Executive Director, Security Architecture & Engineering

Beachbody - Santa Monica, CA

Posted 13 days ago

Beachbody, the leader of in-home fitness programs and nutritional products, is on the lookout for top-notch talent. We’re an equal-opportunity employer who offers competitive compensation, incredible benefits and perks, not to mention a laid-back office filled with smart, friendly people and positive energy. We also provide free Shakeology, onsite gyms, flexible work hours, and cool product discounts. Are you ready to help us achieve our goal of helping people live healthy fulfilling lives?

Beachbody is building-out its global information security function and is looking to recruit an experienced information security professional for the newly-created position of Executive Director, Security Architecture & Engineering. The Executive Director, Security Architecture & Engineering will report to the Senior Vice President, Security. Under the direction of the Senior Vice President, Security, the Executive Director, Security Architecture & Engineering will develop information security solutions, policies, standards, and processes. This person will partner with Beachbody business units, including IT, to understand business processes, identify risks, and build secure solutions that enable the business to maintain a competitive advantage in the marketplace.

The Executive Director, Security Architecture & Engineering must possess a broad and deep background encompassing all facets of information security and privacy including, but not limited to:

  • Security Architecture and Engineering – The candidate must have extensive hands-on experience architecting and engineering secure enterprise solutions. It’s important for the Executive Director, Security Architecture & Engineering to be able to guide and enable the business.
  • Information Security Assessments – The Executive Director, Security Architecture & Engineering will perform security, vulnerability, and risk assessments of critical systems, infrastructure and third parties. Recommendations and action plans will be developed based on these assessments. The Executive Director, Security Architecture & Engineering will guide the business by addressing these plans and recommendations.
  • Threat and Vulnerability Management – The Executive Director, Security Architecture & Engineering will work closely with IT to identify risks, threats, vulnerabilities and provide remediation guidance.
  • Security Governance – The Executive Director, Security Architecture & Engineering will develop information security policies, procedures and standards. It is important for the candidate to understand maturity and control frameworks (NIST CSF, COBIT, CIS Controls, et cetera) and regulatory and compliance requirements (PCI DSS, HIPAA, et cetera) and be able to guide the business through implementing compliant systems and processes.
  • Incident Response – The Executive Director, Security Architecture & Engineering will develop and incident response playbooks and lead incident investigations.
  • Security Training and Awareness – The Executive Director, Security Architecture & Engineering will work with the Senior Vice President, Security to develop a cohesive security awareness program encompassing information security, physical security and fraud.

Required Background

This position requires specific training in fields such as information technology, computer sciences, or similar disciplines obtained through a formal program, usually resulting in a Bachelor’s Degree.

A minimum of 15 years experience in information technology and 5 years in information security is required. Security-related certification (CISSP, CISM, et cetera) also required.

Minimum Skills, Knowledge and Ability Requirements

  • Subject Matter Expert in information security including network, system, application, web, and database security.
  • In-depth experience with network and system architectures, engineering, hardening, and protocols.
  • Demonstrated experience architecting, engineering and implementing secure enterprise solutions.
  • Experience developing security standards, policies, and procedures.
  • Strong project and time management skills with the ability to handle competing priorities and multiple projects.
  • Ability to work well with broad direction in a loosely structured environment
  • Demonstrated experience leading incident response investigations.
  • Familiarity with global security and privacy regulations.
  • Understanding of chain of custody and other digital forensic processes.
  • Hands-on experience with:
    • Security maturity and control frameworks (NISCT CFS, ISO, Cobit, CIS, et cetera)
    • Security regulation and compliance (HIPAA, PCI DSS, et cetera)
    • Security and third-party risk management frameworks and toolsets
    • Operating Systems: Windows, Unix, Linux, and Mac OS X
    • Firewalls, IPS, DLP, VPN, and other network security technologies (Palo Alto Networks, FireEye, Cisco, Symantec, et cetera)
    • Static and dynamic codes scanning tools (Veracode, AppScan, et cetera)
    • Vulnerability and threat management tools (Qualys, Tenable, et cetera)
    • Security Information and Event Management (Splunk, Archer, et cetera)
    • Cloud (IaaS, PaaS and SaaS) and cloud-based technologies (AWS, GPC, Azure, Docker, Kubernetes, et cetera)
    • Endpoint and device security tools
    • Cloud security capabilities and tools
    • Directory services and multi-factor authentication
    • Identity and access management, including privileged account management
    • Web applications and services
    • Database and database security
  • Scripting capability and experience
  • Ability to think outside the box
  • Strong change management skills
  • Effective communication skills

Desired Skills and Knowledge

  • Ability to develop teams and grow others
  • Strong communication skills, including ability to relate complex technology concepts to business leaders
  • Ability to partner with and influence others
  • Proven ability to develop and mature security programs
  • Desire and proven ability to learn new skills
  • Comfortable operating in – and leading in – ambiguous situations

Beachbody, LLC is an equal opportunity employer and all qualified applicants will receive consideration for employment without regard to race, color, ancestry, national origin, citizenship status, religion, creed, age, physical or mental disability, sex, gender (including pregnancy, childbirth, breastfeeding or related medical conditions), sexual orientation, gender identity, gender expression, medical condition, genetic information, marital status, military and veteran status, or any other characteristic protected by federal, state, or local law.

To all recruitment agencies: Beachbody does not accept unsolicited agency resumes. Please do not forward resumes to our jobs alias, Beachbody employees, or any other company location. Beachbody is not responsible for any fees related to unsolicited resumes.

Director, Building Engineering - Shrine Auditorium
AEG in Los Angeles, CA

The Director Building Engineering is responsible for overseeing the staff, operations, maintenance and repair of a variety of heating, air-conditioning,…

Senior Director of Engineering
GoodRx in Santa Monica, CA

GoodRx is looking for an experienced, detail-oriented Director of Engineering to join our growing team. Bachelor’s Degree in Engineering required.

Director of Engineering
Viceroy Hotel Group in Los Angeles, CA

A degree or equivalent qualification in Engineering. Prepares, recommends and implements operations maintenance and equipment control budget and the resort's…

Director of Engineering
Viceroy Sugar Beach in Los Angeles, CA

Bachelors or better in Engineering. A degree or equivalent qualification in Engineering. Prepares, recommends and implements operations maintenance and…

Director Software Engineering
Diamond in Los Angeles, CA

We are looking for a Director, Software Engineering to lead a team of engineers into the future and help implement new projects that makes our platforms the…

Director, Site Reliability Engineering (SRE)
Diamond in Los Angeles, CA

As a Director, Site Reliability Engineering you will be a key leader driving strategy, priorities, and continuous. SREs are engaged in the following key.

Director of Chief Engineering
Sheraton Agoura Hills Hotel in Agoura Hills, CA

The Director of Engineering with supervise, train and manage all Engineering staff. The Sheraton Agoura Hills Hotel is currently seeking a Director tor of…

Director of Project Engineering
EVgo in Los Angeles, CA

The Director of Project Engineering will handle all technical coordination with the Project Management and Construction team by ensuring high quality…

Director of Engineering
Enervee in Culver City, CA

We are looking for a Director of Engineering to mentor and lead all things software engineering at Enervee. Our software engineering team would report into you,…

Director, Package Engineering & Labeling
Johnson & Johnson Family of Companies in Santa Ana, CA

Johnson & Johnson Vison (JJV) is recruiting for a Director, Package Engineering & Product Labeling, located in Santa Ana, CA.