Architect IT Security

At Academy Sports + Outdoors our vision is to be the best sports + outdoors retailer in the country — but what truly sets us apart is our people. We’re a passionate, purpose-driven team that’s as committed to each other as we are to our customers.

We’ve spent over 80 years building a culture that puts people first. We believe in creating opportunities for growth, fostering meaningful connections, and supporting every Team Member’s journey. What fuels us? Our belief in the power of fun.

Here, you won’t just help customers gear up for their next adventure — you’ll launch one of your own. Whether you're starting out or leveling up, Academy is a place where fun can’t lose!  

• Minimum 8–10 years of progressive experience in IT and cybersecurity, with at least 3–5 years in a security architecture role.
• Experience designing and implementing security solutions in retail environments (POS, e-commerce, supply chain, data centers).
• Proven track record of leading security initiatives aligned to regulatory standards such as PCI-DSS, SOX, and data privacy regulations.

• Strong knowledge of security frameworks: National Institute of Standards and Technology Cybersecurity Framework (NIST CSF), ISO 27001, and Zero-Trust models.
• Expertise in network, cloud (Amazon Web Services, Azure, Google Cloud Platform), application, and identity security.
• Proficiency in security technologies: firewalls, Security Information and Event Management (SIEM), Data Loss Prevention (DLP), Identity & Access Management / Privileged Access Management (IAM/PAM), encryption, and Network Access Control (NAC).
• Ability to translate complex technical concepts into business language for leadership.
• Strong collaboration and communication skills across IT, business, and compliance teams.

• →Define, design, and maintain the enterprise security architecture to support business and compliance needs.
• →Lead the implementation of defense-in-depth strategies across retail, corporate, and cloud environments.
• →Collaborate with IT, Legal, and Compliance teams to ensure adherence to PCI-DSS, SOX, and privacy regulations.
• →Evaluate emerging technologies and recommend solutions to reduce risk and enhance resilience.
• →Provide security design input on new applications, infrastructure, and vendor solutions.
• →Develop security reference architectures, standards, and playbooks for enterprise use.
• →Serve as a technical advisor during incident response and forensic investigations.

• Acceptable level of hearing and vision to perform job duties
• Adhere to company work hours, policies, procedures and rules governing professional staff behavior
• May require extended hours during security incidents, audits, or critical project phases.
• Regular office attendance is required.

Academy is an Equal Opportunity Employer and does not discriminate with regard to employment opportunities or practices on the basis of race, religion, national origin, sex, age, disability, gender identity, sexual orientation, or any other category protected by law.​