Security Architect (Cloud Security & Compliance) - Hybrid New Britain, CT, United States Towson, MD, United States Come build something that matters.

It takes great people to achieve greatness. People with a sense of purpose and integrity. People with a relentless pursuit of excellence. People who care about making things better For Those Who Make The World™. Sound like you? Join our top-notch team of approximately 48,000 diverse and high-performing professionals globally who are making their mark on some of the world’s most beloved brands, including DEWALT®, BLACK+DECKER®, CRAFTSMAN®, STANLEY®, CUB CADET®, and HUSTLER®.

The Job:

As a Security Architect (Cloud Security & Compliance), you’ll be part of our Information Technology team working as a hybrid employee. You’ll get to:

Cloud Security Architecture & Strategy:

• Design, develop, and oversee the implementation of comprehensive security architectures for AWS cloud environments and connected products, ensuring confidentiality, integrity, and availability of systems and data.

Security Solution Design & Integration:

• Architect and integrate AWS native security tools (e.g., Guard Duty, Security Hub, IAM, KMS, CloudTrail, Config) and external solutions (e.g., CSPM, Secure SDLC, SIEM) for holistic security coverage.

AST - Application security testing:

• Knowledge and understanding of static analysis, software composition analysis, dynamic analysis, secret scanner etc.

Compliance & Certification:

• Lead the security strategy for SOC2, NIST, ISO27001, and other regulatory certifications. Define and maintain documentation, evidence, and processes required for compliance readiness.

Governance, Risk, and Compliance (GRC):

• Architect and oversee GRC processes, including risk assessments, policy development, control mapping, and remediation tracking for cloud environments.

Security Automation & Infrastructure:

• Design and implement automated security controls and monitoring solutions using infrastructure-as-code (Terraform, CloudFormation), CI/CD pipelines, and scripting (Python, Shell).

Incident Response Strategy:

• Develop and guide incident response plans, lead detection and investigation efforts, and coordinate with internal teams for timely resolution and root cause analysis.

Vulnerability Management Oversight:

• Architect vulnerability management programs, including regular assessments, penetration testing, and remediation for cloud infrastructure and applications.

Security Awareness & Enablement:

• Lead organization-wide security awareness initiatives, provide training, and foster a culture of security through strategic communication and enablement.

Documentation & Reporting:

• Define and maintain security architecture documentation, controls, incident records, and compliance activities. Prepare executive-level reports for stakeholders and leadership.

The Person:

You love to learn and grow and be acknowledged for your valuable contributions. You’re not intimidated by innovation. Wouldn’t it be great if you could do your job and do a world of good? In fact, you embrace it. You also have:

• 10+ years of experience in security architecture, cloud security, or related roles.
• Proven track record designing and managing security architectures in AWS cloud environments.
• Experience leading organizations through SOC2, NIST, ISO27001, or similar compliance frameworks.
• Undergraduate degree in Computer Science, Information Technology, Cybersecurity, Engineering, or a related field, or equivalent work experience in cloud security and architecture.
• Preferred certifications: AWS Certified Security – Specialty, Certified Information Systems Security Professional (CISSP), Certified Cloud Security Professional (CCSP).

Core Technologies and Skills

• AWS Security Tools:Guard Duty, Security Hub, IAM, KMS, CloudTrail, Config, Macie, Inspector.

External Security Solutions:

• WIZ.io, Mend.io, Sonar Qube, Cortex, Akamai, Cognito, Balbix, Splunk, Git Leaks or similar

• GRC Platforms:Service Now GRC, Archer, One Trust, and related processes.

• Infrastructure as Code:Terraform, CloudFormation for security automation and compliance.

• CI/CD Security:Security integration in CI/CD pipelines (Bitbucket, Jenkins, GitHub Actions).

• Scripting:Python and Shell for automation and security tasks.

• Vulnerability Management:Vulnerability scans, penetration testing, and remediation.

