Senior Security Architect

Serving the needs of all families with young children, Carter’s Inc. is the largest North American apparel retailer exclusively for babies and young children, encompassing Carter’s, OshKosh B’gosh, Skip*Hop and Little Planet brands. Meaningful work, constant learning, genuine people, and a community guided by core values that promote inclusion and innovation is in everything we do. There are many reasons to build your career at Carter’s.

How You’ll Make an Impact:

Carter’s is seeking a seasoned Senior Security Architect to join our Information Security team. As a critical member of our organization, you’ll be at the forefront of developing innovative security solutions to protect our enterprise.

In this dynamic role, you’ll collaborate with cross-functional teams to analyze emerging threats, design robust security architectures, and implement cutting-edge technologies. Your expertise will be instrumental in safeguarding our systems, data, and applications.

If you thrive in a fast-paced environment and are driven to make a significant impact on our security posture, this is the role for you!

This role is a hybrid, onsite opportunity based in the Carter’s Atlanta Headquarters, and reports to the Director of Information Security.

What you’ll do:

Solution Review & Design (70%)

• Evaluate and implement new and emerging security technologies to enhance information security posture.

• Ensure data confidentiality, integrity, and availability by applying industry-standard security practices and disciplines.

• Serve as a subject matter expert on multiple security projects and initiatives.

• Conduct system assessments and audits to identify vulnerabilities and recommend enhancements.

• Lead operating system upgrades and design security-centric system enhancements.

• Troubleshoot and resolve complex security incidents and system issues.

• Perform threat assessments to proactively protect organizational assets from emerging cyber threats.

• Collaborate with IT teams to integrate security controls into the software development lifecycle.

• Lead technical assessments to determine what solutions should be implemented in the future to protect Carter’s from emerging threats while having minimal business impact.

Administrative / Documentation (20%)

• Aid in review of security policies and guide the administration of security tools that control and monitor information security, including: access control, alert on and investigating potential misuse or breaches, design computer system access and reports to limit risk and identify possible security violations, document data privacy and protection.

• Develops procedural documentation to ensure all security processes are well-defined and maintained.

• Maintain current architectural diagrams of our security solutions.

IT / Security Operations Support (10%)

• Assist resource owners and IT staff in understanding and responding to security audit failures reported by internal and external auditing departments.

• Provide technical consultation in new systems development and enhancement of existing systems related to system security.

• Understands and supports the Company’s goals and objectives and makes certain that his/her actions and decisions are consistent with them.

• Keeps his/her supervisor informed of all matters of importance and particularly those instances where deviations from planned results are likely to occur.

We’d Love to Speak to you if:

• 10+ years of experience with Architecture, Install and/or administration of security solutions.

• Security Engineering background, deep technical knowledge.

• Experience with cloud computing and security in the cloud such as AWS.

• Clear understanding and experience implementing security controls to comply with regulatory requirements and laws such as CCPA, SOX as well as risk, control, and assurance frameworks, such as SOC2, ISO, NIST, PCI DSS, etc.

• Experience with multiple information technology and security technologies: IIS, SQL, firewall, IPS/IDS, Windows, Linux, Anti-Virus, mail filtering, WAF, encryption, CA authority, IDM/IAM, multi factor authentication, SSO, VPN, Zero Trust Technologies, Vulnerability Management, DDoS, SIEM, FIM, WIPS, MDM, Pen Testing, VMware and VM server platforms.

Nice to have:

• Bachelor’s degree in computer science or related field, preferred.

• Current SANS certification holder (technical tracks) strongly preferred. 

• Security Certifications desired, CISSP, CISA, CISM, CRISC, OSCP, OSWP.

• Other industry certifications preferred, CCNA, CCNP, CCIE, MCSE, GSEC.

OUR Team Members:

• Lead Courageously: Have a strong sense of personal values that align with our Company values

• Collaborates Broadly: Build cooperation, trust, and thrive in a consensus driven environment

• Customer Focus: Proactively seek opportunities to leverage data and fact-based insights to serve customers and/or internal clients

• Drive Growth: Set aggressive goals and implement plans precisely

• Cultivates Innovation:  Respectfully challenge the “we’ve always done it this way” mentality and explore new ways to achieve desired outcomes

Make a career at Carter’s:

• Career Development: Success starts from within, and we have several paths from which you can choose to enhance your career evolution. From Carter’s University to Toastmasters to mentorship programs and more, we encourage you to utilize these tools to elevate your professional prowess.

NOTE:  This job description is not intended to be all-inclusive. The duties described may be changed or reassigned at the discretion of management, and the employee may be required to perform duties that are not listed in the job description.

#LI-Hybrid

Carters is committed to creating a diverse environment and is proud to be an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, gender identity, sexual orientation, national origin, genetics, disability, age, veteran status, or any other status protected by federal, state, or local law.