Principal Enterprise Security Architect

Position Overview Papa Johns is seeking a Principal Enterprise Security Architect to establish and evolve the cybersecurity architecture control plane across the enterprise. This role is responsible for aiding in defining enterprise security strategy, reference architectures, and design authority, enabling secure, scalable technology adoption and consistent integration of security controls across business, IT, cloud, and third-party environments. The ideal candidate will operate as a trusted advisor to senior leadership, bringing deep technical expertise, strong business acumen, and the ability to influence decisions that shape the organization's security posture and technology direction. Responsibilities The primary responsibilities of this role include: Defining and evolving the enterprise security architecture strategy and roadmap, aligned to business and technology priorities Establishing and enforcing security design authority across enterprise initiatives and technology decisions Developing and maintaining reference architectures, design patterns, and security standards Integrating risk, threat intelligence, and business context into architectural decisions Identifying systemic risks and architectural gaps across environments and platforms Ensuring security architecture aligns to data protection, critical assets, and exposure risk Partnering with Engineering, Technology, and Business teams to ensure secure design and control integration across systems while meeting business needs Defining requirements for identity, access, logging, monitoring, and resilience within system architectures Driving adoption of modern security principles, including Zero Trust and secure-by-design practices Providing strategic guidance on security architecture considerations for new technologies, platforms, and business initiatives Advising senior leadership on areas for security investment, optimization, and potential divestment, based on risk, effectiveness, and scalability Influencing enterprise technology decisions to ensure alignment with long-term security strategy Ensuring security architecture evolves based on emerging threats, incidents, and technology trends Supporting security testing and validation by defining architectural requirements for assurance and resilience Qualifications The successful candidate will possess the following: Extensive experience in enterprise security architecture or related cybersecurity roles Demonstrated experience operating at a Principal or equivalent level, influencing senior leadership and enterprise strategy Deep understanding of security architecture domains (identity, network, cloud, application, data protection, and detection) Proven ability to develop and drive adoption of enterprise-wide security strategies and architectures Experience translating complex technical and threat concepts into business-relevant decisions Demonstrated thought leadership in emerging technologies, security patterns, and industry trends Strong ability to influence without authority across engineering, IT, and business leadership E xperience advising on technology investments and tradeoffs, including where to invest, optimize, or reduce Excellent communication skills with the ability to engage effectively with SVP/VP-level stakeholders Day in the Life This role is less about designing individual solutions and more about shaping how security is designed across the enterprise.

A typical day may include:

Meeting with senior technology and business leaders to advise on security implications of strategic initiatives and technology decisions Reviewing major architecture proposals to ensure alignment with enterprise security principles and long-term strategy Partnering with engineering teams to guide secure design decisions and resolve complex architectural tradeoffs Evaluating emerging technologies or platforms to determine security risks, architectural fit, and recommended approach Identifying patterns of risk or inconsistency across environments and defining architectural solutions to address them at scale Advising leadership on where to invest in new capabilities, optimize existing controls, or divest from ineffective solutions Mentoring and guiding architects and engineers to elevate security thinking, design quality, and consistency across the organization Refining reference architectures and standards to ensure consistency, scalability, and alignment with evolving threats Representing the organization in strategic discussions, providing credible, authoritative guidance on security architecture Work Environment This is a highly influential role operating across a complex, evolving enterprise environment. Success requires the ability to think strategically, influence broadly, and guide decisions that shape the organization's long-term security posture and technology direction. Our Values

EVERYONE BELONGS

•We believe connectedness and belonging are the essential ingredients to our success.

DO THE RIGHT THING

•We are relentlessly focused on quality and integrity and make the right choices, even when it's difficult.

PEOPLE FIRST

•To craft positive experiences for our customers, we take care of each other first.

INNOVATE TO WIN

•We champion and challenge for a better way in all we do.

HAVE FUN

•We find joy, create meaningful impact and celebrate the journey together Our Core Competencies

EVERYONE BELONGS

•We believe connectedness and belonging are the essential ingredients to our success.

DO THE RIGHT THING

•We are relentlessly focused on quality and integrity and make the right choices, even when it's difficult.

PEOPLE FIRST

•To craft positive experiences for our customers, we take care of each other first.

INNOVATE TO WIN

•We champion and challenge for a better way in all we do.

HAVE FUN

•We find joy, create meaningful impact and celebrate the journey together Papa Johns is an equal opportunity employer. Papa Johns is a federal contractor that participates in the E-Verify program to confirm employment eligibility for each new team member. We also comply with all Right to Work requirements. Official E-Verify and Right to Work notices are available for applicants to review in both English and Spanish.