San Francisco, CA, US
Text size
aA+ aA-
Click here to print

Security Architect - Ecommerce & Retail

Country : USA USA

State : California

County : San Francisco County

Town : San Francisco

Category : Logistics

Contract type : Permanent

Availability : Full time

Company presentation

Our past is full of iconic moments — but our future is going to spark many more. Our brands — Gap, Banana Republic, Old Navy, Athleta, INTERMIX and Hill City — have dressed people from all walks of life and all kinds of families, all over the world, for every occasion for more than 50 years.

But we’re more than the clothes that we make. We know that business can and should be a force for good, and it’s why we work hard to make product that makes people feel good, inside and out. It’s why we’re committed to giving back to the communities where we live and work. If you're one of the super-talented who thrive on change, aren't afraid to take risks and love to make a difference, come grow with us.

Job description

About the RoleGap Inc. Technology is the engine driving innovative retail, e-commerce, and global enterprise technology for Gap Inc.'s four renowned brands - Gap, Banana Republic, Old Navy, Athleta. We're looking for exceptional talent with fresh ideas, cutting-edge skills, and a passion for retail technology. As part of our team, you'll be exposed to hands-on learning opportunities across all facets of the Gap Inc. Technology organization, working on high-profile, big-impact projects alongside the best technologists and leaders in the industry. Ready to get started?
GapTech Information Security is the global information security function for Gap Inc. inclusive of and across, all Gap Inc. brands. The Ecommerce & Retail Security Architect is a member of the Product Security team within GapTech Information Security, and reports to the Director, Product Security. In this role, the Security Architect will cater to the needs of the business, engage with the E-commerce and Retail products, its infra, and developer teams, be responsible for implementing security controls across all 4 customer facing Websites, IOT devices in stores, governing and providing technical advisory support across a rapidly modernizing and dynamic hybrid multi-cloud and retail, supply chain environment, ensuring governance and compliance with legal and regulatory requirements, maintain Gap Inc. Information Security policies, standards, and industry best practices.What You'll Do
- You will lead security initiatives in all our Sell channels including Stores, Online.
- Develop complete understanding of our Online, Stores & Customer Support technology stack.
- Assess risks and weaknesses and identify security design or implementation gaps in existing products and services. Direct remediation efforts and operationalize detect-and-response capabilities. You will incept and supervise programs to harden the infrastructure and protect our customers.
- Collaborate with other technical and security architects across other teams to maintain visibility into the evolving technical and security picture and proactively inspire change. Influence the product roadmap, work directly with leadership of GapTech to prioritize and execute them.
- As a Security Architect, you will provide technical direction, oversight, and execution guidance for the Security Architecture and Engineering teams as well as greater InfoSec.
- Represent Security Architecture and InfoSec broader GapTech events.
- You'll establish a vision around how InfoSec approaches strategic risk reduction. Build Long-Range-Plans (LRP) targeting specific security aspects with broad impact across GapTech.
- Stay informed about the security landscape - internal and external threats, regulatory requirements, policy changes and other sources - and ensure applications maintain compliance as well as security hardening.
- You will introduce policies and processes that scale engineering organization operations.
Who You Are
- Proven track record of managing complex problems and cultivating collaboration across organizational boundaries with key stakeholders (SDEs, leaders, fellow PE community, non-technical staff)
- Have a deep understanding of modern web & app stacks & technologies as well as IoT/hardware security to support our Stores environment.
- Have a clear understanding of cloud computing services/deployment architecture, especially Azure, GCP and OCI.
- 7+ years of demonstrated experience in software architecture; design, implementation, support, and evaluation of security-focused tools and services
- 7+ years of experience identifying security issues and risks, and developing mitigation plans
- 7+ years of experience in the following areas: cloud computing, cryptography, web & mobile applications, web application firewall, IoT security, software development, threat modeling.
- Bring advanced-level skills to research, evaluate, track and manage security threats and vulnerabilities in situations where in-depth analysis of ambiguous information is required.
- Technical Leader. You can drive an initiative from concept to full production deployment while maintaining security and operational excellence throughout the process. You influence other engineers with your technical depth and collaborative attitude.
Click here to print

Similar Offers

Asset Protection Investigator

| San francisco

Store Protection Specialist

| San francisco

Manager, Asset Protection

| San francisco

Fashion Jobs