Sr Web Security Architect


Brown Brothers Harriman

At Brown Brothers Harriman, we serve the most sophisticated individuals and institutions with expertise in Private Banking, Investment Management, and Investor Services.

View company page

At BBH we value diverse backgrounds, so if your experience looks a little different from what we've outlined and you think you can bring value to the role, we will still welcome your application!

What You Can Expect At BBH:

If you join BBH you will find a collaborative environment that enables you to step outside your role to add value wherever you can. You will have direct access to clients, information and experts across all business areas around the world. BBH will provide you with opportunities to grow your expertise, take on new challenges, and reinvent yourself—without leaving the firm. We encourage a culture of inclusion that values each employee’s unique perspective. We provide a high-quality benefits program emphasizing good health, financial security, and peace of mind. Ultimately we want you to have rewarding work with the flexibility to enjoy personal and family experiences at every career stage. Our BBH Cares program offers volunteer opportunities to give back to your community and help transform the lives of others.

Job Description

The Senior Web Security Architect role in the Infrastructure Security Technologies (IST) organization delivers solutions utilizing commercial off-the-shelf products and custom developed solutions. These solutions must consider industry best practices as part of each design.  This individual will be responsible for design, development, implementation, and support of high-performance distributed applications and services in Identity and Access Management space.  Expertise in the integration of complex enterprise components will be necessary to support the products within the IST organization. This role utilizes appropriate programming languages to develop and/or modify new and existing applications that help integrate processes within security technologies across other functional areas within the organization. 

Key Responsibilities

  • Perform hands-on Java Development by supporting legacy applications while implementing the adoption of modern software engineering & delivery practices using Java, Spring Boot REST/Microservices, etc.
  • As a Senior Architect working in IST Team, you will partner with Product Owners, Tech leads, Software Developers, Software Engineers, and Delivery professionals to provide the integrations of applications and IAM Services into CIAM Platforms mainly Ping Federate Suite.
  • Provide guidance for architecture design and development of applications, products, and services, lead implementations and ensure successful delivery of solutions
  • Identify technical opportunities and risks to improve the overall quality and resiliency of applications in partnership with other application development team members
  • Ensure technology requirements and challenges are resolved in a consistent and timely manner
  • Research and evaluate new technologies/tools/software products to determine feasibility and desirability of incorporating their capabilities in line with the technology strategy of the organization
  • Work with the business and systems teams to identify the right architecture for implementing new solutions, products and modules
  • Design and develop Proof of Concepts (POCs) to validate suitability and viability of new technologies and solutions from both functional and technical perspectives
  • Support the systems and business teams with estimates, analysis, design, development, performance, scalability, and benchmark test guidance and providing subject matter expertise in technology and design
  • Provide exceptional system support for products, tools, applications, and LOB inquiries
  • Strong organizational skills and efficient time management
  • Demonstrate a passion for learning and willingness to adopt new technologies
  • Maintains a proactive approach to learning about IAM-aligned components within the Information Security Active Directory technical environment Single Sign-On (SSO) configuration, and Lightweight Directory Access Protocol (LDAP)

Qualifications & Technical Skills

  • Bachelor’s in computer science and related work experience
  • Minimum of 3-5 years of technical experience in architecture, design and development of applications utilizing a wide range of technologies in IAM space
  • Experience in J2EE technologies,  Advanced Java, Spring Boot Angular, and REST API
  • Experienced in SQL, PL/SQL, PowerShell, and scripting knowledge
  • Understanding of JSON, SOAP, REST, RAML, SAML, oAuth and OIDC - application, message, communication protocols and authentication mechanisms
  • Experience and understanding of Frameworks like Spring boot/Hibernate
  • Working experience with Web Services, REST APIs, etc.
  • Working experience with relational database such as Oracle/DB2/SQL 
  • Solid understanding of microservices architecture knowledge and best practices
  • Experience with version control using GIT, Jira and other Dev Tools
  • Experienced in Linux and Windows operating systems
  • Strong understanding of development, secure coding, SDLC methodologies
  • Ability to collaborate and communicate effectively with business and technology teams
  • Strong analytical, problem-solving, and troubleshooting skills
  • Create practical, robust, and scalable architectures and solutions  
  • Experience in the Identity Access Management technologies and products is a plus

We are an equal opportunity employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, gender, national origin, age, genetic information, creed, marital status, sexual orientation, gender identity, disability status, protected veteran status, or any other protected status under federal, state or local law.


Salary Range

188,867 to 220,430

BBH’s compensation program includes base salary, discretionary bonuses, and profit-sharing. The anticipated base salary range(s) shown above are only for the indicated location(s) and may differ in other locations due to cost of living and labor considerations. Base salaries may vary based on factors such as skill, experience and qualification for the role. BBH's total rewards package recognizes your contributions with more than just a paycheck—providing you with benefits that enhance your experience at BBH from long-term savings, healthcare, and income protection to professional development opportunities and time off, our programs support your overall well-being. 

Apply now Apply later
  • Share this job via
  • or

* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰

Tags: Active Directory APIs Computer Science IAM Java Jira JSON LDAP Linux Microservices Oracle POCs PowerShell RDBMS REST API SAML Scripting SDLC SQL SSO Strategy Windows

Perks/benefits: Career development Health care

Region: North America
Country: United States
Job stats:  2  0  0
Category: Architecture Jobs

More jobs like this

Explore more InfoSec / Cybersecurity career opportunities

Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.