Required qualifications, capabilities, and skills
- Formal training or certification on Cybersecurity Architecture concepts and 5+ years applied experience. In addition, demonstrated coaching and mentoring experience
- Advanced knowledge of cybersecurity architecture/engineering, applications, and technical processes
- Advanced in one or more programming languages such as Java, Python, or C++
- Hands-on practical experience delivering enterprise level planning, design, and implementation of enterprise-level security solutions and controls related to:
- Modern Security Engineering/Architecture practices (microservices, containers, orchestration, continuous integration & delivery pipelines, API first, service delivery & integration)
- Technical Service Delivery - Shipping code & features
- Product technologies (i.e., Infrastructure, Application)
- Secure Software Development Life Cycle (SSDLC) including code review, risk assessments, threat modeling, static code analysis, and dynamic application scanning
- Applicable working experience designing and implementing cloud services (IaaS, PaaS, SaaS, etc.) offered from public cloud service providers such as AWS, Microsoft Azure, or Google Cloud Platform
- Ability to evaluate current and emerging technologies to select or recommend the best solutions for the future state architecture
- Able to communicate effectively and authoritatively with technical and non-technical stakeholders.
Preferred qualifications, capabilities, and skills
- Certification in Public Cloud Technology from one of the major Cloud Service Providers (e.g. AWS Certified Solutions Architect, Microsoft Azure Architect, Google Cloud Architect)
- Experience in financial services consumer businesses (i.e., Mortgages, Cards or Digital) preferred but not required
- Banking experience preferred but experience in industries with similar risk tolerance is acceptable