Security Architect (100% Remote)
Compensation: $150,000 - $195,000 + 20% Bonus + special equity performance bonus
Location: US or Canada - 100% Remote
Multinational Investment Bank (Top 10 across North America) seeking Security Architect to join their Cyber Security Architecture technology team. The key relevance in professionals for this role should have a strong and diverse background across many domains in cyber security with a focus in API Security, Application Security Architecture, ZeroTrust, DevSecOps; Mobile Security knowledge/experience is a strong plus.
RESPONSIBILITIES:
- Performs vulnerability testing, risk analysis, and security assessments
- Participates in Information Security projects throughout the entire project life cycle
- Providing architectural expertise and domain knowledge to advise and guide senior leaders
- Develop Information Security road-maps
- Serve as subject matter expert to internal/external stakeholders
- Identify opportunities to enhance/strengthen the capabilities of technologies in the organization
- Identifies risk or issues with technology solution and design which could impact realization of project benefits and risk or delay to the projects
- Participate in system specification review process to ensure system requirements can properly translate into valid software architecture
- Design, develop, implement security standards and procedures within the organization
- Stay up to date with current cyber security risk and analyze trends to proactively prevent problems.
- Effectively resolve and follow up on problems as they occur
- Applies expertise and thinks creatively to address unique or ambiguous situations and to find solutions to problems that can be complex and non-routine
- Engage in a lot of highly visible projects, must have excellent organizational skills and time management
QUALIFICATIONS:
- 7-10+ years of relevant experience
- 2+ years of relevant experience in Information Security Risk & Industry best practice
- Bachelor or Master degree in Computer Science or related disciplines
- Strong understanding of API Application Security (RESTful API Security; Oauth 2.0, OIDC 1.0 Connect, etc)
- Experience as an Application Security Architect is a plus
- Knowledge of Zero Trust Architecture principles and best practices
- Knowledge of DevSecOps best practices
- Knowledge of ISO27001, NIST, FFIEC, OSFI, etc
- Excellent verbal, written and interpersonal skills
PREFERRED QUALIFICATIONS:
- CISSP, CISA, CRISC, SABSA, CCSP, CCSK, etc
- Product Management Methodologies and its applicability to successfully deliver technical changes
- Understanding and problem-solving ability of Information Technology across various scale, degree, dimension of complexity - in-depth
- Experience working in a highly complex banking environment