to establish & deploy Security baseline configurations for datacentres, IT and Plant, WANs, routers, firewall and related network devices.

2. Architecture reviews & OEM Customer interface
- Responsible to develop specific Cyber Security controls based on Automotive OEM customer requirements & drive implementation across IT & Manufacturing Plant OT environments.
- Responsible for defining and implementing Cyber Security controls and technology required by customer to enable right level of protection for sensitive & confidential data.
- Represent Garrett Cyber Security team with OEM Customers such as Daimler, GM, etc to develop confidence in Garrett's Cyber Security practices and collaborate in securing customer data and adherence to the customer requirements for security controls.
- Collaborate with stakeholders across Engineering, ISC, Common Functions, Sales & Marketing, Comms, etc to define & implement Cyber Security architecture solutions to meet Customer's Cyber Security requirements.
- Collaborate with Enterprise Architecture team to advance Cyber Security Architecture priorities.
- Review the security requirements, draft Threat Modelling for the architecture, document the Cyber Security requirements to mitigate the security risks with the system.

3. Cloud Security Governance
- Global Responsibility for defining & driving Cloud Security governance program to meet business requirements for all SaaS services and other cloud services such as AWS, O365, On shape, Coupa, HR services and other critical services hosted on the cloud for the organizations.
- Be a critical decision maker in selecting new cloud services by reviewing cloud security architecture before a new service is selected.
- Responsible to establish & deploy Cyber Security baseline configurations for AWS.
- Collaborate with Enterprise Architecture to implement Cloud native Cyber security reference framework and knowledge repository. Create layered core, secondary and tertiary Cyber Security controls for implementing and executing cloud services.

4. Secure Product Life Cycle
- Responsible for defining Secure product development life cycle & integration of security development practices into DevOps life cycle across IT & COV product development.
- Be proactive in evaluating the industry trends on new technologies and methods to advance Cyber Security architecture and technologies.
- Participate in the technical evaluation and testing of hardware and software for possible impact on systems security or for risk to intellectual property.
- Establish & report Cyber Security Architecture KPI metrics.Provide guidance to maintenance Up to date Security Policies and Procedures

Education / Qualifications:

- Bachelor’s degree in information technology or related discipline

Experience Required:

- 15+ years of total experience & 10+ years of relevant experience in Cyber Security Architecture areas
- Possess leadership skills to be able to directly and or indirectly influence the business functions to successfully implement security projects.
- Demonstrated proficiency with the IT Security Common Body of Knowledge required for enabling security concepts on varied technology.
- Demonstrated experience in maintaining common IT security technologies such as firewall, VPN, PKI, E-business and web technologies, vulnerability & risk assessment, intrusion detection, event correlation, DMZ, Extranet, etc.
- Inte