Director, Enterprise Security Architect

Reporting Location:  Azambuja - Vila Nova da Rainha
Workplace Type:  Hybrid

About Us

HAVI is a global, privately owned company that connects people with ideas, data with insights, supply with demand, restaurants with deliveries, and ultimately, people with the products they love. Whether sourcing, storing, or delivering products, we bring unmatched category expertise and unrivaled operational excellence combined with powerful digital analytics and insights. Founded in 1974, HAVI employs over 10,000 people and serves customers in more than 100 countries. HAVI’s business units include Supply Chain, tms, and Stanley 1913. Our portfolio of businesses offers best-in-class sourcing and supply chain capabilities, brand-defining marketing and promotion services, and innovative consumer products.
Why Work Here?

At HAVI, we are proud to make moments that matter every day for our People and our Customers.  We do this through living the HAVI values:

  • Do What’s Right
  • Respect and Value All
  • Think Big Together
  • Elevate our Customers and our People

Recognizing we have a responsibility to act and an opportunity to inspire a better future for people, the community, and the planet, social and environmental responsibility is at the heart of everything we do.   You’ll hear us refer to our “Better Future Blueprint” and see us driving responsible operations and advancing sustainable solutions.
Whether we’re running a beach clean-up, exploring hidden stories from under-represented voices, or helping our very own colleagues through times of crisis, you’ll see our amazing people bring these values to life every day.
We support our people with competitive pay, benefits, and flexibility, and strongly emphasize a growth mindset for achieving personal and career growth while at HAVI.


Home | HAVI


We are seeking a highly skilled Enterprise Security Architect with deep technical expertise in identity, security, and infrastructure architecture to join our dynamic Enterprise Architecture team.

If you are passionate about designing innovative solutions that address the complex challenges of identity, security, and infrastructure architecture, we want to hear from you!

In this role, you will be responsible for designing and overseeing the implementation of secure, scalable, and efficient solutions that meet the complex requirements of our business. You will work closely with the cyber security and infrastructure teams to architect future state identity and access management solutions that leverage best practices in identity management, cybersecurity, and infrastructure design.

This role will report to the Vice President, Global Enterprise Architecture.



Bachelor's degree in Computer Science, Information Security, Information Technology, or related field; Master's degree preferred


Knowledge & Years of Experience:

  • Proven 15+ years’ experience as a Security Architect or Infrastructure Architect or Technical Architect or similar architecture roles, with a focus on identity, security, and infrastructure architecture.
  • 3 years minimum technical architecture experience to include integrating identity management, access management and governance solutions into client infrastructure and applications.
  • Deep understanding of IAM concepts, including authentication, authorization, directory services, identity federation, and identity lifecycle management.
  • Familiarity with Zero Trust principles, such as least privilege access, micro-segmentation, continuous authentication, and dynamic trust assessment.
  • Experience with directory services, including Microsoft Active Directory, LDAP, and Azure Active Directory/EntraID.
  • Knowledge of authentication technologies, such as multi-factor authentication (MFA), single sign-on (SSO), OAuth, OpenID Connect, and SAML.
  • Proficiency in integrating identity solutions with cloud identity providers, such as Azure AD, AWS IAM, Google Cloud Identity, and Okta.
  • Understanding of security standards and compliance requirements, such as NIST SP 800-207, ISO/IEC 27001, GDPR, and PCI DSS.
  • Excellent communication and interpersonal skills, with the ability to articulate complex technical concepts to both technical and non-technical audiences.
  • Strong analytical and problem-solving abilities, with a keen attention to detail.
  • Relevant certifications (e.g., CISSP, CIAM, etc.) are a plus.


  • Excellent presentation, communication skills, with the ability to partner and influence effectively across business and technical stakeholders.
  • Ability to lead design thinking, strategy definition, and architecture workshops.


Primary Accountabilities / Position’s Scopes & Responsibilities


  • Lead the development and implementation of future state identity and access management (IAM) strategic architecture, focusing on modernizing legacy systems and adopting innovative technologies to enhance security, scalability, and user experience.
  • Assess current identity and access management (IAM) systems, policies, and processes to identify gaps and opportunities for implementing Zero Trust principles.
  • Design and develop comprehensive Zero Trust identity architecture and strategies that enforce strict access controls, continuous authentication, and least privilege principles.
  • Collaborate with security, infrastructure, and business stakeholders to define strategic objectives and roadmaps for IAM transformation initiatives, aligning with business goals and industry best practices.
  • Architect and implement solutions for enterprise identity lifecycle management, identity federation, and attribute-based access control (ABAC) across heterogeneous environments.
  • Design and implement strategies to simplify and streamline a complex Microsoft Active Directory (AD) ecosystem, including consolidation of local identity stores, migration to cloud-based directory services, and integration with IAM platforms.
  • Develop and maintain comprehensive documentation, standards, and policies for IAM architecture, ensuring adherence to regulatory requirements and industry standards (e.g., NIST, ISO, GDPR).
  • Provide thought leadership and technical expertise in IAM and cybersecurity domains, serving as a trusted advisor to internal teams and clients.
  • Develop comprehensive security architectures that encompass network, application, and data security principles.
  • Evaluate and recommend emerging technologies and best practices to enhance security posture and infrastructure scalability.
  • Provide technical guidance and mentorship to internal teams and stakeholders on identity, security, and infrastructure-related matters.
  • Stay abreast of emerging trends, technologies, and threats in IAM and cybersecurity landscapes, incorporating them into strategic planning and solution design to ensure compliance and mitigate risks.
  • Collaborate with Infrastructure and Security teams to design and implement right-sized security controls

Other Abilities:

  • Builds trust and credibility through active building of relationships.
  • Inspires and supports others to challenge the status quo, think out of the box.
  • Experience and comfort in open communication and collaboration with others while working in a diverse, team-focused environment that reaches across functional and geographic borders.
  • Demonstrates excellent written, oral, and organizational skills.




We are an equal opportunity employer and we value diversity at our company. We do not discriminate on the basis of race, religion, color, national origin, sex, gender, gender expression, sexual orientation, age, marital status, veteran status, or disability status. We will ensure that individuals with disabilities are provided reasonable accommodation to participate in the job application or interview process, to perform essential job functions, and to receive other benefits and privileges of employment. Please contact us to request accommodation.