Business Security Solutions Architect (Hybrid)

You may know McCormick as a leader in herbs, spices, seasonings, and condiments – and we’re only getting started. At McCormick, we’re always looking for new people to bring their unique flavor to our team.

McCormick employees – all 14,000 of us across the world – are what makes this company a great place to work.

We are looking to hire an Business Security Solutions Architect immediately in a Hybrid (50/50) capacity at our Global Headquarters in Hunt Valley, Maryland. 

What We Bring To The Table:

The best people deserve the best rewards. In addition to the benefits you’d expect from a global leader (401k, health insurance, paid time off, etc.) we also offer:

• Competitive compensation

• Career growth opportunities

• Flexibility and Support for Diverse Life Stages and Choices

• We prioritize our communities and the planet we share. We are proud to be awarded as a Diversity Inc. Top 50 company for Diversity and have multiple Sustainability awards (ranking #22 in the World and #1 in Food Products)

• Wellbeing programs including Physical, Mental and Financial wellness

• Tuition assistance

Overview:

The Business Security Solutions Architect is a business-facing role that requires a deep understanding of security architecture, consulting, and risk assessment. 
Reporting to the Cybersecurity Business Enablement Director, you will work closely with cross-functional teams and business units to design and implement effective security solutions, provide expert security consulting, be a trusted advisor to business leaders, and evaluate and mitigate security risks.  This role will be part of a team that will lead projects through their respective life cycles ensuring that business and technical requirements are achieved securely. This role will require an in depth understanding of both cloud, on premise, and manufacturing technology and how to use security controls and tools to protect McCormick systems and data.

Key Responsibilities: 

• Architect and design comprehensive information security solutions that align with business requirements, industry best practices, and regulatory standards. Provide security consulting services to business stakeholders, offering expert guidance on security strategies, controls, and practices to enhance the overall security posture.
• Define a roadmap to continually assess and iterate security best practices for cloud, and on-premise environments as it pertains to reducing risk and ensure the protection of both the organization and customer data.
• Conduct thorough risk assessments to identify vulnerabilities and potential security risks across systems, networks, and applications.  Collaborate with cross-functional teams and business units to understand their security needs and translate them into effective security solutions.
• Evaluate existing security controls, policies, and procedures to identify areas for improvement and recommend necessary enhancements. Stay up to date with emerging security threats, technologies, and industry trends, and apply this knowledge to design and implement proactive security measures.
• Develop and maintain strong relationships with business stakeholders, effectively communicating security concepts and requirements to both technical and non-technical audiences. Collaborate with security teams to ensure the successful implementation and ongoing monitoring of security solutions.

Required Qualififcations: 

• Bachelor's degree in Computer Science, Information Security, or a related field.
• CISSP or other relevant security professional certifications / pursue CISSP if doesn’t have within 1 year of taking position
• Minimum of 8 years of experience in information security, with a focus on security solutions architecting, security consulting, and risk assessment.
• Strong knowledge of security architecture principles, frameworks, and best practices.
• Proven experience in designing and implementing effective security solutions across systems, networks, and applications.
• Deep understanding of security consulting methodologies, risk assessment techniques, and industry standards.
• Excellent interpersonal and communication skills, with the ability to collaborate effectively with business stakeholders at all levels.
• Relevant certifications, such as Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), or other related certifications, are highly desirable.
• Strong analytical and problem-solving skills, with the ability to think critically and assess risks.
• Ability to adapt to changing priorities and work effectively in a fast-paced environment.
• Understanding of agile product lines and processes
• Technical knowledge of security frameworks and controls including NIST 800-53
• Proven ability to successfully collaborate with business and technology senior leaders and teams to promote and manage consistent cybersecurity operating processes and process improvements
• Strong relationship management skills to build and maintain credibility and confidence with executive level, stakeholders, and employees

#LI-NP2

McCormick & Company is an equal opportunity/affirmative action employer. All qualified applicants will receive consideration for employment without regard to sex, gender identity, sexual orientation, race, color, religion, national origin, disability, protected veteran status, age, or any other characteristic protected by law.

As a general policy, McCormick does not offer employment visa sponsorships upon hire or in the future.