The Security Department’s mission is to protect the firm. They secure the investment engine, which manages over $160 billion in assets for global institutional clients, as well as various business operations functions. They are constantly evolving their cyber, physical, and staff security practices to meet the business needs and stay ahead of the changing threat landscape.
The goal of the Security Architecture team is to secure the design and implementation of new technology initiatives at the firm by partnering with technology teams to deliver secure infrastructure, applications and services. The team is composed of security architects, security engineers and security testers. Their mission is critical to the success of the company and is closely aligned to the firs strategic technology initiatives.
What you’d be doing:
The Security Architect ensures system and project level security risks are understood, communicated and appropriate risk mitigation strategies are identified and implemented. They design, build and oversee the implementation of network and computer security for the firm. Security Architects work with application, infrastructure and cloud technology teams to thoroughly comprehend new technology programs. They partner with technology engineering teams to ensure new technology projects are built securely. Their days range from operating day-to-day processes that support secure development and deployment of technology projects to creating and presenting high-level presentations to senior management.
You would love this role….
...If you’re knowledgeable in:
Security technologies and controls
Architecting, engineering or administrating in AWS, Azure or Google (Saas, PaaS, laaS)
Industry standards, risk management methods, and frameworks such as NIST, OW ASP or CIS
Engineering secure systems in cloud first environments, and across hybrid infrastructure.
Participating in or leading teams using Agile (Kanban, Scrum) as well as end-to-end DevOps.
Cyber security threats and vulnerability landscape
...If you’re great at:
Building relationships with application, infrastructure and cloud technology teams to deeply understanding new technology initiatives
Specifically ensuring the secure architecture, design, development, coding and configuration of new technology projects
Performing granular infrastructure, infrastructure as code, application and cloud security reviews
Identifying technology project risks through risk assessments identifying threats, vulnerabilities, impact and likelihood
Communicating to senior management the residual risk from mitigation strategies or risk acceptance
Maintaining a high security bar through architecture and implementation of security controls at both enterprise and project levels
Building strong cross-organizational relationships and effectively influencing the security at the firm
...If you’re able to:
Logically evaluate and prioritize risks
Practically and resourcefully solve problems
Analytically digest any issue/problem encountered and recommend an appropriate solution
Communicate the need for security features and controls while balancing both business and security value
Convincingly articulate vision and strategy for complex and innovative technical undertakings
Calmly and reasonably resolve issues and conflict
Deal with ambiguity and make expert judgments in situations where no precedent exists
You will be a great fit if you:
Thrive in demanding, fast-paced environments that require you to think strategically as well as join your team in the trenches to solve problems.
Are passionate about the importance of security, and want to partner with colleagues who need your expertise.
Enjoy exposure to a breadth technology through involvement in various technology projects.
Have a strong ownership mentality and drive for results.
Value truth, openness, and pursuing excellence.
You should have the following experience:
B.S. or higher in Computer Science or equivalent experience
7+ years of security architecture experience
Demonstrable client-service orientation
Proven track-record of operating with a high degree of confidentiality and responsibility
Excellent verbal and written communication skills including the ability to author and present materials ranging from detailed technical specifications to high-level presentations for consumption by technical/business stakeholders and by senior management
Preferred cloud experience and qualifications: Microsoft, AWS, or Google architecture, development, and operations.