Senior Lead Cybersecurity Architect-Database security

About The Position

Requirements

• Formal training or certification on security concepts and 10+ years of applied of experience in database technologies, with 5+ years focused on database security architecture
• Deep expertise in at least two database platforms: Oracle, SQL Server, PostgreSQL, Cassandra, or cloud-native databases
• Demonstrated threat modeling experience: STRIDE, attack trees, or equivalent methodologies applied to database and data flow scenarios
• Strong understanding of database security controls: encryption at rest/in transit, access controls, audit logging, masking/tokenization, network segmentation
• Experience with STIGs and CIS Benchmarks for database hardening; hands-on experience publishing and tracking standards
• Ability to translate threat modeling findings into actionable control requirements for engineering teams
• Experience in a regulated environment with a 3LoD (Line of Defense) model; financial services, healthcare, or similar
• Experience with NoSQL database security: Cassandra, MongoDB, DynamoDB security patterns
• Familiarity with cloud database security: AWS RDS/Aurora, Azure SQL/Cosmos DB, GCP Cloud SQL security configurations
• Knowledge of emerging cryptographic requirements including post-quantum cryptography (PQC) readiness for database encryption
• Experience with AI/ML data security: securing training data, model outputs, and vector databases
• Background in financial services consumer businesses (Mortgages, Cards, Digital) preferred

Nice To Haves

• Experience with NoSQL database security: Cassandra, MongoDB, DynamoDB security patterns
• Familiarity with cloud database security: AWS RDS/Aurora, Azure SQL/Cosmos DB, GCP Cloud SQL security configurations
• Knowledge of emerging cryptographic requirements including post-quantum cryptography (PQC) readiness for database encryption
• Experience with AI/ML data security: securing training data, model outputs, and vector databases
• Relevant certifications: CISSP, CISSP-ISSAP, database vendor certifications (Oracle OCP, AWS Database Specialty, etc.)
• Background in financial services consumer businesses (Mortgages, Cards, Digital) preferred

Responsibilities

• Lead structured threat modeling for database platforms and data flows, identifying attack surfaces, misuse/abuse cases, and risk scenarios
• Integrate threat modeling into the SDLC and design review processes for database products
• Conduct security architecture reviews for new database deployments, migrations, and major changes
• Develop and optimize database security controls aligned with risk reduction outcomes
• Evaluate and solution for emerging security requirements including MCP (Model Context Protocol) and post-quantum cryptography (PQC) for database encryption
• Establish, maintain, and govern database security standards and baselines using STIGs, CIS Benchmarks, and industry best practices.
• Serve as a subject matter expert and escalation point for IT Risk and Cyber domains related to database security
• Proactively monitor KRIs to identify, quantify, communicate, and manage issues with recommended resolutions
• Collaborate on audit and regulatory engagements, risk activities, and project initiatives

Benefits

• We offer a competitive total rewards package including base salary determined based on the role, experience, skill set and location.
• Those in eligible roles may receive commission-based pay and/or discretionary incentive compensation, paid in the form of cash and/or forfeitable equity, awarded in recognition of individual achievements and contributions.
• We also offer a range of benefits and programs to meet employee needs, based on eligibility.
• These benefits include comprehensive health care coverage, on-site health and wellness centers, a retirement savings plan, backup childcare, tuition reimbursement, mental health support, financial coaching and more.
• Additional details about total compensation and benefits will be provided during the hiring process.