Americas Tax Technology Group - Security Architect - Senior Manager

About The Position

Requirements

• A bachelor's degree (computer science, engineering, accounting, finance preferred) or equivalent work experience.
• 8–12+ years of experience in Information Security, Cloud Security, Security Architecture, or a related field.
• Approved technical certification is required
• Demonstrated experience designing and operationalizing enterprise or platform security programs.
• Strong understanding of cloud security principles, with experience in Azure or comparable cloud environments.
• Experience working with audit, compliance, or regulatory frameworks in complex enterprise environments.
• Experience embedding security into DevSecOps and CI/CD pipelines.
• Familiarity with integrated security tooling across areas such as SAST, DAST, SCA, container security, CNAPP, and workflow or remediation platforms.
• Experience establishing measurable security outcomes such as vulnerability reduction, SLA performance, backlog trends, and control of health metrics.
• Background in highly regulated industries or client-facing assurance environments.
• Experience building closed-loop remediation processes from issue detection through validation and reporting.

Nice To Haves

• Master's degree preferred
• Ability to understand and learn tax and technology implications at a high level
• Excellent organizational and project management skills as well as the ability to multitask on various projects in a fast-paced environment
• Ability to work and team effectively with clients and high-level leadership personnel as well as influence all team members.

Responsibilities

• Design and mature information security capabilities across a defined platform or product ecosystem.
• Translate enterprise policies and security standards into practical control frameworks, design patterns, and implementation guidance.
• Define target-state security capabilities and drive adoption through repeatable, scalable processes.
• Establish meaningful metrics to measure control effectiveness, remediation progress, and overall program maturity.
• Embed security controls into software delivery and cloud engineering workflows, including CI/CD pipelines and pre-deployment validation.
• Partner with engineering teams to implement secure-by-design practices and preventative controls such as secrets protection, vulnerability gating, and policy enforcement.
• Promote automation and integration of security tooling to improve detection, prioritization, and remediation workflows.
• Lead risk identification, prioritization, and remediation planning for assigned platforms and services.
• Support internal audits, external assessments, regulatory reviews, and client assurance activities.
• Maintain documentation, control evidence, and implementation artifacts that are clear, defensible, and audit ready.

Benefits

• medical and dental coverage
• pension and 401(k) plans
• a wide range of paid time off options
• flexible vacation policy
• designated EY Paid Holidays
• Winter/Summer breaks
• Personal/Family Care
• other leaves of absence