Vice President, Architecture

As Vice President of Security Architecture, you are responsible for the strategic direction for security for the systems supporting Institutional Wealth Management Services, driving security architecture across our organization and alignment with enterprise. You will direct a team of security architects responsible for evaluating and recommending solutions in alignment with our modernization program, cloud, data strategy, and technology blueprints. You will provide leadership/guidance to the business and technology areas, delivering security architecture, design, and development of reusable capabilities across multiple products. Additionally, you will collaborate with key enterprise partners in the adoption of emerging enterprise standards and technologies. The Role Formulating and driving the tactical and strategic direction of Institutional Wealth Management Services enterprise security architecture for the most critical and large sophisticated systems across all facets and disciplines of Fidelity Institutional. Defining patterns and standard methodologies for cloud and security design and development. Responsible for reviewing and assuring governance of the Institutional Wealth Management Services security application standards. Providing expertise to project teams on design and application integration with other technologies across the stack (security, cloud, dev ops, etc.). Making authoritative decisions over technical issues, project policies, standards, and strategies. Establish and track metrics and KPIs that demonstrate measurable outcomes for security initiatives, such as vulnerability reduction and compliance adherence Anticipating the applicability of major industry trends in the Fidelity environment and implementing future needs. Providing leadership to Proof of Concepts (POCs) for assessment of technical and business benefits. Build strong relationships with enterprise architecture, risk management, and compliance teams to align security strategy with business goals. Actively engage across enterprise and other business units on critical Security topics and present recommendations to Enterprise Technical Architecture Group (TAG). The Expertise and Skills You Bring 15+ years of industry experience in security architecture, analytics, design, and development of enterprise solutions in multiple technology platforms, frameworks and languages. Expertise with application security implementations and standard methodologies. Relevant certifications such as CISSP, CISA, CSIM, and CCSP are required. Extensive knowledge of Identity and Access Management (IAM), Cryptography / Key Management, Access Controls and Security Protocols. E.g. Multi-factor, SAML, OAuth, OIDC, API security, PDP, PEPs, etc. Extensive technology knowledge and recognized expertise in several areas. Experience with DevSecOps, AWS security and secure code development. Experience establishing a strategy for and implementing cloud enterprise solutions in AWS and/or Azure. Extensive experience in tool selection and vendor management. Bachelor's degree in computer science, Information Systems, or equivalent work experience. Experience with Agile delivery. Financial industry experience is required. Thought leadership in recommending technology selection and strategy formation with a focus on the security domain. You are an expert in security architecture and application development. You understand the value of deploying applications in a cloud environment and how to keep them secure. Guide design and development of security standard methodologies to all layers of the application stack. Problem solver and master of implementing security standard methodologies and principles. Excellent presentation, documentation, communication and influencing skills as well as skills for presenting/influencing technology direction in a business context for our partners. The Team Institutional Wealth Management Services (IWMS) Security Architecture improves the security for our customers by enabling our business and technology partners with defined security patterns, providing strategies to maintain an edge over our competitors, designing security directly into our processes, and representing IWMS at appropriate venues and provide security governance to teams.