IT Security Architect (Remote)

Join BWH Hotels – Where Passion Meets Purpose

At BWH® Hotels, we don't just offer employment opportunities, we create opportunities to be part of something extraordinary. As a global leader in hospitality for nearly 80 years, our vision is to inspire travel through unique experiences. Joining our corporate team means becoming part of a dynamic and inclusive community that values innovation, collaboration, and making a meaningful impact in the travel industry.

Headquartered in Phoenix, Arizona, BWH Hotels boasts a powerful portfolio of 18 brands, including WorldHotels™, Best Western® Hotels & Resorts, and SureStay Hotels®, with approximately 4,300 hotels in over 100 countries. We take pride in our top-ranking employee engagement scores and foster a workplace culture where your contributions truly matter. Join us and be part of a team that's shaping the future of hospitality!

Job Purpose

BWH is seeking an IT Security Architect with a vision for the future. You will work with an amazing team of analysts, system engineers and architects to propel Best Western's IT security to a new level.  Design system architectures with a security-related focus across all sectors of the company.  A successful candidate will be comfortable working with diverse teams across our dynamic organization to enable business while promoting security.

Capitalizing on your creativity will positively influence the outcome of your projects. Keeping up with relevant technologies and a contributing voice will help set the direction of the group and drive innovation to unite company efforts for consistent system security.

As an IT Security Architect, you will ensure the confidentiality, integrity, and availability of company data and information technology assets by leading information security policy enforcement and risk management activities.  Your working knowledge of all aspects of information technology including information security, programming, networking, UNIX and Windows administration will serve as a solid foundation for your success in our dynamic environment (7+ years preferred).

Your leadership activities will include:

• Providing overall security architecture guidance in support of application development, cloud design and implementation, infrastructure projects, and security specific initiatives
• Working closely with enterprise architects, infrastructure, database and application teams to ensure security is properly addressed in all phases of development projects
• Performing architecture reviews to influence the security architecture and ensure adherence to security standards and regulatory requirements 
• Contribute on security focused remediation efforts relating to offensive testing, vulnerability analysis, and risk management
• Conducting code security assessments using dynamic and static analysis tools such as Snyk, VeraCode, SonarCube, and BurpSuite
• Performing software security and suitability assessments for applications and technologies prior to acquisition  
• Design and implement Security Testing used in Automated Deployment Pipelines
• Accountable for defining best practices, setting expectations, and communicating them to the organization
• Taking proactive action to communicate, reduce risk, re-enforce and increase awareness existing and new controls, policies and standards

Your strengths and experience in the following areas will make you the perfect fit for this position:

• Certification in one or several of the following CISSP, SSCP, SANS, CEH, or other industry-leading information security certifications
• Familiarity with DevSecOps and secure SDLC processes to develop and design effective technology solutions with a focus on automation
• Experience representing security perspectives within integrated teams; including cloud engineers, developers, subject matter experts and management.
• Familiarity with common Software Vulnerabilities (e.g., OWASP Top 10, SANS CWE 25) and remediation techniques
• Advise software development teams on secure coding and demonstrated experience in the design and application of secure coding practices
• Experience in IT security concepts and technologies such as: identity and access management, public key infrastructure (PKI), multi-factor authentication (MFA), role-based access control (RBAC)
• Experience with credit card security requirements and data privacy regulations such as PCI as well as industry best-practices such as COBIT, ITIL, and NIST
• Experience with Privacy Regulations including GDPR, CPRA, CPA, CPDP, MOCPA
• Strong grasp of cloud security concepts (SaaS, PaaS, IaaS), architecture, network, and application security and/or data protection
• Experience with AWS cloud native services and security tools including Config, Security Hub, and Cloud Trail
• Experience working with cloud infrastructure and Infrastructure as Code (IaC) using Terraform and Cloud Formation
• Experience creating and presenting slide decks, talking points and summaries to technical and non-technical audiences is desired
• In depth experience in any of the following: networking, system administration, vulnerability management, PKI, encryption, identity and access management, databases or hospitality software systems is desired

Work Location

• This is a remote based position, working from your home office in the state of your current residence.

Pay

• The starting salary for this role is estimated to be between $125,400.00 and $160,748.00. Base pay, however, will be determined based on several factors, which include but are not limited to, applicable skills, work experience, education, business needs and market demands.

This position is not eligible for immigration sponsorship. 

Benefits Summary for Full-Time Employees  

· Medical/Dental/Vision available day one 

· Vacation/Sick- accruals start day one 

· Paid company holidays and personal holidays to celebrate what’s important to you  

· 401K - company contribution and match (U.S.) 

· Registered Retirement Savings Plan (RRSP) – company contribution and match (Canada) 

· Employee discounts/hotel discounts 

· Free financial and health wellness programs 

· Tuition Reimbursement 

Equal Employment Opportunity

BWH Hotels (the "Company") maintains a policy of equal employment opportunity for all employees and qualified applicants for employment without regard to race (including hair textures and hair styles associated with race), color or pigmentation, religion, religious creed (including religious dress and grooming practices), national origin, ancestry, alienage or citizenship status, caste, age, disability, gender, gender identity or expression, sex, sexual orientation, LGBTQIA+ individuals, height, weight, pregnancy status, childbirth or related medical conditions, genetic information, uniformed service or veteran status, marital status, or any other characteristic protected by applicable federal, state, provincial, or local laws. The Company’s equal employment opportunity policy applies to all aspects of employment with the Company, including, but not limited to, hiring, promotion, transfer, benefits, discipline, and termination.