Senior IT Security Architect
Sprouts Farmers Market
Overview Please note this position is based in our Phoenix, AZ Support Office. The Sr. IT Security Architect is the lead technical architect for Sprouts’ IT Security program, designing and driving security architecture across the enterprise. The Sr. IT Security Architect mentors security engineers and analysts, leads through influence across infrastructure, network, cloud, and application teams, and carries architectural decisions to the Architecture Review Board (ARB) with a recommended path. The role translates business, compliance, and regulatory requirements into concrete, implementable designs and standards that survive implementation and audit. Sprouts runs an Azure-first cloud stack—including Databricks, Synapse/Fabric, and Azure Virtual Desktop—alongside store systems, point-of-sale, and payment infrastructure under PCI-DSS. The role requires fluency across both. Architectural decisions align with NIST CSF, ISO 27001, CIS Controls, SOX, PCI-DSS, and applicable privacy regulations. Periodic after-hours or weekend work may be required to support security escalations or major incidents. Overview of Responsibilities Essential job functions Author reference architecture and design documents across all security domains. Designs must be implementable, testable, and resistant to drift. Lead security architecture positions at the Architecture Review Board (ARB). Define and enforce architectural gates for development-to-production progression. Present options, trade-offs, and a recommended path for each decision. Lead complex, cross-functional security architecture initiatives of strategic importance to the organization. Advise senior leadership on security matters of significant impact, and provide input to department goals, planning, and budget priorities. Design and govern Azure landing zones, managed identity patterns, Key Vault and private-endpoint baselines, CSPM policy, and Terraform/Bicep security guardrails. Lead security architecture for Databricks, Synapse, and Fabric data platforms, including data-lake segmentation and access control. Design integration patterns for Microsoft Entra ID and Okta, conditional access, MFA strategy, B2C customer identity, Azure Virtual Desktop access, and BYOD access. Architect CrowdStrike Identity Protection integration with the identity estate. Partner with network architecture on segmentation for headquarters and store environments, SASE/CASB/NPA architecture (Netskope), edge protection (Cloudflare), and vendor/BYOD network zones. Drive zero-trust maturity across corporate, retail, and cloud perimeters. Set architectural direction for EDR/EPP/IDP (CrowdStrike), endpoint management (Tanium), CASB (Netskope), and email security (Proofpoint). Guide the decommissioning of legacy platforms and the onboarding of replacements. Design DLP, data classification (BigID), consent management, and data retention patterns. Govern the security and privacy architecture of AI platforms, vendors, and internal AI tooling, including model‑training and data‑handling terms. Support vendor risk assessments, review SOC 2 Type 2 reports, evaluate vendor SSO/SCIM/RBAC/audit‑logging, and author SDLC security standards (secrets management, logging baselines, secure deployment patterns). Design security architecture for store systems, point-of-sale, handheld devices, and third‑party store integrations. Ensure PCI‑DSS alignment across applicable environments. Draft and maintain architectural standards and patterns: naming conventions, IaC security patterns, API gateway baselines, cloud tagging, and logging/compliance defaults. Map architectural initiatives to NIST CSF (Govern, Identify, Protect, Detect, Respond, Recover), CIS Controls, SOX, and PCI‑DSS, borrowing from ISO 27001 and other best practices where applicable. Contribute to security policies and standards. Provide guidance, coaching, and training in security architecture across the Company within area of expertise — to security engineers and analysts as well as partners in infrastructure, network, cloud, and application teams. Participate in root cause analysis and architectural remediation for incidents, breaches, and HR/Legal investigations. Translate lessons learned into architectural changes. Comply with and contribute to change control, development lifecycle, and release management policies. Ensure architectural changes are represented at CAB and documented appropriately. Qualifications Knowledge Skills & Abilities Bachelor’s degree in Computer Science, Information Technology, Engineering, or equivalent experience in a related discipline. 10+ years of enterprise security architecture experience spanning cloud, identity, network, endpoint, application, and data security. 