Now Brewing Senior Security Architect! #tobeapartner

From the beginning, Starbucks set out to be a different kind of company. One that not only celebrated coffee and the rich tradition, but that also brought a feeling of connection. We are known for developing extraordinary leaders who share this passion and are guided by their service to others.

This role contributes to Starbucks success by safeguarding information and systems assets against unauthorized use, disclosure, modification, damage, or loss. The groupprovidesservices to protect the value and use of information through collaboration, standardization, enforcement, and education across the Company.

Security Architecture uses risk frameworks and methodologies to assess technology risk, evaluate technology providers, review trends, threats, and solutions. We use these assessments to inform decision making, establish, and interpret cybersecurity policies and standards, and provide implementation guidance to manage risk.

This role will deliver security architecture expertise, and best practices oversight across complex multi-cloud, multi-partner environments. It entails deep-level architecture reviews, crafting advisory and design reference architectures and secure design patterns. The end goal drives Starbucks Technology into compliance with standards, policies, and applicable regulations globally.

This position reports to the director of Security Architecture within the Global Cybersecurity Services (GCS) organization. GCS is chartered with leading, inspiring, and supporting Starbucks to cultivate trust in our brand by ensuring confidentiality, integrity, and availability in every partner, customer & supplier experience.

As a Senior Security Architect, you will

• Ensure delivery of a world class cybersecurity program.
  • Develop reference architectures that can be used to solve common requirements or mitigate trends in security findings in a repeatable way following (andidentifying) recommended bestpractices.
  • Lead threat modeling and partner with technical delivery teams to integrate security requirements and practices intosolutions.
  • Drive security architecture reviews of platforms & applications in complex multi-tenant, multi-provider,and vendor-cloud environments.
  • Provideconsultative services and guidance for tech builders during technical design ofsolutions.
  • Inspire and influence others to achieve results Partner with engineering and delivery teams to help enable strategic platform initiatives.
  • Proactivelymanage oversight and pace for the architecture reviews and promptly address any critical issues that may create risk.
  • Be accountable for the quality and successful outcome of the work Ensure assessments are known, documented, and properly performed to produce consistent, timely, high-quality deliverables. Develop andmaintaintechnicalproficiencyand related certifications for core products and solutionareas.
  • Enjoy working on an energetic, fun team and have a clear ability to drive the business forward as part of a highly collaborative team, while acting in accordance with Starbucks guiding principles and values.

Wed love to hear from people with:

• Minimum of 7+yearsworking in cybersecurity related field.
  • We prefer 3 years demonstrated experience in cybersecurity and a total minimum of 7 years in information technology or related field.
• Demonstrated knowledge of:
  • cybersecurity frameworks (e.g., NIST, ISO, CSA), policies, design principles, practices and enabling tools.
  • Formal risk assessment documentation
  • Threat modeling
  • Public cloud services (AWS, Azure, GCP, etc.) and serverless and containerized environments.
  • Encryption,authentication/authorization, API security, secrets best practices.
  • IaC(Infrastructure as Code) and supporting technologies
  • General security threats, attack vectors, and vulnerabilities - ability to act as SME on threatmodeling.
  • Architecture tools, patterns, serverless ecosystems, pipeline security.
• Able to use critical and logical thinking to prioritize work that drives the most impact to overall securitypostureand risk management.
• Exceptional written and verbal communication skills.
• Ability to establish cross-functional, collaborative relationships with business and technology partners.

• Demonstrated ability to work in a challenging, dynamic, and fast-paced environment with limited supervision. Candidate should be able to

  succeed in both independent and collaborative workscenarios.

• Certifications such as CISSP, CISM, CIPM or others focused on information security, data privacy or information risk management are desired.

As a Starbucks partner, you (and your family) will have access to medical, dental, vision, basic and supplemental life insurance, and other voluntary insurance benefits. Partners have access to short-term and long-term disability, paid parental leave, family expansion reimbursement, paid vacation from date of hire*, sick time (accrued at 1 hour for every 25 hours worked), eight paid holidays, and two personal days per year. Starbucks also offers eligible partners participation in a 401(k) retirement plan with employer match, a discounted company stock program (S.I.P.), Starbucks equity program (Bean Stock), incentivized emergency savings, and financial well-being tools. Additionally, Starbucks offers 100% upfront tuition coverage for a first-time bachelors degree through Arizona State Universitys online program via the Starbucks College Achievement Plan, student loan management resources, and access to other educational opportunities. You will also have access to backup care and DACA reimbursement. Starbucks will comply with any applicable state and local laws regarding employee leave benefits, including, but not limited to providing time off pursuant to the Colorado Healthy Families and Workplaces Act, and in accordance with its plans and policies. This list is subject to change depending on collective bargaining in locations where partners have a certified bargaining representative. For additional information regarding partner perks and more detailed information about benefits, go to starbucksbenefits.com.

*If you are working in CA, CO, IL, LA, ME, MA, NE, ND or RI, you will accrue vacation up to a maximum of 120 hours (190 in CA) for roles below director and 200 hours (316 in CA) for roles at director or above. For roles in other states, you will be granted vacation time starting at 120 hours annually for roles below director and 200 hours annually for roles director and above.

The actual base pay offered to the successful candidate will be based on multiple factors, including but not limited to job-related knowledge/skills, experience, geographical location, and internal equity. At Starbucks, it is not typical for an individual to be hired at the high end of the range for their role, and compensation decisions are dependent upon the facts and circumstances of each position and candidate.

We believe we do our best work when we're together, which is why we're onsite four days a week.

All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.

We are committed to creating a diverse and welcoming workplace that includes partners with diverse backgrounds and experiences. We believe that enables us to better meet our mission and values while serving customers throughout our global communities. People of color, women, LGBTQIA+, veterans and persons with disabilities are encouraged to apply.

Qualified applicants with criminal histories will be considered for employment in a manner consistent with all federal state and local ordinances. Starbucks Corporation is committed to offering reasonable accommodations to job applicants with disabilities. If you need assistance or an accommodation due to a disability, please contact us at applicantaccommodation@starbucks.com.

Job Industries

• Other