GVP, Security Infrastructure, Engineering and Operations

About The Position

Requirements

• Proven senior leadership experience leading or significantly scaling security architecture and infrastructure engineering at scale in complex, global organizations.
• Deep expertise in secure architecture design, cloud security engineering, infrastructure hardening, and zero-trust principles for hybrid environments.
• Proven ability to embed security into infrastructure automation and DevOps practices, leveraging policy-as-code and automated guardrails for scalability.
• Strong understanding of regulatory and industry frameworks (e.g., SOX IT controls, PCI DSS, SWIFT, privacy and data protection requirements, or similar standards) and experience driving compliance in architecture and infrastructure contexts.
• Proven ability to partner effectively with senior leaders across cybersecurity, internal audit, legal and privacy, enterprise risk management, technology, product, and business functions.
• Experience leading and developing teams or functions in global, matrixed environments, with a focus on accountability, execution discipline, and talent development.
• Demonstrated ability to translate complex technical architecture concepts into actionable strategies for executive leadership and governance forums, ensuring alignment between security design principles and business objectives.

Nice To Haves

• Advanced degree and/or relevant professional certifications preferred (e.g., SABSA, TOGAF, CISSP, CCSP, CISM, or comparable credentials).

Responsibilities

• Own the enterprise security architecture strategy, maintaining and enhancing principles, patterns, and reference models for cloud, network, endpoint, and hybrid environments.
• Maintain and govern security architecture standards, ensuring secure-by-design principles are embedded in technology roadmaps, solution designs, and transformation programs.
• Lead infrastructure security engineering, including hardening of compute, storage, network, and virtualization layers; secure landing zones for cloud platforms; and endpoint security baselines.
• Drive adoption of zero-trust architecture, enabling identity-centric security models, network segmentation, and advanced access controls across enterprise and consumer-facing environments.
• Integrate security into infrastructure automation and DevOps workflows, embedding guardrails and policy-as-code into CI/CD pipelines and infrastructure-as-code deployments.
• Oversee resilience and observability strategies, ensuring security telemetry, monitoring, and incident response readiness for critical services and workloads.
• Define secure patterns and reusable configurations for cloud, container, and network deployments, enabling consistent adoption across global teams.
• Ensure compliance alignment for architecture and infrastructure controls with regulatory and industry frameworks (e.g., SOX IT, PCI DSS, ISO 27001, SWIFT), supporting audits and client security reviews.
• Provide executive-level reporting on architecture risk posture, resilience metrics, and adoption of secure design principles to senior leadership and governance bodies.
• Build and scale a high-performing global team, fostering technical excellence, accountability, and a culture of partnership with technology and product organizations.
• Serve as a thought leader and trusted advisor, monitoring emerging technologies and threats, influencing enterprise strategy, and representing the organization in industry forums.

Benefits

• health insurance coverage
• an employee wellness program
• life and disability insurance
• a retirement savings plan
• paid holidays and sick time and vacation