3+ years of hands‑on Azure security architecture: landing zones, Key Vault, managed identity, private endpoints, Microsoft Sentinel, and Azure‑native data platforms (Databricks, Synapse, Fabric). Deep identity architecture experience with core protocols (OAuth/OIDC, SAML, SCIM, federation), conditional access, MFA strategy, and B2C customer identity. Hands‑on experience with Microsoft Entra ID and Okta preferred. Expert‑level experience with EDR/EPP and Identity Protection platforms (CrowdStrike preferred). Expert‑level experience with enterprise DLP, data classification (e.g., BigID), and CASB/SASE architecture (Netskope preferred). Expert‑level experience with enterprise email security (Proofpoint preferred) and edge protection (Cloudflare preferred). Working experience with Infrastructure‑as‑Code security: Terraform and/or Bicep, policy‑as‑code, and CSPM platforms. Fluency with security and compliance frameworks: NIST CSF, CIS Controls, PCI‑DSS, SOX, and applicable privacy regulations (CCPA). Retail, PCI, and store‑systems experience strongly preferred (POS, payment, store network, third‑party retail integrations). CISSP, CCSP, or equivalent security certification required. Demonstrated track record of authoring architecture documentation that survives review, implementation, and audit. Proficiency with monitoring, logging, change management, and CMDB tooling (ServiceNow experience a plus). #J-18808-Ljbffr Sprouts Farmers Market
- ...Honeywell International, Inc. is seeking a Principal Cyber Security Architect/Engineer responsible for leading the design and implementation of cybersecurity solutions. This role involves fortifying defenses against threats, collaborating with cross-functional teams,...Senior
- SwiftCruit is seeking a distinguished engineer to lead security innovations and drive initiatives across the organization. The ideal candidate brings over 15 years of experience in technology, capable of developing strategic solutions and mentoring junior staff. Located...Senior
- ...deepen their expertise in MuleSoft to lead the Payments API ecosystem. This role involves optimizing vCore utilization and developing secure, fault-tolerant API solutions. The candidate will also drive engineering best practices within an inclusive environment. If you...Senior
- Tenex.Ai is looking for a highly skilled FDE Security Solution Architect to join their innovative team in Phoenix, AZ. The role involves designing security architectures, leading high-stakes advisory engagements, and mentoring fellow engineers. Ideal candidates will have...Senior
- The Reinalt-Thomas Corporation, also known as Discount Tire, is looking for a Senior Cloud Security Engineer in Scottsdale, Arizona. This role involves designing and managing security technologies across cloud platforms while collaborating closely with various teams to...Senior
$80k - $158k
Wipro Technologies is searching for a Senior Network Engineer (L4) based in Phoenix, Arizona. This role focuses on the implementation and optimization of Cisco ACI and hybrid cloud networking. The ideal candidate should possess deep expertise in data center networking...Senior- ...ServiceNow Security Module Overhaul Join our dynamic team as we overhaul the ServiceNow security module, focusing on configuration and planning to meet access requirements. This role is pivotal in ensuring secure and efficient system configurations. Locations: Pittsburgh...Work at office
$100k - $120k
...Security Architect with Dev Background Must Have Technical/Functional Skills Architecture Decision Records (ADRs) and Security Architecture Review Board (SARB) submissions. The role blends deep technical acumen with emerging expertise in Generative AI (GenAI...$80k - $158k
...thrive in an ever‑changing world. Network Security Engineer - L4 (Cisco ACI & Cloud... ...Experience is Mandatory - AZURE Job Summary: The Senior Network Engineer (L4) is responsible for... ...operational health checks. Partner with architects on high‑level design decisions and...Minimum wageLocal area- Tech Mirrors is seeking a Google Kubernetes Engine (GKE) expert in Phoenix, AZ to enhance cloud platform security solutions. This role involves leading architecture and design while prioritizing initiative across Kubernetes platforms. Ideal candidates will have significant...
$138k - $172k
...Advanced Cyber Security Professional (SSO) As an Advanced Cyber Security professional (... ...proof-of-concepts guided by the Sr. Identity Architect and Service Manager, completing assigned... ...skills. Knowledge and experience in IT/development methodologies and life cycles...Permanent employmentTemporary workWork experience placementFlexible hours- ...relentless drive to protect our customers. About the Role As a FDE Security Solution Architect at TENEX, you design security architectures, lead high‑stakes advisory engagements, and serve as the senior technical escalation point for the SE&A team across one or more assigned...
- ...knowledge of AI/ML concepts, scripting languages like Python or PowerShell, and automation tools such as Terraform. Familiarity with security frameworks like NIST and ISO 27001 is essential. This role promises opportunities to work within IAM or broader cybersecurity...
- ...essential for guiding large enterprise organizations through cybersecurity transformations, focusing on SecOps, Zero Trust, and cloud security. The ideal candidate will possess 5-8 years of experience in pre-sales roles within enterprise-scale cybersecurity and strong...
