Executive Director, Application Security Architect

Responsibilities

• Lead the development and implementation of comprehensive security architecture strategies for application, data and cloud environments to protect against current and emerging threats.
• Conduct in-depth assessments of current security architectures, identify threats and vulnerabilities, and develop mitigation strategies.
• Recommend design patterns and security best practices for technology and application implementations.
• Liaise with IT and security operations teams to define and orchestrate POC testing for shortlisted security solutions.
• Enterprise Security: Work closely with IT infrastructure, application development, DevSecOps, and business stakeholders to embed application security principles throughout all phases of technology development and deployment. Develop and maintain security architecture documentation and standards.
• Collaborate with IT and business units to integrate security best practices into the development lifecycle of projects and technology initiatives.
• Governance and Compliance Maintain a deep understanding of security regulations and frameworks (e.g., NIST, ISO 27001, PCI DSS, OWASP, SAFECode) for designing systems and processes that not only protect data but also demonstrate adherence to industry standards and regulations.
• Required Qualifications
• Technical Skills
• Cloud Security Expertise: Proficient in cloud security models (IaaS, PaaS, SaaS), cloud-native security tools, encryption and key management, privileged access management (PAM), security posture and compliance within cloud environments, mainly AWS and Azure.
• Network Security Expertise: Excellent knowledge of firewalls, intrusion detection/prevention systems (IDS/IPS), network segmentation, VPNs, network access control (NAC), DMZ design, and DDoS mitigation.
• Proficiency in Major Frameworks: Demonstrated knowledge of NIST Cybersecurity Framework, ISO 27001/27002, PCI DSS (if handling payment card data), OWASP, SAFECode, and other relevant entertainment industry guidelines such as TPN and MotionLabs.
• Translation to Practice: The ability to take concepts from frameworks and benchmarks and apply them practically to the design of security solutions. This includes mapping controls, risk assessment techniques, and documentation in alignment with standards.
• Leadership Skills
• Leadership: Strong ability to lead, motivate, and develop

Benefits

Additional Information

We are seeking a visionary and hands-on Executive Director of Security Architecture with mature skill in Application Security/DevSecOps, Data Security and Cloud who will excel in leading the strategic design, implementation, and continuous improvement of Sony Pictures application security posture. This is a highly influential role, requiring both deep technical expertise and business-aligned leadership. The ideal candidate will have previous experience in application architecture and engineering and is now focused on information and cybersecurity to define robust security design patterns, reference architecture across applications, data, and cloud environments, proactively addressing cyber risks and promoting secure coding practices aligned with the Sony Pictures goals.

Your Match

How well this role fits your profile.

Company Intel

What employees say

Worked at spe? Share your experience