Job Description
Job Description:
The Enabling Services SR Security Architect is responsible for defining, governing, and evolving security standards and reference architectures across Enabling Services, aligned with the Mars Cybersecurity Framework.
This role ensures a consistent, risk-based, and secure-by-design approach across cloud, network, data protection, SRE, and infrastructure domains, enabling secure digital transformation and regulatory compliance.
Key Responsibilities:
1. Security Governance & Strategy
Define and maintain security standards, policies, and guardrails.
Establish governance models (roles, responsibilities, accountability).
Align cloud, network, and SRE security with enterprise risk management.
Ensure compliance with regulatory and industry frameworks.
2. Risk & Asset Management
Define standards for asset inventory, data classification, and Zero Trust architecture.
Lead threat modeling and risk assessments.
Establish risk identification, prioritization, and third-party risk practices.
3. Security Architecture
Design and govern secure reference architectures across:
Cloud, network, and infrastructure
IAM, encryption, and key management
Define baseline security controls (multi-cloud, hybrid environments).
Enforce principles such as least privilege, defense-in-depth, and zero trust.
4. Monitoring & Detection
Define requirements for logging, monitoring, and SIEM integration.
Establish standards for log collection, retention, and threat detection use cases.
Promote adoption of cloud-native observability and security tools.
5. Incident Response & Resilience
Define incident response frameworks and playbooks in collaboration with SecOps.
Ensure integration with SOC/SOAR capabilities.
Support recovery and resilience strategies.
6. Security Assurance & Compliance
Define and enforce security control frameworks and baselines.
Support audits and compliance assessments.
Enable continuous compliance monitoring.
7. DevSecOps & Automation
Embed security into CI/CD pipelines (SAST, DAST, SCA).
Promote Infrastructure-as-Code (IaC) security and policy-as-code.
Drive security automation and standardized controls.
Key Deliverables
Security standards and policies
Reference architectures and guardrails
Cloud and infrastructure security baselines
Control frameworks and mappings (e.g., NIST CSF)
Risk assessment frameworks
Skills & Expertise
Cloud (AWS, Azure, GCP), Network Security, Infrastructure, Backup & DR
Observability (Azure Monitor, Datadog), SIEM/SOAR
NIST CSF, NIST 800-53, CIS, ISO 27001
DevSecOps, IaC, automation, and SRE practices
Strategic thinking and strong architecture mindset
Stakeholder management and communication
Ability to translate risk into actionable standards
#TBdigital
#hybrid
Company benefits
Working at Mars UK
Company employees:
Gender diversity (m:f):
Hiring in countries
Argentina
Australia
Austria
Belgium
Brazil
Bulgaria
Canada
China
Czechia
Denmark
Egypt
Finland
France
Awards & Accreditations
1st - Most Family Friendly Company
Flexa awards 20263rd - Best Workplace Benefits
Flexa awards 2026Top 5 - Most loved - Large companies
Flexa awards 2026Top 10 - Best Work-Life Balance
Flexa awards 2026
1st - Most Family Friendly Company
Flexa awards 20252nd – Pet Friendly
Flexa awards 2025Top 5 - Most Flexible Company
Flexa awards 2025Top 5 - Most Inclusive Company
Flexa awards 2025Top 10 - Best Work-Life Balance
Flexa awards 2025Top 10 - Best Career Progression
Flexa awards 2025Best Workplace Culture
Flexa awards 2025Best Workplace Benefits
Flexa awards 2025
1st – Large companies
Flexa100 2024
Consumer Goods
Industry awards 2023
3rd – Large companies
Flexa100 2023
Retail & Ecommerce
Industry awards 2022Other jobs you might like
#1 MOST LOVED - MID-SIZE COMPANIES
