Senior Security Architect (Hybrid; Chicago, NYC, Loveland, CO)

We understand that the world we want tomorrow starts with how we do business today, and that’s why we’re inspired to make A Better World for Pets. Antech is comprised of a diverse team of individuals who are committed to each other’s growth and development. Our culture is centered on our guiding philosophy, The Five Principles: Quality, Responsibility, Mutuality, Efficiency and Freedom. Today Antech is driving the future of pet health as part of Mars Science & Diagnostics, a family-owned company focused on veterinary care.

Current Associates will need to apply through the internal career site. Please log into Workday and click on Menu or View All Apps, select the Jobs Hub app, then click the magnifying glass to Browse Jobs.

This is a hybrid role that can be based in any of our three hub locations: Loveland, CO; New York City, NY; or Chicago, IL. The Target Pay Range for this position in Loveland, CO  is $143,220 - $178,970 annually. The Target Pay Range for this position in NYC is  $ 156,240- $195,240 annually. The Target Pay Range for this position in Chicago, IL is  $143,220 - $178,970 annually. At Antech, pay decisions are determined using factors such as relevant job-related skills, experience, education, training and budget.

Job Summary:

The Senior Security Architect (SA) is responsible for designing and evolving secure enterprise architecture across our cloud, hybrid, and on-premises environments as part of the Cybersecurity function. The SA will work closely with Business Stakeholders, Enterprise Architects, and Information technology teams to ensure that SDx solutions designed follow Mars standards and are consistent throughout the SDx division. This individual will bring deep technical expertise in cloud security, API security, threat modeling, and design of reusable security reference architecture patterns to support scalable and resilient systems.

Key Responsibilities:

• Define, design, and maintain enterprise-grade security architecture patterns, reference models and blueprints that align to Mars and SDx security standards and practices.

• Architect secure solutions across multi-cloud, hybrid and on-premise solutions.

• Work with our Product Security Engineers, Cloud and Development teams to embed security controls into our DevSecOps pipelines, micro-services, APIs and other components of SDx solutions.

• Lead and facilitate threat modeling sessions with our Product Security Engineers and Cloud Development teams using methods such as STRIDE, DREAD or MITRE ATT&CK to ensure adversarial and attack-route analysis is built into our models.

• Identify architectural risks and propose mitigation strategies early in the design lifecycle as well as performing retroactive security architecture reviews for existing solutions.

• Partner with enterprise architects, cloud engineers, and DevOps teams to enforce security best practices.

• Contribute to security policies, standards and guidelines aligning with business needs, Mars and any regulatory requirements.

• Serve as a trusted security advisor to product engineering and infrastructure teams.

• Support product security reviews, architecture discussions and secure design validation with our Product Security Engineers and Cloud Development teams.

• Work with Mars Global Digital Operations (GDO) teams to explore, adapt and incorporate solutions into SDx environment.

• Collaborate with Mars Risk Management, Vendor Cyber Risk Management, and other teams to ensure that risks identified are properly reported and managed through remediation.

• Serve as the SA subject matter expert and coordinate with our GRC Specialist for the implementation of SDx cybersecurity governance to enforce policies, procedures, and standards, following SDx and Mars business requirements and security best practices.  

• Collaborate with critical teams including infrastructure, development, R&D, and Mars GDO to ensure alignment with Mars strategies.

• Collaborate with other teams to achieve efficiencies while building a secure environment that integrates validated technology stack components.

• Provide security architecture support in the design, implementation, and maintenance of solutions in an agile manner to improve efficiency and reduce errors or disruptions across SDx.

• Work with our R&D and IT departments to apply threat modeling and/or adversarial approaches to ensure customer-facing technologies and products are secure and updated to best security practices in security architecture.

Qualifications & Experience:

• Bachelors in Cybersecurity, Information Technology, Computer Science, Engineering, or related field. Master’s degree is a plus, but not essential.

• Knowledge applying Cloud and DevSecOps Security Architecture principles for Zero-trust.

