Principal Security Compliance Architect
Montgomery County, Maryland
Applications have closed
State Street
State Street provides investment servicing, investment management, investment research and trading services to institutional investors worldwide.
Who we are looking for:
The State Street Global Cybersecurity team is looking for a Principal Cybersecurity Process & Compliance Architect. The Cybersecurity team delivers platforms, architecture, and tooling to help Cybersecurity teams make faster, more informed decisions as we work to secure State Street’s digital footprint. As a Principal Cyber Architect, you will define the reference and compliance mapping to Architectures for security platforms, cloud and SIEM security infrastructure, enterprise-wide. You will persuade and influence senior business and information technology (IT) leaders on the security architecture direction for enterprise-wide, transformational, technology imperatives.
What you will be responsible for:
Develop and drive the execution of cybersecurity compliance to architecture by applying frameworks, regulations, and standards to architecture and standards documentation to continuously enhance our security posture.
Support the creation of and adherence to information security reference architectures by developing reusable patterns for security and mapping standards to policy, and compliance.
Provide expert guidance to cross-functional teams, including architecture, engineering, operations, and compliance, to ensure security considerations are embedded in all stages of project lifecycles.
Develop and manage security architecture steering committees, working groups, and other governance bodies in partnership with cybersecurity leadership and LoDs to ensure robust management of security practices across the enterprise.
Conduct comprehensive risk assessments, threat modeling, and vulnerability analysis to identify potential security gaps and develop mitigation strategies
Develop, document, and maintain security architecture blueprints, technical standards, guidelines, and related compliance mapping for consistent implementation across projects
Work directly with security, legal, compliance, and LoD teams to help drive integration of security and compliance standards and practices across current and future lines of business, evaluate the regulatory environment, and implement changes to architectural standards and processes.
Develop and maintain partnerships with key business and technology leaders across State Street to persuade, inform & influence on security architecture direction across the enterprise.
Analysis and security architecture for sub and affiliate integration and security architecture governance.
Mapping Technical standards development and alignment across the organization, to include our subs & affiliates.
What we value:
Demonstrated competency in strategic thinking and leadership;
Demonstrated ability in influencing technical teams;
Proven project management and organizational skills, specifically managing multiple, concurrent projects;
Demonstrated knowledge of Governance, Risk, and Compliance (GRC) strategies including NIST, ISO, and CCM;
Proven experience in security architecture for both applications and infrastructure.
Experience in security architecture, with a focus on hybrid and multi cloud solutions.
Strong technical governance experience developing standards, policies, controls in large, regulated organizations.
Education & Preferred Qualifications
You have multiyear (>12 years) experience within Cybersecurity including GRC (Governance, Risk, and compliance), SecOps, threat modelling, and secure architecture.
Bachelor's Degree in Cyber Security, Law, or related discipline, with >12 years of experience. Master Degree or MBA preferred.
You have experience with security observability and compliance monitoring in hybrid cloud environments.
You have a proven ability to Independently drive transformational security projects cross-organization.
You have knowledge of security testing tools and techniques, and with security analytics tools and platforms.
You are a strong communicator who is comfortable working cross-functionally, with a track record of delivering results and demonstrating strong ownership.
Preference for candidates who have had experience as an information security officer managing business security risks or as a manager leading security operations function.
You have extensive security experience with significant specific experience integrating security concerns in the GRC (Governance, Risk, and compliance) context at large multinational Organisations.
Given that much activity will have to be centred in US ET hours, we are looking for a candidate located on the eastern seaboard.
Are you the right candidate? Yes!
We truly believe in the power that comes from the diverse backgrounds and experiences our employees bring with them. Although each vacancy details what we are looking for, we don’t necessarily need you to fulfil all of them when applying. If you like change and innovation, seek to see the bigger picture, make data driven decisions and are a good team player, you could be a great fit.
Why this role is important to us
Our technology function, Global Technology Services (GTS), is vital to State Street and is the key enabler for our business to deliver data and insights to our clients. We’re driving the company’s digital transformation and expanding business capabilities using industry best practices and advanced technologies such as cloud, artificial intelligence and robotics process automation.
We offer a collaborative environment where technology skills and innovation are valued in a global organization. We’re looking for top technical talent to join our team and deliver creative technology solutions that help us become an end-to-end, next-generation financial services company.
Join us if you want to grow your technical skills, solve real problems and make your mark on our industry.
About State Street
What we do. State Street is one of the largest custodian banks, asset managers and asset intelligence companies in the world. From technology to product innovation, we’re making our mark on the financial services industry. For more than two centuries, we’ve been helping our clients safeguard and steward the investments of millions of people. We provide investment servicing, data & analytics, investment research & trading and investment management to institutional clients.
Work, Live and Grow. We make all efforts to create a great work environment. Our benefits packages are competitive and comprehensive. Details vary by location, but you may expect generous medical care, insurance and savings plans, among other perks. You’ll have access to flexible Work Programs to help you match your needs. And our wealth of development programs and educational support will help you reach your full potential.
Inclusion, Diversity and Social Responsibility. We truly believe our employees’ diverse backgrounds, experiences and perspectives are a powerful contributor to creating an inclusive environment where everyone can thrive and reach their maximum potential while adding value to both our organization and our clients. We warmly welcome candidates of diverse origin, background, ability, age, sexual orientation, gender identity and personality. Another fundamental value at State Street is active engagement with our communities around the world, both as a partner and a leader. You will have tools to help balance your professional and personal life, paid volunteer days, matching gift programs and access to employee networks that help you stay connected to what matters to you.
State Street is an equal opportunity and affirmative action employer.
Salary Range:
$140,000 - $222,500 AnnualThe range quoted above applies to the role in the primary location specified. If the candidate would ultimately work outside of the primary location above, the applicable range could differ.
Tags: Analytics Artificial Intelligence Automation Cloud Compliance Governance Monitoring NIST Risk assessment SecOps SIEM
Perks/benefits: Career development Competitive pay Flex hours Health care
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Information Systems Security Officer (ISSO) jobs
- Open Information Security Officer jobs
- Open Senior Product Security Engineer jobs
- Open Information Security Specialist jobs
- Open Senior Cyber Security Engineer jobs
- Open Product Security Engineer jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Cyber Security Architect jobs
- Open Cybersecurity Analyst jobs
- Open Cyber Security Specialist jobs
- Open Security Specialist jobs
- Open Chief Information Security Officer jobs
- Open Staff Security Engineer jobs
- Open Manager Pentest H/F jobs
- Open Cybersecurity Editor jobs
- Open Senior Information Security Analyst jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Consultant SOC / CERT H/F jobs
- Open IT Security Engineer jobs
- Open IT Security Analyst jobs
- Open Senior Information Security Engineer jobs
- Open Cybersecurity Consultant jobs
- Open Senior Penetration Tester jobs
- Open Cybersecurity Specialist jobs
- Open Security Operations Analyst jobs
- Open CISM-related jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open Pentesting-related jobs
- Open Agile-related jobs
- Open Application security-related jobs
- Open GCP-related jobs
- Open Vulnerability management-related jobs
- Open ISO 27001-related jobs
- Open Threat intelligence-related jobs
- Open IAM-related jobs
- Open Analytics-related jobs
- Open CISA-related jobs
- Open Security assessment-related jobs
- Open Malware-related jobs
- Open Java-related jobs
- Open APIs-related jobs
- Open Security Clearance-related jobs
- Open Forensics-related jobs
- Open SaaS-related jobs
- Open CEH-related jobs
- Open EDR-related jobs
- Open IDS-related jobs
- Open DoD-related jobs
- Open DevOps-related jobs