IT Security & Data Architect

---

Job description

Summary:
About Amy's

At Amy's Kitchen, we're more than just a food company-we're a family-owned, proudly independent organic, and vegetarian food company on a mission. As a Certified B Corporation , our purpose is clear: to make it simple and enjoyable for everyone to eat well.

We're committed to crafting authentic, mouthwatering dishes using only the finest organic ingredients sourced with care. From farm to table, we ensure top-notch quality in every bite, making healthy eating accessible and convenient for all. At Amy's, we're not just serving meals; we're serving up a taste of goodness, one delicious dish at a time.

Perks are as delicious as our meals!

Comprehensive health plans with Medical, Eye & Dental coverage, including virtual physical therapy options. Lyra mental health support to nourish your well-being. 401(k) Retirement Plan with employer match, plus Health Savings and Flexible Spending Accounts to plan for the future. Referral Rewards and Scholarship Program to celebrate and invest in our teams. Tuition Reimbursement Program to fuel your educational pursuits. Family-forming benefits because we support every stage of life's journey. Paid Time Off for vacations and sick days, with 9 paid US Holidays annually to savor those special moments. Amy's product discount reimbursement to keep your pantry stocked, plus remote gym discounts to keep you moving and grooving! Join us and indulge in a career where the benefits are as fulfilling as our food!

Essential Duties and Responsibilities:
The IT Security & Data Architect is a key role in managing and safeguarding company data, systems and processes. The role leads the design, implementation and operation of strategic and technical roadmaps, programs, and solutions. This role works closely with IT, business, engineering, and operations teams to identify requirements, assess vulnerabilities, develop processes and technical solutions, and ensure compliance with all relevant regulations and standards.

Strategy, Roadmaps, and Collaboration

Create and maintain strategic roadmaps for Information Security and Data Management areas.

Advise leadership, project teams, and technology subject matter experts on security and governance topics.

Collaborate with business and Information Technology teams to scope and execute projects and initiatives, recommend security controls, and implement solutions appropriate to the food manufacturing industry.

Information Security Program

Develop and operate the Information Security Program and related policies to continually assess, iterate, and prioritize security initiatives, standards, and activities according to industry best practices and regulatory compliance requirements such as the FDS Food Safety Modernization act and ISO 22000.

Identify and assess vulnerabilities and risks to enterprise systems, software, infrastructure, and data by utilizing various methods of risk assessment as part of the Information Security program, including audits, penetration testing, industry threat research, vendor guidance, and regulatory changes.

Plan, design, implement, and supervise the execution of regular audits and penetration testing per program objectives.

Track and manage assessment findings, action plans, and develop and implement solutions to mitigate identified vulnerabilities and risks.

Gather and analyze performance and compliance data/metrics related to the company's information security and information risk management standards specific to food manufacturing.

Define and enforce operational directives to protect manufacturing systems and data.

Identify and evaluate opportunities for process improvement in the security infrastructure.

Data Governance and Management

Discover, classify, and analyze enterprise data across systems and processes.

Develop and implement policies for data governance, lifecycle, quality, and usage.

Develop and implement policies for application integrations and APIs.

Support data management processes and master data quality initiatives.

Support the systems, infrastructure, and data integrations used for application integrations, data warehousing and business analytics.

Engineering & Development

Leads the engineering, development and maintenance of systems and applications supporting security and data management goals, performing senior level engineering, enhancement, and implementation activities and leading the activities of technical teams.

Develop and manage processes and tools for data integration, data integrity, and secure collaboration on business data.

Service Delivery & Partners

Creates procedures for operational teams and third-party managed services.

Manages relationships with third-party managed services.

Assists with the selection of vendors and negotiation of Service Level Agreements for outsourced services.

Emerging Technologies and Threats:

Stay informed on emerging security technologies and propose their integration into the security architecture as needed.

Track current and emerging security threats and develop strategies to mitigate them.

Maintain strong technical skills in line with current market trends, applicable to both cloud and on-premises solutions with an emphasis in the food manufacturing sector.

It is the responsibility of all employees to uphold the mission of the Amy's Food Safety and Quality Policy. This includes following all Food Safety and Sustainability programs and participating in all required training.

Qualifications and Skills:
To perform this job successfully, an individual must be able to perform each essential duty satisfactorily. The requirements listed below are representative of the knowledge, skill, and/or ability required. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.

Education and Experience

Bachelor's degree in Computer Science, Information Security, or a related field (or equivalent experience).

Minimum of 8 years of experience in relevant technology areas.

Technical/Functional Skills

Deep and broad understanding of Information Technology concepts, processes and platforms including manufacturing technology, as well as security-related principles, protocols, and technologies, including: Operating systems (Windows, IOS, nix, etc.)

Networking and network security

Endpoint protection technology

Operational Technology (OT) systems and protocols

Integration technologies and APIs

Identity and Access Management

Scripting (Python, PowerShell, Perl, etc.)

Secure coding/application security

Vulnerability Management

Penetration testing

Security Information and Event Management (SIEM)

Security process and control development

Hands-on experience with security tools and technologies such as SIEM, DLP, IDS/IPS, endpoint protection, and cloud security solutions.

Familiarity with industry standards and frameworks such as ISO 27001, NIST, CIS Controls, and GDPR.

Professional Skills

Strong communication and interpersonal skills, with the ability to articulate technical concepts to non-technical audiences.

Excellent analytical and problem-solving skills, with the ability to assess complex issues and develop effective solutions.

Certificates, Licenses, Registrations

Relevant certifications such as CISSP, CISM, CCSP, or equivalent are highly desirable.

Travel

This position requires approximately 10% travel for occasional program activities and site presence.

Confidentiality

During the normal course of performing her/his duties, the employee is often in direct or indirect contact with confidential and/or sensitive information. The employee shall keep such contact to a minimum wherever possible and will hold all such information in the strictest confidence and with the highest professionalism.

Physical Demands

While performing the duties of this job, the employee is regularly required to sit, stand, walk, and talk and hear. The employee is occasionally required to use hands to finger, handle, or feel; reach with hands and arms; climb or balance; and stoop, kneel, crouch, or crawl. The employee may occasionally lift and/or move up to 25 pounds. Specific vision abilities required by this job include close vision and color vision.

The physical demands described here are representative of those that an employee must meet to successfully perform the essential functions of this job. Reasonable accommodations may be made to enable individuals with disabilities to perform these functions.

Work Environment

Work is performed in an office environment where the physical demands require sitting for extended periods of time; frequent use of computers and standard office equipment; may work under stress of deadlines. Rarely, the employee may be exposed to risk of electrical shock, moving mechanical parts; high, precarious or enclosed places, fumes, dust or airborne particles, and extreme cold. The noise level in the work environment is usually light to moderate.

The work environment characteristics described here are representative of those an employee encounters while performing the essential functions of this job. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.

Diversity, Equity, and Inclusion at Amy's

At Amy's . click apply for full job details

<!– job description page –>