Hanesbrands, Inc.
Winston, Salem, NC
We are seeking an experienced and strategic-minded Director of Cybersecurity Engineering & Architecture to oversee the development and implementation of strategic and tactical leadership for designing, operating, and optimizing the cybersecurity engineering function. This role will support multiple disciplines and domains including network, application, cloud, and endpoint security. The successful candidate will play a key role in ensuring our systems and data are protected against evolving cyber threats and compliance requirements.
• Provide strategic and tactical leadership for designing, operating, and
optimizing the cybersecurity architecture and engineering function.
• Create, maintain, and enforce enterprise security standards, policies,
procedures, patterns, and documentation.
• Engage with stakeholders in support of the organization and be an advocate
for Information Security controls across the organization.
• Develop and maintain the organization's cybersecurity architecture strategy
and roadmap in alignment with business goals and industry best practices.
• Lead a team of cybersecurity architects in designing secure and scalable
solutions for networks, systems, applications, and cloud environments.
• Collaborate closely with cross-functional teams including IT, engineering, and
operations to integrate cybersecurity requirements into architecture designs
and development processes.
• Define and enforce cybersecurity design principles, standards, and guidelines
to ensure consistency and effectiveness across the organization.
• Conduct risk assessments and security reviews of proposed architectures and
technologies to identify vulnerabilities and recommend mitigations.
• Stay informed about emerging cybersecurity technologies, trends, and threats
to continuously improve the organization's security posture.
• Provide guidance and leadership on cybersecurity architecture projects,
ensuring timely and successful delivery of initiatives.
• Establish and maintain relationships with external cybersecurity vendors,
partners, and industry peers to leverage expertise and resources.
Minimum Education/ Experience
• Bachelor's degree with 10+ years relevant work experience including prior
management experience: 4+ years of equivalent work experience can be substituted
for bachelor's degree. We prefer candidates with a master's degree with 8+ years
relevant work experience
Required Certification(s)
• Network Security: CCNP, CCNA, CompTIA Network+ or equivalent We prefer relevant
cybersecurity certifications (e.g., CISSP-ISSAP, CCSP, SABSA)
Specific Skills or Experience Required:
• Extensive experience (8+ years) in cybersecurity architecture, design, and
implementation, with a focus on enterprise-level environments.
• In-depth knowledge of cybersecurity frameworks and standards (e.g., NIST, ISO/IEC
27001, CIS Controls) and their application in architecture design.
• Experience in architecting and securing cloud environments (e.g., AWS, Azure, GCP)
and familiarity with containerization technologies (e.g., Docker, Kubernetes).
• Proficiency in security technologies such as firewalls, IDS/IPS, VPNs, SIEM, DLP, and
endpoint security solutions.
• Experience with OT/IIoT security specifically knowledge of ICS and SCADA protocols,
including DNP3, ICCP, 61850, GOOSE, C37.118, ModBus+, ZigBee, 802.11x, RF
• In depth knowledge of implementing Zero Trust, Software Defined Wide Area
Networking and Secure Services Edge Architectures for global organizations
Job Specific Competencies:
• Strong analytical and problem-solving skills, with the ability to assess complex
security issues and recommend effective solutions.
• Excellent communication skills with the ability to convey technical concepts to non-
technical stakeholders and executive leadership.
• Network and encryption experience, including virtual private networks (VPNs), IPsec,
SSL/TLS, LDAP and public key infrastructure (PKI).
• Capability to build risk models and analyze security weaknesses,
• Experience with FAIR and/or SABSA a plus
• Proven experience technical lead organizing and mentoring security architects.
• Working knowledge of security compliance standards (NIST, GDPR, CCPA, ISO,PCI,
SOC 2, etc.)
Apply Online
17-May-2024