Enterprise Security Architect

For more than 20 years, AEG has played a pivotal role in transforming sports and live entertainment. Annually, we host more than 160 million guests, promote more than 10,000 shows and present more than 22,000 events around the world. We are committed to innovation, artistry, and community, and leverage the power of our 300+ venues, leading sports franchises, marquee music brands, integrated entertainment districts, premier ticketing platform and global sponsorship activations, to create memorable moments that give the world reason to cheer.

Our business is interwoven with the human mind and heart, and we strive to build a diverse and inclusive company that reflects the artists, athletes, and fans that we host; reach beyond traditional boundaries to support the communities in which we operate; and minimize our impact on the environment by adopting sustainable practices throughout our business operations.

If you want to be challenged to up your game and make a difference, then join us in giving the world reason to cheer!

Job Summary

The Enterprise Security Architect (SA) is responsible for designing and implementing secure architectures that align with business objectives and reduce risk, reporting directly to the Chief Information Security Officer (CISO). This role collaborates across functions-including Global Enterprise Services, Infrastructure, Application Development, Legal, Compliance, and Security Operations-to embed security standards into enterprise technology solutions.

Essential Functions

• Secure Architecture Design : Define and maintain enterprise-wide security architecture standards and blueprints across infrastructure, cloud, endpoint, and application layers. Ensure solutions are securely designed and aligned with business goals, regulatory requirements, and the CISO's strategic objectives.
• Solution Reviews and Advisory : Provide expert guidance during solution design and implementation. Lead threat modeling, architecture reviews, and risk assessments as part of technical intake and governance processes.
• Cross-Functional Engagement : Serve as the security subject matter expert within project teams. Partner with Global Enterprise Services, Infrastructure, Application Development, and PMO to ensure secure integration and alignment of technical requirements.
• Security Standards and Frameworks : Develop and maintain reference architectures, secure configuration standards, and solution patterns. Ensure consistency with frameworks such as NIST, PCI-DSS, ISO 27001, and GDPR.
• Cloud and SaaS Security Enablement : Lead secure design of cloud-native and SaaS platforms, including IaaS and PaaS. Collaborate with Cloud Engineering and DevOps to implement secure-by-design deployment practices.
• Innovation and Strategic Foresight : Stay ahead of evolving threats and technology trends. Contribute to the long-term security architecture roadmap by identifying opportunities to improve the organization's security posture.

Required Qualifications

• BA / BS Degree (4-year) Computer Science, Cybersecurity, Engineering, Information Systems, or related field. Master's degree or advanced certifications preferred.
• 10+ years experience in IT and / or cybersecurity, with at least 5 years in a security architecture or engineering role.
• Proven ability to design secure enterprise systems and integrations across on-prem, cloud, and hybrid environments.
• Experience with identity and access management, network segmentation, encryption, logging / monitoring, and secure SDLC.
• Strong understanding of architectural frameworks (SABSA, TOGAF, or similar) and secure design methodologies.
• Experience conducting architecture risk assessments, threat modeling, and security reviews of enterprise systems.
• Expert-level knowledge of security technologies including firewalls, web application firewalls (WAFs), identity and access management (IAM), endpoint protection, cloud-native security controls, and SIEM / SOAR platforms.
• Strong familiarity with modern IT and application architectures, including public cloud platforms (AWS, Azure, GCP), containerization (e.g., Docker, Kubernetes), and DevOps / CI-CD pipelines.
• Proven ability to assess complex technical environments, conduct threat modeling, and deliver actionable risk mitigation strategies.
• Exceptional communication skills, with the ability to clearly articulate technical risks and solutions to both technical and non-technical stakeholders.
• Demonstrated ability to influence and collaborate across Security, IT, Legal, Compliance, and business units in a matrixed environment.
• Proficient in architecture modeling and documentation tools such as Lucidchart, Visio, and Confluence, with an emphasis on clarity and reusability.
• Strategic mindset with a hands-on approach; able to navigate between high-level architectural vision and detailed implementation considerations in fast-paced, evolving environments.
• Relevant certifications such as CISSP, SABSA, CCSP, AWS / Azure Security Certifications, or equivalent highly preferred.

AEG reserves the right to change or modify the employee's job description whether orally or in writing, at any time during the employment relationship. AEG may require an employee to perform duties outside their normal description.

Enterprise Architect • Los Angeles, CA, United States