Lead Cybersecurity Architect

About The Position

Requirements

• Formal training or certification on cybersecurity architecture concepts and 5+ years applied experience
• Hands-on practical experience delivering enterprise-level cybersecurity solutions and controls
• Advanced proficiency in one or more programming languages, including Python
• Proficiency in all aspects of the software development lifecycle, including automation, continuous delivery methods, and CI/CD pipeline security integration, with the ability to embed security at each phase
• Advanced understanding of agile methodologies, application resiliency, and security principles
• Demonstrated proficiency in software applications and technical processes within a technical discipline such as public cloud, artificial intelligence, or machine learning, with practical cloud-native experience and the ability to evaluate and recommend solutions for future-state architecture
• Experience effectively communicating complex security concepts to senior business leaders and non-technical stakeholders
• Demonstrated experience using enterprise-authorized AI capabilities within the work environment to support cybersecurity architecture workflows with strong validation habits and awareness of data sensitivity
• Ability to assess and validate AI-assisted security recommendations before adoption, escalating uncertainty and ensuring outcomes align to security, resiliency, and auditability expectations

Nice To Haves

• In-depth knowledge of the financial services industry and its technology systems and regulatory landscape
• Deep knowledge of one or more software platforms or applications within a large-scale enterprise environment
• Industry certifications such as CISSP, SABSA, or equivalent cybersecurity architecture credentials
• Familiarity with financial services compliance frameworks such as NIST, SOC 2, or PCI-DSS
• Experience with zero-trust architecture principles and their practical application in hybrid or multi-cloud environments

Responsibilities

• Engage technical teams and business stakeholders to discuss and propose technical approaches that meet current and future cybersecurity needs
• Define the technical target state of cybersecurity products and drive achievement of the overall security strategy
• Identify opportunities to eliminate or automate remediation of recurring issues to improve the overall cybersecurity posture of software applications and systems
• Lead evaluation sessions with external vendors, startups, and internal teams to assess cybersecurity design and technical capabilities for integration into existing systems and architecture
• Lead communities of practice to drive awareness and adoption of new and leading-edge cybersecurity technologies across the organization
• Design and embed security controls throughout the software development lifecycle, ensuring secure-by-design principles are applied from inception through production
• Integrate security practices into CI/CD pipelines and DevSecOps workflows to support automated security testing, vulnerability scanning, and policy enforcement
• Develop Python-based tooling and automation to support security monitoring, control validation, and vulnerability remediation
• Collaborate with risk, compliance, and audit stakeholders to translate regulatory requirements into actionable technical controls
• Leverages enterprise-authorized AI capabilities within the work environment to accelerate cybersecurity architecture analysis and decisioning (e.g., risk identification and documentation), validating outputs and handling data according to sensitivity and security requirements
• Drives reuse-first adoption of AI-assisted security validation within SDLC/toolchain routines, improving control testing and remediation quality with traceability/auditability and resiliency expectations