30161BR

Position Title:

Security Architect – Platform Architecture Team

Department:

Publix Technology

Location:

Lakeland, FL

Description:

Please note, this is a hybrid position requiring 8 days per month on-site in Lakeland, FL.

Welcome to Publix Technology, the award-winning technical group for Publix Super Markets, Inc., the largest employee-owned company in the nation. Our technology teams of 2100+ associates provide cutting-edge, modern solutions to nearly 1400 retail stores and 200,000+ internal team members across 8 states. We offer positions at all levels – summer internships, individual contributor roles, to technical leadership across a broad range of technical disciplines. So, whether you’re interested in IT security, platform engineering, architecture, software development, or infrastructure – we have a career path for you! See for yourself why Publix Super Markets, Inc. is a constant on Fortune Magazine’s Best Companies to Work list.

As a Security Architect, you will be an industry subject matter expert, defining the security architecture for all application technologies. You will provide training and mentoring to current team associates to ensure seamless integration of security controls. The position will provide security best practices and guidance for Publix Super Markets, Inc.

Responsibilities :

• Define the security architecture for application technologies, including:

• Micro-service security, API security, web application security, web services security,

• Non-web application security,

• Middleware security,

• Database security, data protection,

• Public cloud infrastructure and,

• Enterprise identity and access management.

• Develop principles, best practices, standards, and guidelines for security technologies.

• Define current and future security processes and systems so they align with core policies and strategic direction.

• Provide consulting services to software development and technology teams to ensure strategic alignment and integration of required security technologies and standards into solution designs.

• Help identify weaknesses in security designs and guide how to rectify them.

• Provide direction on tools to incorporate within our Software Development Lifecycle to test for vulnerabilities in custom developed applications and adequately.

• Provide training, mentoring, and knowledge transfer to analysts, developers, engineers, and other architects to ensure a strong focus on the seamless integration of security controls in a highly distributed environment.

Req ID:

30161BR

Additional Required Qualifications:

Facility:

Lak Information Systems/DTO2 B015

State:

Florida

Frequency of Pay:

Monthly

Minimum Base Pay:

9,995

Additional Preferred Qualifications:

Additional Information:

Your application may have additional steps that you will need to complete in order to remain eligible for consideration. Please be sure to monitor your email, including your spam folder, on a daily basis for critical, time-sensitive emails that could require action within 24-48 hours.

Please do not use your Publix email address when applying. Once your application has been successfully submitted you will receive a confirmation email.

Relocation/Household Good Shipment Allowance will NOT be provided.

Address:

331 S. Florida Ave

Potential Annual Pay with Bonus:

129,935 - 194,805

City:

Lakeland

Other Compensation Information:

Year End Bonus:

As a year-end bonus to associates, Publix issues one month’s extra pay (pro-rated in the first year) each year if associate remains employed through issue date of the bonus check that year. This is calculated as a 13th month of pay in the Potential Annual Pay with Bonus line above

Maximum Base Pay:

14,985

Required Qualifications:

• Must have a bachelor’s degree in computer science or an analytical discipline, or equivalent experience,

• Must have one or more relevant security qualifications, such as CISA, CISSP, CISSM, GIAC, cloud security, or other information security/technology certifications.

• 8+ years of experience in application development, technology architecture, solution strategies formation, design, product selection, testing, and implementation, including at least five years pertaining specifically to security.

• 5+ years of experience of combined experience in one or more of the following security disciplines (Identity and Access Management, Role-Based Access Control, Single Sign On, OAuth / OpenID / SAML, Web Access Management, Web Services Security, LDAP, PKI/PKM, Encryption, Federation)

• 5+ years of experience in full lifecycle application development of web applications, non-web applications, web services, and databases using object-oriented analysis and design techniques, preferably in a large enterprise environment.

• 3+ years of experience of defining security standards, best practices of cloud computing infrastructure, application development methodologies, best practices, and available and emergent services in public cloud provider environments, including Google Cloud Platform (GCP) and Microsoft Azure

• Must have strong knowledge of various network security technologies such as Firewall, IPS, AV, Micro-segmentation, Zero-Day attack, Cloud security group management, Secure Access Service Edge, Remote Access VPN, and Authentication servers/MFA.

• Must have experience with end-to-end system integration from back-end databases through front-end user interfaces with the ability to identify, analyze, and test security interfaces at each integration point,

• Must have experience and a strong understanding of API security and API management security.

• Must have experience with information security controls and methods for application integration use cases (event messaging rest, web services/SOAP, EDI, message queuing, etc.)

Preferred Qualifications:

• Experience with Microsoft Azure Entra ID

• Experience with Kubernetes security

• Experience with CASB technologies

• An affinity and experience with automation and a development-based approach to security

• Hands-on experience with cloud, SaaS, PaaS, aPaaS, and IaaS concepts and technologies, and

• Working knowledge of ISO/IEC 27002, NIST CSF, Sarbanes-Oxley security requirements, PCI Data Security Standards, HIPAA compliance, and other regulatory standards

Zip Code:

33801

Benefits Information:

• Employee stock ownership plan that contributes Publix stock to associates each year at no cost

• An opportunity to purchase additional shares of our privately-held stock

• 401(k) retirement savings plan

• Group health, dental and vision plans plan

• Paid Time Off

• Paid Parental Leave

• Short- and long-term disability insurance

• Tuition reimbursement

• Free hot lunches (buffet-style) at facilities with a cafeteria

• Visit our website to see all of our benefits: Benefits - Jobs (publix.com) (https://jobs-beta.publix.com/benefits/)