Cybersecurity Architect Ihop
Glendale, CA

Job Description

Responsible for ongoing support and assessment of Dine's Cybersecurity Program operational aspects. In working with Dine's Technology teams and business stakeholders, this position will provide ongoing support for cybersecurity policies and procedures to maintain the confidentiality, integrity, and availability of all organizational information systems. This role also supports and troubleshoots security related issues, incidents and investigations and coordinates implementations with Technology teams, partners and vendors.

Key Areas of Responsibility:

* Provide governance over PCI DSS, privacy, SOX compliance to meet regulatory requirement and Dine Cybersecurity policies and standards
* Provide ongoing support for day-to-day security operations activities, as it relates to PCI DSS, privacy and other security compliance requirements, projects and initiatives, including Dine's PCI program and its franchisees
* Perform and coordinate all security assessment and activities for Payment Card Industry (PCI) Data Security Standard (DSS)
* Provide guidance and expertise for PCI DSS to Technology teams, partners, vendors, as well as restaurant teams
* Manage and conduct project management over assessment, reporting, tracking, dashboards and remediation activities as part of the Dine Cybersecurity Team
* Perform vendor security risk assessment for new vendors prior to onboarding and conduct annual vendor security due diligence
* Perform application and system security assessment of threats and risks
* Provide ongoing support for security controls, policies and procedures to maintain the confidentiality, integrity, and availability of all organizational information systems, in working with Technology teams and vendors
* Analyze potential risk scenarios and facilitates corrective action plans to ensure controls effectiveness for mitigating exposure to identified risks
* Communicate security compliance issues and control gaps through security governance and audit control processes
* Recommend and monitor security controls for all regulated systems and data across the enterprise
* Work with Technology teams and partners, and Internal Audit to provide support for SOX and ITGC audits
* Participates in the development and maintenance of remediation and self-audit plans for critical and regulated systems
* Maintain current knowledge with security framework, application security and technology advancements in the security and IT industries

Work Experience:

* Senior-Level with minimum 7-10 years of experience in security and IT industries
* Experience with PCI DSS security assessment and security compliance
* Knowledge of California Consumer Privacy Act (CCPA) and General Data Protection Regulation (GDP)
* Strong technical knowledge/skills in application and operating system hardening, vulnerability assessments, security audits, intrusion detection systems, firewalls, etc.
* A proven ability to interface and effectively communicate across Dine's organization, and analytical demeanor
* Excellent written and verbal communications skills
* Ability to adjust to changing priorities while multitasking effectively
* Working knowledge of security and compliance frameworks, standards and best practices (e.g., ISO 27001, NIST, COBIT, PCI DSS, HIPAA, data privacy and breach laws)

Education, Training, & Certification:

* Bachelor's degree in Computer Science, Engineering or related discipline preferred
* CISSP is required
* One Security certification is preferred (GSEC, GISF, GPEN, GWAPT, GCIH, GCIA or GCUX or equivalent)

Knowledge/Skills:

* Technical Knowledge/Skills in the following areas:
* UNIX, C, HTML, PERL and CGI programming experience
* Experience with Intrusion Detection Systems
* Experience with firewalls (Cisco, Palo Alto, and Juniper)
* Experience with Security Incident Response
* Experience with Security Risk Management
* Experience in Linux system administration
* Experience with Windows system administration
* Understanding of commonly used protocols and services (e.g. SSL, TCP/UDP, WWW, FTP/SFTP, NTP, Telnet, NFS, SSH, LDAP, etc.)
* Understanding of networking hardware, routers, switches, and load-balancers
* Understanding of network protocols and architecture (TCP/IP, ATM, WAN, Bridges, etc.)
* Understanding of virtual networking hardware including VMware vSphere, and ESXi
* Experience with securing cloud-based solutions (AWS, Azure, etc.)
* Experience securing remote operating systems and applications
* Experience with version control systems


* Functional Knowledge / Skills in the following areas:
* Experience with PCI DSS
* Experience with ISO27001/2
* Experience with Privacy Laws
* Experience with writing and interpreting cybersecurity policies and standards
* Experience with recommending and implementing policy remediation activities
* Experience in two or more cybersecurity domains
* Experience with common secure SDLC processes
* Ability to weigh business risks and enforce appropriate cybersecurity measures
* Must possess a high degree of integrity and trust along with the ability to work independently
* Demonstrated ability to build and maintain strong relationships with internal and external stakeholders
* Excellent verbal and written communication skills with the ability to effectively interact with all stakeholders including senior leadership
* Demonstrate experience using network and system security audit tools
* Experienced with security audits, risk assessments, and penetration testing in a large corporate environment
* Strong technical skills a must (application and operating system hardening, vulnerability assessments, security audits, intrusion detection systems, firewalls, etc)



General Knowledge / Skills Required:

* Strong project management skills; including project planning, project design, resource allocation, utilization analysis, etc.
* Strong client management and communication skills
* Must possess the ability to meet deadlines in an efficient manner
* Must be able to effectively manage a number of projects and priorities in parallel
* Working knowledge of networks and data center standards and procedures