Vacancy expired!
Your Opportunity
We believe that, when done right, investing liberates people to create their own destiny. We are driven by our purpose to champion every client's goals with passion and integrity. We respect and appreciate the diversity of our employees, our clients, and the communities we serve. We challenge conventions strategically to create value for our clients, our firm and the world. We live and bring to life the concept of 'own your tomorrow' every day. We champion our employee strengths, guide their development, and invest in their long-term success. We hire optimistic, results-oriented, curious, innovative, and adaptable people with the desire to help our clients and one another succeed.As a company, we were established by Chuck over 40 years ago to champion Main Street over Wall Street, and to help Americans transform themselves from earners to owners. Through advocacy and innovation, we work to make investing more affordable, accessible and understandable for all. As we enter our fifth decade, we are looking for hardworking, innovative and driven people who believe they can help themselves, and our clients, create a better future.The Schwab Principal Security Developer of Technology Architecture Governance Risk (TAGR) is responsible for providing leadership in the identification, assessment, treatment and continuous monitoring of technology risks that arise within Schwab's technology architecture governance and network design/security landscape. This is a key role in assuring that architecture governance-related risks are effectively managed; Schwab client information is protected, and our client's trust is maintained. Success in this role will require ability to lead collaborative efforts among internal and external stakeholders across multiple functions combined with strong expertise in risk management discipline and technology controls best practices. This is an individual contributor role. What you are good at The Principal Security Developer of Technology Architecture Governance Risk will be responsible for the following duties:• Lead improvement projects to facilitate innovation, team productivity, and enhanced technology architecture governance and network design/security risk practices, processes and procedures• Lead the development and execution of standardized processes to continually analyze emerging technology risks and synthesize into "emerging risk advisories" that are then integrated into Firm-wide processes• Oversee first line of defense execution of technology architecture governance and network design/security processes and establish practices to measure and monitor control design effectiveness on an on-going basis• Assist the Managing Director, Technology Architecture Governance in ensuring the Technology Architecture Governance Risk strategy reflects business and regulatory drivers without affecting operational efficiency• Develop and deliver executive-level reporting and presentations outlining technology architecture governance and status of defined action plans• Lead and manage TAGR team-focused continuous improvements including enhancement to risk assessment processes, leadership reporting activities, development and maintenance of online information portals, and audit and/or regulatory projects• Contribute to the creation and ongoing development of technology architecture governance and network design/security key risk indicators metrics• Improve and maintain technology governance-related risk assessment maturity through the development of standard processes, procedures, and work instructions• Advocate and promote awareness of technology architecture and network design/security risks among business and technical partners • Perform proactive management of findings by working with appropriate teams to develop remediation action plans, track progress, and facilitate risk treatment actions (exception or risk acceptance)• Mentor TAGR team members in developing their knowledge and command of technology and security architecture best practices and risk management discipline• Lead the evaluation of new and proposed updates to existing Schwab policies, standards, and procedures to reflect Technology Architecture Governance Risk considerations and requirements, as appropriate• Review, oversee and propose modification or addition as required to RCSA controls applicable to Technology Architecture Governance Risk• Lead cross-functional, cooperative efforts among members of technology architecture and network design/security project teams and build relationships with key contacts outside own area of expertise• Assist in the management of responses to Technology Architecture Governance Risk-related audit and regulatory inquiries• Assist in the management of responses to Technology Architecture Governance Risk-related inquiries from Charles Schwab leadership, businesses, subsidiaries, teams, and partners• Additional projects and tasks may be included based on business needs and the regulatory environmentOther duties include:• Build strong relationships and partner closely with business and technology partners across Charles Schwab Corporation and its affiliates• Develop internal processes and tools to increase team efficiencies and continually mature operations• May travel minimally as part of training and ongoing program developments and improvements What you have • 10+ years in Information Security, Risk Management, or Information Technology disciplines• Strong network architecture domain expertise (e.g., WAN/LAN/WLAN, routing and switching hardware and software, network device configuration, network protocols); hands-on/operations experience preferred• Strong network security domain expertise (e.g., Firewalls, Secure Proxies, Content Filtering, IDS/IPS, VPN, WAF, NAC, DLP, DDoS Mitigation, Vulnerability Management, Penetration Testing, SIEM, Cloud Access Security Brokers, Cryptography); hands-on/operations experience preferred• Familiarity with network segmentation models/approaches (e.g., zones of trust, software defined networking, zero-trust networking, etc.)• Experience performing security risk assessment/analysis and developing, contributing to, and managing security architecture specifications, reference architectures, data flow diagrams and threat models• Experience working cross-functionally to oversee technology governance processes and procedures that assure approved technology solutions adhere to Schwab technology and security policies and standards, reference architectures/architectural design principles and other required internal/external (e.g., audit & regulatory) standards.• Superior attention to detail and focus on quality work delivery• Expertise in information security best practices and technology risk management discipline• Working knowledge of and experience with cloud computing technologies and best practices• Working knowledge of software development practices and technologies, Agile, DevOps and CI/CD• Experience in developing performance or risk metrics, and executive dashboards• Excellent analytical & technical skills, able to research problems, diving deeply when necessary, to determine root causes and solutions• Must be a self-starter and able to work independently, as part of a team, and lead working groups as required• Work ethic based on a strong desire to exceed expectations. • Ability to work successfully in a very fast-paced, results-oriented environment. Requires excellent time management skills, ability to appropriately prioritize multiple, competing demands.• Ability to translate business needs into business requirements, and then implement• Understanding of applicable regulatory requirements/laws such as GDPR, PCI, FFIEC, GLBA, SOX, etc.• Ability to effectively communicate with technical and executive audiences, both oral and written is required• Experience interfacing with auditors in support of audits and external regulatory exam processes is required• Experience in gathering requirements, documenting and assessing information for implementing information security controls is required• Strong interpersonal, analytical, problem-solving, influencing, prioritization, decision-making and conflict resolution skills• Bachelor's Degree in Computer Science or related discipline• Master's degree preferred• Previous experience in development of processes and procedures; Six Sigma Greenbelt or Blackbelt certification preferred• Familiarity with frameworks such as ITIL, NIST and COBIT preferred• Industry certifications such as CISSP, CCNA, CISM, CISA, or CRISC Why Schwab?At Schwab, "Own Your Tomorrow" embodies everything we do! We are committed to helping our employees unleash their potential and achieve their dreams. Our employees get to play a central role in disrupting a multi-trillion-dollar industry, creating a better, more modern way to build and manage wealth. We're a modern financial services firm that stands apart from the industry, where you can go as far as your ambition takes you.Hear from employees: What's it like to work at Schwab! (https://www.youtube.com/playlist?list=PLctx2TLOKMwZnPckh7rG7OgcEzFCGeDob)The benefits of working at Schwab (https://content.schwab.com/web/retail/public/about-schwab/charlesschwabrecruitmentguide2019.pdf): a package designed to empower your health, wealth, career and life.Schwab is committed to building a diverse and inclusive workplace where everyone feels valued.As an equal employment opportunity employer, our policy is to provide equal employment opportunities to all employees and applicants without regard to any status that is protected by law. (Please click here to see policy.) (https://www.aboutschwab.com/EEO)Schwab is also an affirmative action employer, focused on advancing women, minorities, veterans, and individuals with disabilities in the workplace.We believe diversity and inclusion are part of our success as a company and our purpose of serving every client with passion and integrity.Vacancy expired!