Principal Team Leader, Cybersecurity

Overview

We are seeking a Principal Team Leader, Cybersecurity, to establish a cybersecurity program, influence technical leaders across the organization, and lead a team of highly experienced cybersecurity practitioners as they design and implement new preventative cybersecurity solutions to support Chick-fil-A's vertical business lines and international restaurants (entities). As the leader of the team, you will have the opportunity to partner with the Digital Transformation and Technology (DTT) Security team to lead and tailor the security strategy for these entities, advise on best practices, coordinate remediations to cybersecurity requirements and requests, and ensure the overall security posture of solutions provided by DTT Entity Technology Solutions (ETS).

• Craft and spearhead a forward-looking cybersecurity strategy that dovetails with the Chick-fil-A's overarching goals.
• Influence organizational teams with deep technical knowledge, creativity, and a commitment to excellence.
• Recruit, educate, and guide a high-caliber cybersecurity team, nurturing an ethos of continuous learning and enhancement.
• Lead by example to instill a culture of growth, trust, and transparent communication.

• Oversee the development and implementation of robust and scalable security architectures by the team, ensuring they meet Chick-fil-A requirements and industry best practices.
• Encourage and guide your team in the adoption of the best technologies, fostering an environment where innovative security solutions can be conceptualized and developed to preempt potential threats.
• Lead the strategic planning for cloud cybersecurity initiatives, ensuring that the team creates secure infrastructure for cloud systems and applications.

• Act as the senior security liaison, working collaboratively with the other security teams and other departments to align cybersecurity initiatives with business objectives.
• Ensure that your team partners effectively with cross-functional development teams, embedding security practices seamlessly into the development lifecycle to achieve a balance between innovation and information protection.
• Cultivate and maintain strong relationships with stakeholders, providing guidance on complex security issues, and advocating for security best practices across the organization.

• Guarantee adherence to corporate security policies and standards, adjusting to changing regulations.
• Identify, evaluate, and diminish cyber risks proactively with effective risk management strategies.
• Carry out exhaustive threat modeling to pinpoint vulnerabilities and devise appropriate countermeasures.
• Manage and refine the incident response protocol to ensure swift and effective action against security incidents.
• Revel in complex problem-solving, disentangling intricate issues, and devising smart solutions that reinforce our defenses.

• Regularly update senior management on the security landscape, incidents, and project progress.
• Employ expertise in analytics and data science to assist teams in developing secure AI and ML solutions.

• Expertise in various cybersecurity domains including architecture, operations, and risk management.
• Excellent communication and interpersonal skills.
• Ability to think strategically and translate security needs into practical solutions.
• Knowledge of current cybersecurity trends and best practices.
• Experience in incident response and crisis management.
• Familiarity with international security standards and regulations.
• Comprehensive understanding of cybersecurity best practices
• Comprehensive understanding of risk management practices
• Understanding of Cloud platforms and native security services
• Understanding of network security principles
• Understanding of DevSecOps principles
• Understanding of attacker mindset

• Experience in one or more of the following roles: Cybersecurity Manager, Cybersecurity Architect, Cybersecurity Engineer, Cybersecurity Consultant
• Cybersecurity certifications (e.g. OSCP, GSEC, CEH, CISSP, Security+)