Security Architect

As a key member of the Bloomin’ Brands Security team, the Security Architect is responsible for driving the organization’s cybersecurity strategy, ensuring compliance, and mitigating risks across the enterprise. This role requires deep technical expertise and strong business acumen to align security initiatives with organizational goals. The Security Architect will lead efforts to safeguard sensitive data, protect critical systems, and ensure compliance with regulatory requirements (PCI, NIST 2.0, SOX, PII, HIPAA).

This hands-on role collaborates with business units, IT leadership, and external partners to develop, implement, and maintain a robust cybersecurity framework, proactively addressing emerging threats while enabling business innovation. This role is based in our Tampa Restaurant Support Center and will work on a hybrid schedule.

Key Responsibilities

Security Architecture & Risk Management (Primary Role)

• Serve as the enterprise security subject matter expert (SME) for evaluating and approving third-party vendors, ensuring security controls are embedded in vendor solutions.
• Lead the design and implementation of secure architectures for on-premise, cloud, and hybrid environments, ensuring alignment with industry best practices and compliance mandates.
• Partner with Legal, Procurement, and Compliance to review vendor and customer contracts, ensuring adherence to information security policies and risk management frameworks.
• Develop and maintain security architecture roadmaps that align with business objectives and evolving cybersecurity threats.
• Conduct regular risk assessments and threat modeling to identify vulnerabilities and recommend mitigation strategies.
• Facilitate security governance by advising leadership on cybersecurity risks, ensuring informed decision-making.
• Advocate for and enforce the adoption of Zero Trust principles, identity and access management (IAM) enhancements, and modern authentication mechanisms (SSO/SMAL, MFA, passwordless, etc.).

PCI Compliance & Regulatory Oversight

• Own and manage the entire PCI program, ensuring all compliance requirements are met, evidence is documented, and audits are successfully passed.
• Lead cross-functional collaboration with Operations, Finance, and IT teams to prepare Managing Partners for restaurant audits.
• Ensure ongoing compliance with NIST 2.0, SOX, PII, HIPAA, and other applicable regulatory frameworks, aligning security policies with legal and industry requirements.
• Drive continuous improvement of compliance processes, leveraging automation and analytics to streamline evidence collection and reporting.

Third-Party & Supply Chain Risk Management

• Lead the Third-Party Risk Management (TPRM) program, conducting security assessments of vendors, partners, and service providers.
• Develop and enforce policies to mitigate supply chain risks, ensuring vendor security aligns with Bloomin’ Brands’ risk tolerance and contractual obligations.
• Establish monitoring processes to track vendor security performance and drive remediation of identified risks.

Security Engineering & Incident Response (Support Role)

• Monitor security events, logs, and threat intelligence to proactively detect and respond to cyber threats.
• Act as a technical escalation point for security incidents, leading forensic investigations and recommending containment/remediation actions.
• Oversee the deployment, configuration, and management of key security technologies, including:
• SIEM (Security Information & Event Management)
• Endpoint Detection & Response (EDR)
• Cloud Security Posture Management (CSPM)
• Vulnerability Management tools (e.g., Nessus, Qualys)
• Identity and Access Management (IAM) solutions
• Secure DevOps & CI/CD security integrations
• Evaluate new security technologies and solutions, making recommendations to enhance the organization’s security posture.

Leadership & Business Engagement

• Act as a trusted security advisor, translating complex cybersecurity concepts into business-relevant insights.
• Collaborate with CIO, IT leadership, and business stakeholders to align security initiatives with corporate objectives.
• Develop and deliver security awareness training for technical and non-technical audiences, fostering a security-first culture.
• Serve as a liaison between security and other departments to ensure that security is integrated into all aspects of IT and business operations.

Qualifications & Experience

Required:

• Bachelor’s degree in Cybersecurity, Computer Science, or a related field (or equivalent experience).
• 8-10 years of experience in Information Security, with a strong focus on security architecture and risk management.
• Expertise in PCI compliance, third-party risk management, and enterprise security frameworks (NIST, SOX, CIS benchmarks).
• Strong technical knowledge of cloud security (AWS, Azure, GCP), network security, IAM, and modern authentication protocols.
• Hands-on experience with firewalls, IDS/IPS, SIEM, vulnerability management, and endpoint security solutions.
• Proficiency in scripting and automation (PowerShell, Python, Terraform, Ansible) is a plus.
• Experience collaborating with cross-functional teams, legal teams, and external auditors to support compliance initiatives.
• Ability to communicate complex security concepts to technical and non-technical audiences, including executives, IT teams, and business leaders.

Preferred:

• Certifications: CISSP, CCSP, CISM, CRISC, PCI ISA/QSA.
• Experience in a highly regulated industry (retail, hospitality, financial services, healthcare, etc.).
• Proven ability to manage security projects, drive enterprise-wide initiatives, and influence stakeholders at all levels.

Why This Role is Critical

The Security Architect is not just a technical expert but also a strategic business partner who ensures cybersecurity is a business enabler rather than a blocker. This role is essential to protecting the company’s brand, revenue, and customer trust while enabling innovation and operational excellence.

Bloomin' Brands offers benefits such as medical, dental, vision, and 401k. Further details around eligibility and additional benefit offerings can be found at BloominBrandsBenefits.com.

We value diversity and are proud to be an Equal Opportunity Employer. We are committed to providing all individuals employment consideration regardless of race, color, religion, sex, national origin, age, disability, marital status, veteran status, sexual orientation, genetic information or any other protected characteristic under applicable law. 

#LI-TK1