Advanced Defensive Architect

About The Position

Requirements

• 5 years or more experience in Security Architecture, with at least 1 year in artificial intelligence and automation.
• Extensive experience translating requirements into security controls.
• Extensive experience performing security architecture analysis.
• Extensive experience in evaluating system designs for cyber risk and compliance with control frameworks and principles.
• Proven ability to successfully work remotely, travel when needed, and operate across multiple geographic time zones.
• Extensive experience designing, network architecture aligned to security principles and control frameworks.
• Experience with on-premises, colocation centers and cloud environments.
• Experience with app migrations from on-premises data centers to cloud platforms.
• Experience leveraging Cloud Security Posture Management (CSPM) and visibility tools.
• Experience with payment systems or classified network architecture.
• Experience in implementing network segmentation.
• Experience in coordinating efforts between stakeholders.
• Experience in presenting to executive (e.g., C-Suite) audiences.
• Knowledge of cyber security threat actors particularly their tactics, techniques, procedures, tradecraft, and noteworthy attacks.
• Knowledge of cybersecurity principles and practices, including defense in depth.
• Knowledge of computer network protocols.
• Knowledge of risk management processes.
• Knowledge of cybersecurity law, regulations, and industry best practices.
• Knowledge of system design tools and techniques.
• Knowledge of server administration and principles and practices.
• Knowledge of software engineering principles and practices.
• Knowledge of enterprise information technology (IT) architecture principles, practices and reference models.
• Knowledge of systems engineering processes, principles and practices.
• Knowledge of hardware and software reverse engineering tools and techniques.
• Knowledge of secure software development, deployment, and maintenance.
• Bachelor’s Degree in computer science, cybersecurity, information technology, software engineering, information systems, or computer engineering.
• Security Architecture Certification (e.g., SABSA, ISSAP, Microsoft Cybersecurity Architect Expert, AWS Security Specialty).

Nice To Haves

• Master’s Degree in computer science, cybersecurity, information technology, software engineering, information systems, or computer engineering
• Experience working with information security teams such as fusion centers, security operations centers, vulnerability assessment, vulnerability threat management, security incident management, cyber “hunt,” and big data analysis.
• Experience working with law enforcement agencies and external audit organizations for investigations, audits, and similar activities.
• Self-starter, self-motivated, and able to work independently with little oversight while managing a large, globally distributed team.
• Highly polished presentation skills, with the ability to simply and convincingly present technical issues to non-technical audiences.
• Able to develop and operate within a set financial budget.

Responsibilities

• Executing the vision, strategy, and mission of the Advanced Defensive Architecture organization.
• Reduce State Street security risks by integrating controls aligned with the State Street’s goals and objectives into security architecture.
• Understand and prioritize essential system capabilities, and business functions that must be achieved by a system.
• Determine baseline system security requirements aligned to the criticality of the network environments and applications.
• Develop cybersecurity designs for systems and networks with multilevel security requirements, and that process multiple data classification levels.
• Support the Managing Director to understand, manage and reduce information security risks on behalf of executive leadership.
• Integrate cybersecurity requirements into comprehensive designs, policies and plans for systems and networks.
• Define acquisition life cycle cybersecurity architecture requirements and security engineering requirements.
• Determine if systems and architecture are consistent with cybersecurity architecture guidelines.
• Perform security reviews of the firm’s most critical network environments and applications.
• Identify gaps in security architecture of the firm’s most critical network environments and applications.
• Develop a prioritized cybersecurity risk management plan for the firm’s most critical network environments and applications.
• Determine and document the impact of new systems, software, and integrations on the system’s cybersecurity posture.
• Create system security architecture documentation, plans, and projects.
• Identify metrics and use these metrics to determine cybersecurity design and architecture effectiveness.

Benefits

• retirement savings plan (401K) with company match
• insurance coverage including basic life, medical, dental, vision, long-term disability, and other optional additional coverages
• paid-time off including vacation, sick leave, short term disability, and family care responsibilities
• access to our Employee Assistance Program
• incentive compensation including eligibility for annual performance-based awards
• eligibility for certain tax advantaged savings plans
• inclusive development opportunities
• flexible work-life support
• paid volunteer days
• vibrant employee networks