• Regulatory Knowledge:SOC2, NIST, ISO27001, GDPR, and other relevant regulations.

• Monitoring & Logging:Security monitoring, SIEM solutions, and log management.

• Incident Response:Security incident detection, response, and reporting.

The Details:

You’ll receive a competitive salary and a great benefits plan, including:

• Medical, dental, life, vision, disability, 401(k), Employee Stock Purchase Plan, paid time off, and tuition reimbursement in addition to programs & benefits in support of your well-being.
• Discounts on Stanley Black & Decker tools and other partner programs.

And More:

We want our company to be a place you’ll want to be – and stay. Being part of our team means you’ll get to:

• Grow: Be part of our global company with 20+ brands to grow and develop your skills along multiple career paths.
• Learn: Have access to a wealth of learning resources, including our digital learning portal.
• Belong: Experience an awesome place to work, where we have mutual respect and a great appreciation for a wide range of perspectives and experiences.
• Give Back: Help us continue to make positive changes locally and globally through volunteerism, giving back, and sustainable business practices.

What’s more, you’ll get that pride that comes from empowering makers, doers, protectors, and everyday heroes all over the world. We’re more than the #1 tools company. More than a driving force in outdoor power equipment. More than a global leader in industrial. We’re visionaries and innovators. As successful as we’ve been in the past, we have so much further to go. That’s where you come in. Join us!

We Don’t Just Build The World, We Build Innovative Technology Too.

Joining the Stanley Black & Decker team means working in an innovative, tech-driven and highly collaborative team environment supported by over 58,000 professionals in 60 countries across the globe. Here, you’ll get the unique chance to impact some of the world’s most iconic brands including STANLEY TOOLS, DEWALT, CRAFTSMAN, MAC TOOLS and Black + Decker. Your ideas and solutions have the potential to reach millions of customers as we work together to write the next chapter in our history. Come build with us and take your career to new heights.

Who We Are

We’re the World’s largest tool company. We’re industry visionaries. We’re solving problems and advancing the manufacturing trade through innovative technology and our Industry 4.0 Initiative. We are committed to ensuring our state-of-the-art “smart factory” products and services provide greater quality to our customers & greater environmental and social value to our planet. We are unique in that we have a rich and storied history dating back to 1843, but that hasn't stopped us from evolving into a vibrant, diverse, global growth company.

Benefits & Perks

You’ll get a competitive salary and a comprehensive benefits plan that includes medical, dental, life, vision, wellness program, disability, retirement benefits, Employee Stock Purchase Plan, Paid Time Off, including paid vacation, holidays & personal days, and tuition reimbursement. And, of course, discounts on Stanley Black & Decker tools and products and well as discount programs for many other vendors and partners.

What You’ll Also Get

Career Opportunity: Career paths aren’t linear here. Being part of our global company with 60+ brands gives you the chance to grow and develop your skills along multiple career paths.

Learning & Development:Our lifelong learning philosophy means you’ll have access to a wealth of state-of-the-art learning resources, including our Lean Academy and online university (where you can get certificates and specializations from renowned colleges and universities).

Diverse & Inclusive Culture:We pride ourselves on being an awesome place to work. We respect and embrace differences because that’s how the best work gets done. You’ll find we like to have fun here, too.

Purpose-Driven Company:You’ll help us continue to make positive changes in the local communities where we work and live as well as in the broader world through volunteerism, giving back and sustainable business practices.

EEO Statement:

All qualified applicants to Stanley Black & Decker are considered for employment without regard to race, color, religion, age, sex, sexual orientation, gender identity, national origin, disability, veteran’s status or any other protected characteristic.

If you require reasonable accommodation to complete an application or access our website, please contact us at (860) 827-3923 or at accommodations@sbdinc.com. Due to volume, we cannot respond to unrelated inquiries about the status of a completed application or resetting an account password.

Know Your Rights: Workplace discrimination is illegal (eeoc.gov)