•  Security Architecture design and review expertise in API security such as OAuth 2, OpenIDConnect, mTLS, API gateways, among others.

• Threat Modeling and secure design reviews integrating them into a DevSecOps pipeline.

• Pen testing and red teaming knowledge, specifically privilege escalation paths and incident management as well as threat modeling, attack-route analysis, application testing and vulnerability management related to security architecture designs.

• Experience communicating complex security concepts effectively (technical, non-technical and executive level audiences).

• Relevant certifications such as CISSP, GIAC Defensible Security Architecture, CISA or Security+.

• Cloud security architecture or related certifications in Azure, AWS or GCP are preferred.

• Experience in regulated industries (finance, healthcare, manufacturing, etc.) applying regulatory regulations and/or security frameworks.

• Experience in a laboratory setting, veterinary clinics, healthcare or related systems.

• Strong problem-solving and analytical mindset.

• Hands-on background in DevSecOps, secure coding, and penetration testing.

• Experience applying Identity Governance & Administration (IGA).

Required Qualifications:

• 8+ years of experience in designing security reference architectures and reusable components.

• Strong knowledge of network security principles including segmentation/microsegmentation and Zero Trust Architecture.

• Strong knowledge of security coding as well as DevSecOps and Systems Development Lifecycle (SDLC).

• Strong knowledge in Identity and Access Management solutions including Multi-factor authentication and Identity Service Providers (IdSP) such as Okta, ForgeRock, or other IAM tools.

• Strong knowledge of information security frameworks such as NIST, ISO 27001, HITRUST, CIS, SOC 1/2/3, PCI-DSS, as well as privacy-related regulatory frameworks including GDPR.

Physical Demands:

• Extensive sitting, phone, and computer use

• Extend and reach with hands and arms and use hands and fingers

• Occasionally required to bend, kneel, stoop, or crouch

• May be required to lift, move, and carry up to 15 lbs.

• Specific vision abilities required including close vision, color vision, depth perception, and the ability to adjust focus.

• Hearing ability to effectively communicate via the telephone and in person

• Ability to communicate verbally on the telephone and in person

• Fluency in the English language

• Extended hours may be needed

Work Environment:

The employee will primarily work in a typical office environment including use of cubicles, computers and overhead lighting. Temperature extremes will be minimal to nonexistent. The noise level in the work environment is usually moderate.  The employee will be required to use a computer, spreadsheets, database management, email, and the Internet.  The employee is frequently required to use a calculator; fax, copy machine, and phone system. 

About Antech

Antech is a leader in veterinary diagnostics, driven by our passion for innovation that delivers better animal health outcomes. Our products and services span 90+ reference laboratories around the globe; in-house diagnostic laboratory instruments and consumables, including rapid assay diagnostic products and digital cytology services; local and cloud-based data services; practice information management software and related software and support; veterinary imaging and technology; veterinary professional education and training; and board-certified specialist support services.

Antech offers an industry competitive benefits package and continues to invest in and evolve benefits programs that meet the health, wellness and financial needs of our associates.

• All Full-time associates are eligible for the following benefits and more:

• Paid Time Off & Holidays

• Medical, Dental, Vision (Multiple Plans Available)

• Basic Life (Company Paid) & Supplemental Life

• Short and Long Term Disability (Company Paid)

• Flexible Spending Accounts/Health Savings Accounts

• Paid Parental Leave

• 401(k) with company match

• Tuition/Continuing Education Reimbursement

• Life Assistance Program

• Pet Care Discounts

We are proud to be an Equal Opportunity Employer - Veterans / Disabled. For a complete EEO statement, please see our Career page at Antech Careers.

Note to Search Firms/Agencies

Antech Diagnostics, Inc. and its subsidiaries and affiliates (Antech) do not compensate search firms for unsolicited assistance unless they have a written search agreement with Antech and the requisition is position-specific. Any resumes, curriculum vitae, and other unsolicited assistance from search firms that do not have a written search agreement or position-specific requisition submitted to any Associate of Antech will be deemed the sole property of Antech and no fee will be paid in the event the candidate is hired by Antech.