Job Description

:The Est\xc3\xa9e Lauder Companies is the global leader in prestige beauty \xe2\x80\x94 delighting consumers with transformative products and experiences, inspiring them to express their individual beauty. We are the only company focused solely on prestige makeup, skin care, fragrance, and hair care with a diverse portfolio of 25+ brands sold in approximately 150 countries and territories. Infused throughout our organization is a passion for creativity and imagination \xe2\x80\x94 a desire to push the boundaries and invent the unexpected \xe2\x80\x94 as we continue the bold work of our founder Est\xc3\xa9e Lauder.Who We AreDo you want to be part of the team catalyzing digital innovation, harnessing the power of data, and transforming the fabric of security across the world\xe2\x80\x99s most prestigious beauty, skincare, and luxury fragrance brands? Then join the information security and technology team, Enterprise Cybersecurity & Risk (ECR) at Est\xc3\xa9e Lauder Companies (ELC). The ECR team fuels cyber-defense, technology excellence, risk and compliance, and global resilience. We stay on the forefront of cyber threats to deliver fit for purpose tools, technologies, and processes that protect ELC\xe2\x80\x99s business operations and empower secure strategic growth. If you thrive in change rich entrepreneurial environments, then this is the team for you. From our fast-paced delivery plans to our global team expansion, this is an exciting time to join us!What You\xe2\x80\x99ll DoAs the Lead, Security Architecture, and technologies, your primary focus will be on architecting a robust and comprehensive security framework for our organization. You will lead the design and implementation of security architectures across IT infrastructure, applications, and cloud environments (IaaS/PaaS/SaaS). Collaborating closely with IT leaders and stakeholders, your role involves assessing security needs, mitigating risks, and ensuring the effective integration of security solutions. Your expertise in security architecture will be key to setting standards, documenting processes, and driving our global digital security strategy. This position demands a seasoned professional with a strong background in crafting and deploying intricate security architectures within a large-scale enterprise environment.You will be responsible for:

• Lead and \xe2\x80\x9chands on\xe2\x80\x9d Implementation of Security Technologies Projects for e.g., Micro segmentation and cloud controls
• Conduct in-depth design reviews of security architecture for enterprise-wide initiatives, establishing robust security controls and advising project teams.
• Lead in region the Development of comprehensive security architecture frameworks that align with the business\'s strategic goals, emphasizing seamless integration across various departments for unified security management.
• Spearheaded the assessment of security protocols for cloud/on-prem-based business applications, diligently pinpointing and mitigating security vulnerabilities.
• Architect and standardize migration plan for applications transitioning to diverse cloud models, prioritizing security considerations and requirements in the process.
• Lead Development of secure architectures for a range of cloud and data center environments, including public (Azure, AWS, GCP, Alibaba) and hybrid clouds, to meet and exceed organizational security benchmarks.
• Keen eye for detail to identify potential security vulnerabilities and ensure comprehensive protection measures.
• Ensure adherence to the Organization\xe2\x80\x99s Application Security framework, undertaking regular updates and refinements to meet evolving security needs.
• Foster collaborative efforts with Engineering, Infrastructure Services, and Application Development teams, orchestrating the integration of optimal technological solutions into various application environments.
• Oversee & ensures the cost-effectiveness of the security solutions aligned with business objectives
• Lead the validation of configuration effectiveness, bolstering the Cybersecurity Threat Management Center\xe2\x80\x99s (CTMC) ability to monitor cloud-deployed systems for emerging security threats.
• Spearhead and stay updated on the latest security threats and technologies.
• Engage in evaluating design principles and control mechanisms for third-party solution providers, ensuring their compliance with the organization\'s rigorous security standards.
• Continuously update your knowledge of emerging security threats, frameworks, and regulations, integrating this intelligence into proactive security strategies.
• Direct strategic initiatives in deployment orchestration and automation, focusing specifically on sustaining and advancing the organization\'s security measures.
• Oversee, as an architect, the execution of cybersecurity initiatives and projects
• Lead in region POC and implementation of new security technologies to Risk-based approaches and business function.
• Lead the generation of presentations illustrating research through visualizations, charts, graphs, infographics, and evidence capture for senior leadership.
• Oversee the identification, assessment, and management of potential security risks.
• Able to demonstrate Leadership skills to manage ad-hoc analysis or design deep dive
• Educate and mentor other architects and engineers on security best practices and standards, lead by example.
• Flexibility to adapt to changing business needs and technological advancements.
• Strong organizational skills to manage multiple projects and meet deadlines efficiently.

QualificationsWho You Are

• Bachelor\xe2\x80\x99s or master\xe2\x80\x99s degree in computer science, Information Technology, or a related field.
• 8 to 10 years of experience in IT Security, with proven experience in designing and implementing security architectures in large and complex environments.
• Working knowledge of cybersecurity protocols and technologies such as Network Segmentation Techniques, Secure Web Gateways, Zero Trust Architecture, Palo Alto Next-Generation Firewalls, Network Admission Control Systems, Hybrid Cloud Environments (AWS, Azure), DHCP, Secure DNS, Intrusion Detection/Prevention Systems (IPS/IDS), Security Incident Event Managers (SIEM), Public Key Infrastructure (PKI), Tunnel Layer Security (TLS), Endpoint Detection and Response (EDR), and Threat Intelligence platforms.
• Strong working knowledge of TOGAF and SABSA frameworks.
• Strong hands-on experience with cloud IaaS, PaaS, and SaaS environments (Azure, AWS, Alicloud
• One or more of the following certifications is preferred: CISSP, CISA, CCSP, CISM, CCNA Security, Palo Alto Networks Certified Network Security Engineer (PCNSE), Azure Security Engineer Associate, or equivalent.
• Strong communication and interpersonal skills to collaborate with cross-functional teams and articulate security requirements to non-technical stakeholders.
• Strong analytical and critical thinking abilities.

Job: Information Technology
Primary Location: Asia Pacific-MY-14-Wilayah Persekutuan
Job Type: Standard
Schedule: Full-time
Shift: 1st (Day) Shift
Job Number: 2412175

Est\xc3\xa9e Lauder