Job Description
Aven Hospitality is an innovative technology provider powered by SynXis®, the leading global hospitality commerce and distribution platform. We empower hoteliers around the world to exceed expectations, solve daily challenges, and stay ahead of the competition. With our comprehensive portfolio of solutions, hoteliers can manage distribution, retailing, payments, operations, and more. Providing hoteliers the tools to maximize revenue, improve operational efficiency, and deliver personalized guest experiences that drive satisfaction. Our tools are built to seamlessly integrate with each hotelier’s unique strategy, elevating guest satisfaction and creating meaningful connections. We are pioneering AI in hospitality technology to unlock new opportunities, drive efficiency, and personalize the guest experience. By prioritizing stability, scalability, and data-driven insights, we equip hoteliers to adapt and thrive in an ever-changing landscape, ready for whatever comes next.. Cybersecurity Architecture Director Job Description The Cybersecurity Architecture Director will lead the design, implementation, and maintenance of the organization's overall security architecture and functional design, including automation. This strategic role focuses on building resilient, scalable security systems that incorporate zero-trust principles, cloud-native designs, AI-driven defenses, and preparations for quantum threats, ensuring alignment with business objectives while mitigating advanced persistent threats. The Director will work with the cybersecurity team, the development teams, and the Product Security Manager to implement security standards. At times, hands-on security engineering may be required. Qualifications Bachelor's degree in Cybersecurity, Computer Science, Information Technology, or a related field (Master's preferred) 7+ years of progressive experience in cybersecurity, with at least 4 years in security architecture, engineering, or design roles Proven expertise in cloud platforms (GCP, AWS) and modern architectures (microservices, containers, Kubernetes) Deep knowledge of security frameworks and regulation (PCI-DSS, ISO 27001, Zero Trust, MITRE ATT&CK) and networking/security technologies (firewalls, IDS/IPS, encryption) Proficiency in threat modeling tools (e.g., STRIDE, MITRE), architecture diagramming, and scripting/automation (e.g., Python, Terraform) Excellent communication skills for translating complex technical concepts to non-technical stakeholders Project management experience and the ability to lead cross-functional initiatives Preferred Skills And Certifications Certifications such as CISSP-ISSAP, SABSA, TOGAF, CCSP, AWS/Azure/GCP Security Specialty, or GIAC (GWEB, GSNA) are highly desirable Experience with AI security risks, autonomous threat defense, quantum-safe cryptography planning, and identity-centric security Strong understanding of current trends, including AI-powered attacks, deepfakes, supply chain risks, and regulatory-driven zero-trust mandates Proficiency in scripting/automation (e.g., Python, Bash) and tools like GitHub Actions, Jenkins, or Terraform for security automation Responsibilities Design and develop comprehensive security architectures, including reference models, segment architectures, and solution designs for multi-cloud, hybrid, and on-premises environments Lead the implementation of zero-trust architecture (ZTA), enforcing continuous verification, least-privilege access, and micro-segmentation across identities, devices, workloads, and data Integrate security controls into DevSecOps pipelines, ensuring secure-by-design principles for applications, APIs, and infrastructure-as-code Conduct threat modeling, risk assessments, and architecture reviews to identify vulnerabilities and recommend mitigations Evaluate and select security technologies, tools, and vendors, including SASE, SSE, identity governance, and AI-enhanced detection platforms Incorporate emerging trends such as AI/ML for threat detection, secure AI governance, post-quantum cryptography migration planning, and crypto-agility Collaborate with enterprise architects, engineering teams, and stakeholders to embed security into new initiatives, digital transformations, and third-party integrations Develop security standards, patterns, blueprints, and roadmaps aligned with frameworks like NIST, ISO 27001, Zero Trust Maturity Model, and regulatory requirements (e.g., DORA, EU AI Act) Provide guidance on incident response architecture, resilience planning, and recovery strategies Mentor junior security professionals and present architect