Our mission is to create the Experience of a Lifetime for our employees, so they can, in turn, create the Experience of a Lifetime for our guests. We own and operate the most renowned destination resorts in the world as well as regional and local ski areas outside major cities, and connect them all through one unrivaled network. We are looking for ambitious leaders, innovators and creators to join our talented team. If you’re ready to pursue your fullest potential, we want to get to know you!
Candidates for year-round positions are reviewed on a rolling basis. Applications will be accepted up to 90 days after the posting date, or until the position is filled (whichever is first).
Do you have a passion for cybersecurity and serving others? Do you enjoy automating everything and driving continuous improvement? Are you looking to join a group of like-minded collaborators driving transformations and delivering value for the team, its partners, and the organization?
If so, we want you to join our growing team and organization!
Job Summary:
The Information Security Architect’s role is a technical leadership position which drives the development of IT security strategies, architectures, and services. The Information Security Architect collaborates with IT and business partners to reduce enterprise risk, evolve IT security capabilities, and enable business-critical initiatives.
The role works cross-functionally with architects, engineers, analysts, and business leaders as an IT security subject matter expert to facilitate the organization’s digital transformation, cloud integration, Experience of a Lifetime for guests and employees.
The ideal candidate will have a multi-disciplinary IT background, subject matter expertise across all IT security domains, and deep experience securing multi-cloud, hybrid cloud and on-premises enterprise technologies.
What You’ll Do
Drive a secure technology culture and continuous IT security posture improvement.
Deliver the Experience of a Lifetime for employees and guests.
Serve team members, IT partners, and business stakeholders as a cybersecurity leader.
Accelerate and enable strategic business opportunities.
Enhance and mature cybersecurity capabilities.
What You’ll Bring
Aptitude and attitude!
A positive and solution-oriented approach.
Strong technical skills and ability to effectively communicate at all levels.
Your passion, out-front engagement, and expert influence.
Business-first cybersecurity leadership.
Job Specifications:
- Outlet: Corporate, Broomfield
- The budgeted range starts at $151,320 - $170,000 + annual bonus. Actual pay will be adjusted based on experience
- Shift & Schedule Availability: Full Time, Year Round
- Other Specifics: Hybrid - Remote
Job Responsibilities:
- Strategic Security Planning: Develop and implement cybersecurity strategy, integrating governance, risk, and compliance principals, with a focus on automation and data security.
- IT Security Expertise: Evaluate emerging threats and technologies across diverse environments, and develop countermeasures aligned with cybersecurity frameworks.
- Architectural Design: Design and implement robust cybersecurity architectures and services for traditional datacenters and cloud environments.
- Leadership: Provider leadership in cybersecurity and collaborate across a broad range of stakeholders around the globe.
- Communicate: Drive alignment in clearly communicating complex cybersecurity concepts and strategies throughout IT and the business.
- Cybersecurity Assessments: Evaluate and drive cybersecurity enhancements across IT architectures, services, applications, and initiatives.
- Security Policies and Procedures: Develop, implement, and enforce security policies, procedures, and guidelines to safeguard information assets.
- Security Awareness: Promote security awareness and best practices among employees, including training and education.
- Security Auditing: Participate in and contribute to regular security audits and risk assessments to ensure compliance with security policies and standards and identify improvement opportunities.
- Threat Analysis: Stay updated on emerging cyber threats and vulnerabilities, providing insights and recommendations to enhance security measures and proactively protect.
- Compliance: Drive awareness of and adherence to relevant regulatory requirements and industry standards (e.g., GDPR, PCI, NIST, CIS, OWASP) and provide necessary artifacts.
- Security Reporting: Generate security reports, metrics, and incident reports for IT security leadership and stakeholders. Support the development of executive content and reports.
- Security Documentation: Maintain and update documentation related to security configurations, procedures, and incident response plans and playbooks.
Job Requirements
Required
- Bachelor’s degree in information security, computer science, or a related field, or equivalent in education and experience.
- Proven experience as an IT Security Architect with a focus on both traditional datacenter and modern cloud environments.
- Expertise in supporting cybersecurity frameworks such as NIST, ISO/IEC, CIS, along with experience in application security.
- Superb communication and collaboration skills, with a positive and solution-oriented approach and ability to serve others.
- Analytical and problem-solving skills to detect, assess, and respond to security incidents.
- Demonstrated strength in mentoring and coaching IT professionals.
- Ability to adapt to rapidly changing security threats and technologies.
- Attention to detail and a commitment to maintaining the highest level of security.
- Demonstrated strength in continuous learning and growth.
Subject Matter Expertise
- Security Architecture and Engineering
- Cloud Security
- Identity and Access Management
- Application Security and Secure SDLC
- IT Security and Risk Management
- Network and Communications Security
- Security Assessments and Testing
- IT Asset Security and Monitoring
- IT Security Metrics and Reporting
- Security Operations
Preferred
- CISSP, GIAC, CISA, CISM, CCSP or other relevant cybersecurity certifications highly desired.
- Organizational membership and participation in chapter meetings such as ISACA, ISSA, etc.
- Experience speaking and evangelizing technology vision at large events.
- Previous experience leading an information security or compliance function or program.
- Understanding of DevSecOps principles and practices.
- Knowledge of scripting languages (e.g., Python, PowerShell) for automation and customization of security tasks.
The expected Total Compensation for this role is $151,320 - $170,000 + annual bonus. Individual compensation decisions are based on a variety of factors.
Job Benefits
- Ski/Mountain Perks! Free passes for employees, employee discounted lift tickets for friends and family AND free ski lessons
- MORE employee discounts on lodging, food, gear, and mountain shuttles
- 401(k) Retirement Plan
- Employee Assistance Program
- Excellent training and professional development
Full Time roles are eligible for the above, plus:
- Health Insurance; Medical Insurance, Dental Insurance, and Vision Insurance plans (for eligible seasonal employees after working 500 hours)
- Free ski passes for dependents
- Critical Illness and Accident plans
Vail Resorts offers a ‘Hybrid’ work environment where employees living within 50 miles of the Broomfield office work on-site Tuesday, Wednesday, Thursday and have flexibility to work off-site on Mondays and Fridays. Employees living outside of a commutable distance can work remotely from British Columbia, Washington D.C., and the 16 U.S. states* in which we currently operate. This includes: California, Colorado, Indiana, Michigan, Minnesota, Missouri, New Hampshire, New York, Nevada, Ohio, Pennsylvania, Utah, Vermont, Washington State, Wisconsin, and Wyoming.
Please note that the ability to work in person or off-site, and the particulars related to such work, are subject to change at any time; and, accordingly, the Company reserves the right to change its policies and/or require in-person/in-office work or off-site work at any time in its sole discretion.
Vail Resorts is an equal opportunity employer. Qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, sexual orientation, gender identity, disability, protected veteran status or any other status protected by applicable law.
Requisition ID 504383
Reference Date: 08/20/2024
Job Code Function: IT Security
Job Type: [[JobType]]