As a Cybersecurity Architect at CarMax’s Security Architecture Team, you will serve as a critical leader in protecting customer and business information while enabling secure innovation. Your day-to-day responsibilities include providing cybersecurity advisory services for system design and implementation, leading the selection and deployment of security tools, and conducting assessments using standards like NIST CSF and OWASP. You will also mentor associates on cybersecurity practices and collaborate with Enterprise Architecture to attract and develop talent. The role requires expertise in designing complex systems across various domains, understanding operational lifecycles, and knowledge of frameworks such as NIST, ISO-27001/2, and MITRE ATT&CK. Preferred qualifications include experience with cloud security in Azure or AWS and modernizing enterprise environments. This position is based in Richmond, VA, requiring on-site presence 4 days a week.
Skills
NIST
OWASP
ISO-27001
PCI
ITGCs
HIPAA
CISSP
CISM
AWS
Azure
SANS
Mitre ATT&CK
COBIT
ITIL
Cloud Security
Cybersecurity Architecture
Security Assessments
System Development Lifecycle
Enterprise Architecture
What you'll do
Lead cybersecurity architecture decisions and document standards for enterprise initiatives.
Embed cybersecurity controls in system development lifecycle across cloud and on-prem environments.
Perform cybersecurity assessments using industry standards like NIST CSF, OWASP, ISO.
Mentor associates on cybersecurity practices, standards, and concepts within the organization.
Influence cybersecurity direction through collaboration and consensus building with teams.
What we're looking for
At least 10 years of technology experience with a focus on cybersecurity or application security
Bachelor’s degree in Computer Science, Cybersecurity, or related field, or equivalent experience
In-depth knowledge of cybersecurity frameworks and standards (NIST, OWASP, ISO)
Experience designing complex systems across multiple domains with cybersecurity considerations
Ability to mentor others in producing engineering and architecture artifacts
Strong partnership and collaboration skills with Enterprise Architecture teams
Market check
Salary context
This listing doesn't show a salary. Similar roles on FindRole typically pay
$113,400–$198,000.
Peer median band
$113,400–$198,000
Median floor and ceiling across peers.
Typical midpoint (25–75%)
$142,125–$184,975
Middle half of comparable postings.
Based on 239 comparable postings.*
* 240 is the maximum number of comparable postings sampled.
Employer
About Carmax
CarMax is the largest used car retailer in the United States, offering a customer-friendly, no-haggle buying experience with a broad selection of quality used vehicles, financing, and vehicle protection plans. Industry: Automotive Retail
SIEM
SOAR
CI/CD
Zero Trust Architecture
AI
ML
Cloud-based security
NIST SP800-37
NIST SP800-53
NIST SP800-207
RMF
DoD Zero Trust Reference Architecture
Agile
ITIL
SELCS
SIEM
SOAR
CI/CD
Zero Trust Architecture
AI
ML
Cloud-based security
NIST SP800-37
NIST SP800-53
NIST SP800-207
RMF
DoD Zero Trust Reference Architecture
Agile
ITIL
SELCS