Solutions Architect

It's enjoyable to be part of a company where individuals genuinely believe in their mission! The Solutions Architect will be tasked with creating, implementing, and sustaining strong security architectures that safeguard the organization from Cybersecurity Threats and ensure sensitive data compliance with regulations such as POPIA and PCI. This position will work closely with Architecture, IT Teams, Security Operations, and Engineers to design and establish security controls and solutions that align with approved enterprise architecture frameworks and standards across both business and digital domains. You will need to assess and analyze various technologies, processes, and tools to guarantee suitable cyber-threat resistance in accordance with the organization's risk appetite and budget, while collaborating with the operations team, business stakeholders, and vendors to secure the optimal solution and maximize its effectiveness. Furthermore, this role entails managing and executing a variety of risk management and control enhancement initiatives in support of our business and Information and Technology Services. This encompasses ensuring adherence to pertinent external and internal standards, laws, and regulations. Additionally, the role involves supporting and promoting compliance with relevant frameworks and associated processes for the continuous management of IT GRC activities.

Qualifications:

• Tertiary qualification in Computer Science, Engineering, or a related discipline (preferred)
• Minimum of 8-10 years of experience in Security Architecture
• Relevant professional certifications such as CISSP, CISA, CISM, or other pertinent security-related designations (preferred)
• Understanding of applicable frameworks, guidelines, and standards (notably NIST CSF and PCI-DSS)
• Familiarity with relevant regulatory requirements and standards such as PCI, POPI, KING, EMV, etc.
• Experience in identifying deficiencies in existing architectures
• Knowledge of security infrastructure in Public and Private Clouds, including virtual network configurations, hybrid IaaS/PaaS/SaaS solutions
• Experience in designing security architectures to counteract threats, along with a solid understanding of security strategies and technologies
• Experience with PCI-DSS Assessments
• Strong comprehension of IT Governance, Information Security, Privacy, IT Risk, and Internal/External Audit related concepts
• Experience in a multi-vendor and outsourced IT setting (preferred)

Responsibilities:

• Direct the Project and Security teams by providing guidance to develop policies, standards, risks, and controls frameworks that support operational needs for the business
• Extensive experience in security architecture design for both Cloud and on-premises environments
• Design and implement IoT, endpoint protection, and secure IAM solutions
• Familiarity with authentication and authorization technologies (SAML, LDAP, PKI, etc.) and other IAM technologies
• Knowledge of implementing, operating, and maintaining SIEM, boundary protection technologies (firewalls, mail gateways), Antivirus, and AD security products
• Understanding of web application architectures and threat modeling
• Design and develop intricate and comprehensive security architectures for our systems, applications, and infrastructure, taking into account both current and future requirements
• Collaborate with stakeholders, including developers, engineers, and project managers, to integrate security requirements into the system design and development lifecycle
• Actively advocate for the importance and value of effective Information Security Practices
• Offer guidance and expertise in secure coding practices, network security, identity and access management, data protection, and other security domains
• Model threats and risks, designing the necessary controls to mitigate them, on both an organizational and technical level—thinking like an attacker to anticipate and understand the strategies that a hacker might employ to compromise systems
• Adhere to the architecture analysis process, which includes research, validation, and evaluation of all new initiatives, with phase gate reviews presented to all stakeholders during key forums, including current trends such as AI and LLMS
• Assess and select security technologies, tools, and frameworks to bolster the organization's security posture
• Define portfolio vision and reusable security patterns that align with the Cybersecurity and Information Technology strategy
• Lead architecture reviews for high-risk projects, pushing for recommendations to resolution
• Provide counsel on security controls for hybrid and cloud platforms, balancing usability, cost, and compliance
• Define and implement security policies, standards, and procedures to ensure adherence to industry regulations and best practices
• Assist with incident response activities, including identification, containment, eradication, and recovery, in collaboration with the incident response team
• Experience with Cloud Security platform vendors and technologies such as Azure and AWS
• Manage security architects and mentor engineers, developers, and vendors
• Support the security awareness and training program
• Assist the business and/or risk owners in control remediation for threats and/or vulnerabilities

Competencies:

• Strong interpersonal skills to engage senior stakeholders, business owners, and the risk community
• A collaborative and business-enabling mindset (not solely compliance or audit-focused)
• Excellent written and verbal communication skills, including the ability to convey technical concepts to both technical and non-technical audiences
• Advanced analytical and problem-solving abilities, with the capacity to derive practical solutions to complex issues
• Ability to work independently as well as part of a team (interpersonal and collaborative skills) to deliver quality work in a timely manner in a fast-paced environment
• Capability to maintain strict confidentiality
• A strong desire for continuous learning and improvement, with the ability to quickly adapt perspectives as new options or possibilities arise
• A genuine passion for the mission and vision of the Pick n Pay business, our customers, and our employees

If you thrive in a dynamic environment and want to work with enthusiastic, high-achieving individuals, you will find a fulfilling career with us!

Discover Who We Are At Pick n Pay, we are more than just a retail chain; we are a group of dedicated individuals committed to delivering an outstanding shopping experience for our customers and a vibrant, enriching work environment for our employees. Established in 1967, Pick n Pay is one of South Africa's largest retail chains, serving millions of customers across the African continent. Our reputation is built on our dedication to providing the best quality and value to our customers.

Our Mission We serve from the heart, creating a fantastic workplace, and with our minds, we establish an excellent shopping experience.

Our Values Our values are deeply ingrained in our culture and guide our actions:

• Passion for our Customers: We are devoted to our customers and advocate for their rights. Their satisfaction is our success.
• Respect and Care: We value and respect one another, embracing our team's diversity with kindness and understanding.
• Personal Growth and Opportunity: We promote personal development and opportunities, believing in empowering our employees through learning and advancement.
• Leadership and Innovation: We encourage leadership and vision while rewarding innovation. We inspire our employees to take initiative in their roles and think creatively.
• Honesty and Integrity: We uphold honesty and integrity, operating with transparency and trustworthiness in all interactions.
• Community Support: We actively support and engage with our communities, striving to create a positive impact and give back.
• Individual Responsibility: We take accountability for our actions and decisions.
• Accountability: We hold ourselves responsible for fulfilling our commitments to our customers, colleagues, and the organization.

Why Pick n Pay? At Pick n Pay, our strength lies in our people. We aim to be the employer of choice by attracting and retaining top talent in the industry. We cultivate a workplace that encourages growth, celebrates achievements, and values individual contributions. Here, your work will be meaningful, acknowledged, and rewarded. Experience the joy of being part of Pick n Pay. Together, let's shape the future of retail in Africa. Explore our career opportunities.