- A leading healthcare provider in the United States seeks a Distinguished Engineer focusing on AI security. This role is crucial for defining and executing AI security strategies, performing assessments, and providing governance. Candidates should have extensive experience...
- CNA National Warranty Corporation is seeking a Lead Application Security Engineer in Scottsdale, AZ. This role combines application security assessment and software engineering leadership, focusing on building secure applications using Java and Angular. The ideal candidate...
- A telecommunications solutions provider is seeking a Low-Voltage & Telecommunications Infrastructure Engineer in Phoenix, AZ. This role entails leading the design and deployment of critical telecommunications networks, ensuring operational integrity for a large manufacturing...
- GMI - Global Market Innovators is looking for a NetSec Engineer L3 (Contractor) who will be responsible for delivering high-quality security and network engineering services. The ideal candidate should have a minimum of 5 years in security engineering roles and must...SeniorRemote jobFor contractors
- ...CVS Health is seeking a Distinguished Engineer focused on AI security, located in Scottsdale, AZ. This role involves defining and executing AI security strategies, building security frameworks, and performing assessments to ensure AI systems are secure and compliant....Senior
- The State of Arizona is looking for an Electronic Security Systems Specialist Sr. to enhance security for its facilities statewide. The role includes managing installations, repairs, and system administration for various electronic security systems. With responsibilities...SeniorRemote job
- Intel Corporation is seeking an experienced Software Engineer for the Compute Infrastructure and Security team in Phoenix, Arizona. The role involves managing Windows Server 2022 and RHEL 8/9 environments, deploying layered applications and enhancing security measures....Senior
$122k - $128k
Cognizant is seeking an experienced GCP Cloud Security SME to design and manage cloud security controls. This remote role focuses on Infrastructure-as-Code (IaC) delivery using Terraform and includes responsibilities like developing security modules and maintaining CI/...Remote work- Hong Kong Study Skills Research Institute is seeking a Sr Lead IT Systems Security Engineer based in the United States, preferably within Arizona. This critical role will oversee and enhance the security of our IT systems, requiring expertise in security architecture, incident...SeniorRemote jobPermanent employment
$124k - $155k
Honeywell International, Inc. is seeking a Field Sales Engineer for its Security Products group in Phoenix, Arizona. This role involves providing technical sales support, conducting product demonstrations, and troubleshooting technical system designs. Candidates should...Senior- SA Technology is seeking a Sr. Information Security Engineer in Phoenix, AZ. The ideal candidate will have over 8 years of experience in Information Security Systems, excellent technical and leadership skills suitable for addressing the state's security needs. The successful...Senior
- Prosper is seeking a Senior Infrastructure Security Engineer focused on cloud security, particularly within Google Cloud Platform. In this role, you'll lead initiatives to secure Prosper's cloud-based infrastructure, tackling threats and optimizing security practices....Senior
- Position Summary The Senior Cyber Security Engineer will be involved in the design and implementation of security software, industry best practices... ...of individual decisions Experience in multiple areas of IT Security Architecture, alongside delivery of complex multi‑layered...SeniorRemote jobFull timeTemporary workWork experience placement
- Technologent, Inc. is seeking a Cloud Security Engineer to enhance cloud security initiatives across Oracle Cloud Infrastructure and third-party SaaS platforms. You will conduct security assessments, identify risks, and propose effective security controls aligned with...Senior
- Sprouts Farmers Market, Inc. seeks a Senior IT Security Architect in Phoenix, AZ, to drive security architecture and compliance across their systems. The role involves designing Azure landing zones, guiding initiatives, and leading security reviews. Ideal candidates should...
$90k - $120k
Tata Consultancy Services is seeking an Oracle Cloud security and Sentinel engineer in Phoenix, Arizona. The ideal candidate will have over 5 years of experience securing cloud environments and developing policy-as-code frameworks. Responsibilities include improving security...Senior
Do you want to receive more vacancies?
Subscribe and receive similar vacancies to Senior IT Security Architect. Be the first to apply!
- cyber security architect Phoenix, AZ
- security architect Phoenix, AZ
- senior game producer Phoenix, AZ
- senior electronic design engineer Phoenix, AZ
- senior robotics software engineer Phoenix, AZ
- senior java software engineer Phoenix, AZ
- senior specialist Phoenix, AZ
- senior software test engineer Phoenix, AZ
- sr project engineer Phoenix, AZ
- senior financial systems analyst Phoenix, AZ

