AVP, Security Architect

LPL Financial•Charlotte, NC

About The Position

At LPL Financial, we empower professionals to shape their success while helping clients pursue their financial goals with confidence. What if you could have access to cutting-edge resources, a collaborative environment, and the freedom to make an impact? If you're ready to take the next step, discover what’s possible with LPL Financial. Job Overview: LPL's Information Security team is seeking an exceptional AVP, Security Architect to engage on project efforts in M&As, Data, Cloud, and On-prem security architectures. As the AVP Security Architect at LPL, you will work side by side with our Development, Operations, Business units, and Enterprise Architecture teams to ensure our environments are secured and monitored. The right person for this role will have a broad technical security background with a focus on security design, detection, prevention, and response to security threats.

Requirements

10+ years’ experience in information security and IT risk management
7+ years of experience in a technical infrastructure or systems role prior to security experience within the data, networking and/or system administration discipline
2+ years’ experience working on M&A integrations.
8+ years of experience working knowledge of information security controls, guidelines, and standards (e.g., ISO27000 series, OWASP, CSA CCM, CIS 20 Critical Security Controls, SOX, and NIST).
Must be self-driven, yet flexible and highly adept at consulting, negotiating, communicating, consensus building, and presenting.
Ability to remain calm under pressure while managing multiple tasks.
Demonstrated ability to learn from mistakes and apply constructive feedback to improve performance.

Nice To Haves

CCSP/Other Cloud Specific Certification, CISSP and/or GIAC are a plus
In-depth knowledge of AWS and its core services, including EC2, S3, IAM, VPC, and security-related services like security groups, ACLs AWS Security Hub, AWS WAF.
Working knowledge of Terraform, Cloud Formation, Pulumi, and/or Ansible.
Solid experience securing scalable web architectures and distributed systems.
Solid understanding of malware, emerging threats, attacks, and vulnerability management.

Responsibilities

Supports efforts to mature network, infrastructure and data security capabilities for LPL Financial
Serves as a subject matter expert, providing guidance on industry best practices.
Server as a subject matter expert, supporting M&A integrations and secure design and solution implementation.
Creates best-of-class infrastructure/data security architecture designs and patterns for LPL, using defensible industry reference architectures and standards.
Collaborate with Data and Enterprise Architects on securing data with advanced methods such as masking and tokenization. Considering the pros & cons of each security control.
Document, socialize, maintain, and train key stakeholders on security requirements that enables secure design and build of solutions.
Identify cybersecurity issues, strengths and weaknesses across various cyber domains and partner organizations that introduce risk and provide solutions.
Develops, reviews, and approves cybersecurity security standards and works with partner cyber domain teams and organization to align on security requirements, while tracking and validating controls are being met
Participate in and drive security advisory boards and committees, providing security architecture review and process ownership for new and existing solutions.
Analyze potential impact of new threats and exploits, develop, and implement solutions to mitigate those threats, and communicate risks to relevant business units.
Other duties as required.