The Enabling Services SR Security Architectis responsible fordefining, governing, and evolving security standards and reference architectures across Enabling Services, aligned with the Mars Cybersecurity Framework.
This role ensures a consistent, risk-based, and secure-by-design approach across cloud, network, data protection, SRE, and infrastructure domains, enabling secure digital transformation and regulatory compliance.
1. Security Governance & Strategy
Define and maintain security standards, policies, and guardrails.
Establish governance models (roles, responsibilities, accountability).
Align cloud, network, and SRE security with enterprise risk management.
Ensure compliance with regulatory and industry frameworks.
2. Risk & Asset Management
Define standards for asset inventory, data classification, and Zero Trust architecture.
Lead threat modeling and risk assessments.
Establish risk identification, prioritization, and third-party risk practices.
3. Security Architecture
Design and govern secure reference architectures across:
Cloud, network, and infrastructure
IAM, encryption, and key management
Define baseline security controls (multi-cloud, hybrid environments).
Enforce principles such as least privilege, defense-in-depth, and zero trust.
4. Monitoring & Detection
Define requirements for logging, monitoring, and SIEM integration.
Establish standards for log collection, retention, and threat detection use cases.
Promote adoption of cloud-native observability and security tools.
5. Incident Response & Resilience
Define incident response frameworks and playbooks in collaboration with SecOps.
Ensure integration with SOC/SOAR capabilities.
Support recovery and resilience strategies.
6. Security Assurance & Compliance
Define and enforce security control frameworks and baselines.
Support audits and compliance assessments.
Enable continuous compliance monitoring.
7. DevSecOps & Automation
Embed security into CI/CD pipelines (SAST, DAST, SCA).
Promote Infrastructure-as-Code (IaC) security and policy-as-code.
Drive security automation and standardized controls.
Key Deliverables
Security standards and policies
Reference architectures and guardrails
Cloud and infrastructure security baselines
Control frameworks and mappings (e.g., NIST CSF)
Risk assessment frameworks
Skills & Expertise
Cloud (AWS, Azure, GCP), Network Security, Infrastructure, Backup & DR
Observability (Azure Monitor, Datadog), SIEM/SOAR
NIST CSF, NIST 800-53, CIS, ISO 27001
DevSecOps, IaC, automation, and SRE practices
Strategic thinking and strong architecture mindset
Stakeholder management and communication
Ability to translate risk into actionable standards
#TBdigital
#hybrid
We’re a unified force of 150,000+ Associates, taking action every day toward the world we want tomorrow.
Our Five Principles have kept us true to ourselves and to our commitment to treat others in ways that are consistent with those values. Having stood the test of time, these principles will continue, keeping us free to move quickly and plan for the future.
Quality - The consumer is our boss, quality is our work and value for money is our goal.
Responsibility - As individuals, we demand total responsibility from ourselves; as Associates, we support the responsibilities of others.
Mutuality - A mutual benefit is a shared benefit; a shared benefit will endure.
Efficiency - We use resources to the full, waste nothing and do only what we can do best.
Freedom - We need freedom to shape our future; we need profit to remain free.
Note to Parents:
https://www.mars.com/about/policies-and-practices/note-to-parents/np-english
For more information, please visit mars.com.
Follow us: facebook.com/mars, twitter.com/marsglobal, instagram.com/marsglobal/, youtube.com/mars
For more information about careers at Mars, please visit careers.mars.com
Follow us: facebook.com/LifeAtMars, instagram.com/LifeAtMars/, tiktok.com/LifeAtMars
Mars, Incorporated is not responsible for any content or activity made available via third party sites or services.
Page subject to:
mars.com/legal
mars.com/privacy
