Vacancy expired!
- Competitive compensation, including base pay and annual incentive
- Comprehensive health and life insurance and well-being benefits, based on location
- Retirement benefits
- Paid Time Off and other leave of absence
- Flexible/Hybrid Work Arrangements
- Produce security architecture deliverables as part of initiatives related to cloud, endpoint, and networking
- Partner with IT teams to design and deliver architectures to deliver on the zero-trust vision
- Proactively identify security gaps, propose solutions, and follow through with engineering teams for implementation
- Inspire team members and more junior staff to contribute new ideas and alternative approaches to problems
- Develops and maintains a security architecture process that enables the enterprise to develop and implement security solutions and capabilities that are clearly aligned with business, technology, and threat drivers
- Influence change of control policies with Technology Risk Management & build strong partnerships with IT Architecture & Application Development partners
- Create IT security standards easily consumed by IT stakeholders
- Build access management security patterns (standardizing authentication/authorization flows, single-sign-on/MFA, provisioning, user behavior analytics, access governance system controls, privileged/secrets mgt) and designs as part of initiatives to modernize the DTCC access management security posture
- Evaluate the existing application security controls, on-premises and cloud, identify improvements, and build plans into the application security capability roadmap for implementation
- Mentor junior security architects to enhance their security and architecture skills within the team
- Maintain professional and technical process knowledge by keeping abreast of the changing security landscape within the technology industry and changes in cybersecurity frameworks
- Create white papers and present in industry conferences to present thought leadership in the security field
- Aligns risk and control processes into day-to-day responsibilities to monitor and mitigate risk; escalates appropriately
- 8-10 years of related experience
- Master's degree preferred
- Strong Cybersecurity experience across network, application (web, API) & public/private cloud security architecture (web application firewalls, containers, etc)
- Experience in AWS/Azure cloud and DevOps including orchestration
- Experience with zero trust architectures and concepts
- Experience in architecting IAM sub-capabilities (authentication/authorization, user behavior analytics, provisioning)
- Strong experience in identifying access management control gaps
- Understanding of core cryptography concepts including PKI
- Experience with Information Security frameworks (e.g. ISO 27001 and NIST) & security architecture frameworks
- Experience architecting automated data center processes, including provisioning, application, patch management, monitoring and alerting, capacity monitoring and planning, leveraging execution and human approval workflow design and implementation
- Experience in OS security (Windows, Linux) and RDMS
- Has strong communication skills with the ability to present in front of large audience
Vacancy expired!