Principal Security Architect

Description

The Information Security (IS) Principal Architect is a key leader in the Security Architecture team within the Chief information and Security (CISO) Office.

In this role you are expected to be a subject matter expert who, through independent project engagements and collaboration with business and technology partners, as well as third party vendors, designs, reviews, and helps develop the security architecture for the organization. In the security space, this includes, but is not limited to, critical cloud infrastructure components and capabilities such as Shared Responsibility Model, Identity and Access Management, Security Visibility tools such as Splunk, Datadog, Encryption Capabilities and tool sets such as Hashicorp Vault and CyberArk.   

You will also be responsible for helping ensure that security is natively incorporated into the organization’s cloud operating environment and that these environments are sufficiently armored to defend against modern cyber threats and maintain current knowledge of emerging cyber threats, new technologies, compliance requirements, and recommends cyber security enhancements and purchases that allow Citizens Bank to maintain healthy and functional systems. 

Experience and Skills:

• 5 or more years in system, cloud, security administration, controls, or information management experience and/or Security Engineer/Architect/Consultant
• 5 or more years of security architecture experience in Microsoft Azure and/or Amazon AWS. 
• Experience with assessment, development, implementation, optimization, and documentation of a comprehensive and broad set of security technologies and processes (secure software development (Application Security), data protection, cryptography, key management, identity and access management (IAM), network security) within SaaS, IaaS, PaaS, and other cloud environments.
• Working knowledge of common and industry standard cloud-native/cloud-friendly authentication mechanisms (OAuth, OpenID, etc.).
• Experience with service-oriented architecture for cloud-based services.
• Experience working with cloud security and governance tools, cloud access security brokers (CASBs), and server virtualization technologies. Demonstrated ability to think strategically about business, product, and technical challenges.
• Experience with building and maintaining effective relationships with stakeholders, clients, peers, supervisors, subordinates, and other internal company staff
• Experience creating an enterprise architecture (application, data, and technical) that is aligned to business and IT imperatives.
• Familiarity with security industry standards (ISO 17799, ISO 27001/2, ISO 31000, NIST 800 series, etc.)
• Experience with internal controls, risk assessments, business process and internal IT control testing or operational auditing
• Experience in defining and implementing cloud security and solid understanding of best practices
• Influencing experience at senior levels within an organization
• Excellent verbal and written communication skills
• Industry experiences in financial services, high-tech, and /or healthcare preferred

Education and Certifications:

• Bachelor's degree (Degree in Computer Science or Computer Engineering preferred)
• CISSP other relevant security certifications and knowledge of ISO and NIST security standards preferred

Hours & Work Schedule

Hours per Week:  40

Work Schedule:  Monday-Friday 8am-5pm

Some job boards have started using jobseeker-reported data to estimate salary ranges for roles. If you apply and qualify for this role, a recruiter will discuss accurate pay guidance.

Salary : $153,000 - $194,000