Description

Your Role

We are seeking a highly experienced and influential Senior Security Architect reporting to the Cybersecurity Architecture team to focus on securing critical business and technology domains. This position has responsibilities for setting the technical security strategy, acting as the principal security advisor, leading security adoption in the enterprise, and driving risk mitigation while advancing the business’ overall objectives. The successful candidate is self-sufficient, action-oriented, can influence multiple stakeholders, and expertise in defining and executing the long-term security strategy.

Why You Belong Here

At Victoria’s Secret & Co, you’ll join a world-leading specialty retail brand recognized globally for innovation and excellence in lingerie and fashion. You’ll work alongside industry leaders to set the standard for what a retail brand can achieve, placing customers at the center of everything we do to create products and experiences that bring them joy.

We believe everyone deserves a place where they truly belong. We celebrate individuality and know that your passion, experience, and unique perspective strengthen our team and business. Here, you’ll be empowered to perform, grow, and engage through unmatched opportunities to develop your skills, gain real-world experience, and learn from the best in the business.

Your Impact

Strategic Security Planning:

Define and maintain the comprehensive security architecture roadmap and strategy, ensuring alignment with overall business objectives and enterprise security policy.Identify relevant emerging threats, technological trends, and regulatory changes and proactively integrate mitigating strategies and secure designs.Develop and present the long-term security vision and business cases for strategic security investments within the domain.

Architectural Guidance and Review:

Serve as a security Subject Matter Expert (SME), providing authoritative guidance to engineering, product, and operations teams.Conduct formal security architecture reviews for major projects and initiatives, ensuring adherence to security standards and best practices.Design, document, and champion reusable architecture that secures and simplifies development and deployment.

Leadership and Influence:

Influence senior leadership, product owners, and development teams to prioritize and adopt security best practices.Lead cross-functional technical security initiatives, driving consensus and collaboration among diverse groups.Mentor and coach junior architects and engineers on secure design principles and risk assessment methodologies.

Risk Management and Compliance:

Perform security risk assessments and threat modeling specific to the domain's assets and services.Ensure all designs and implementations comply with internal security policies, industry standards (e.g., ISO 27001, NIST), and regulatory requirements (e.g., GDPR, HIPAA, SOX).

Ad-hoc duties as assigned

Click here for benefit details related to this position.

Minimum Salary: $125,500.00
Maximum Salary: $171,360.00

VS&Co provides a range of compensation for this role as shown. Your actual salary will be determined by a number of factors, including: your specific skills and experience, geographic region, or other relevant factors.

Qualifications

Your Experience

Required Qualifications

Comprehensive understanding of IT security concepts and technologies. Have extensive experience with a wide range of security tools and applications, such as firewalls, intrusion detection systems, and vulnerability scanners.Proven ability to create, document, and provide feedback on complex enterprise security architectures, reference models, and designs.Exceptional verbal and written communication skills, with a track record of successfully influencing technical and non-technical stakeholders at all organizational levels. Can distill complex security concepts into clear, concise, risk-based recommendations.Track-record of providing clear direction, guidance, and constructive feedback to less experienced team members, ensuring project alignment and skill development.Demonstrated ability to think strategically, define a long-term vision, and translate it into actionable, phased execution plans.Experience with security frameworks (e.g., NIST CSF, SABSA, TOGAF) and risk methodologies (e.g., FAIR, OCTAVE).

Preferred Qualifications

10+ years of progressive experience in security, with at least 5 years in a dedicated security architecture role.Relevant security certifications such as CISSP (Certified Information Systems Security Professional), SC-100 (Microsoft Cybersecurity Architect), GSE (GIAC Cybersecurity Expert), SABSA SCM (SABSA Chartered Security Architect)Master's degree in Computer Science, Information Technology, or a related field; or equivalent practical experience.Advanced knowledge and experience with relevant tools, technologies, and regulatory requirements specific to the focus domain.Knowledgeable about the retail industry.

We will consider for employment all qualified applicants, including those with arrest records, conviction records, or other criminal histories, in a manner consistent with the requirements of any applicable state and local laws. Please see links: California Fair Chance Act, Los Angeles Fair Chance Initiative for Hiring Ordinance, Philadelphia Fair Chance Law, San Francisco Fair Chance Ordinance, Los Angeles County Fair Chance Ordinance  

An equal opportunity employer, we do not discriminate in hiring or terms and conditions of employment because of an individual’s race, color, religion, gender, gender identity, national origin, citizenship, age, disability, sexual orientation, marital status or any other protected category recognized by state, federal or local laws. We only hire individuals authorized for employment in the United States.