Principal Security Compliance Architect

 Who we are looking for:

The State Street Global Cybersecurity team is looking for a Principal Cybersecurity Process & Compliance Architect. The Cybersecurity team delivers platforms, architecture, and tooling to help Cybersecurity teams make faster, more informed decisions as we work to secure State Street’s digital footprint. As a Principal Cyber Architect, you will define the reference and compliance mapping to Architectures for security platforms, cloud and SIEM security infrastructure, enterprise-wide. You will persuade and influence senior business and information technology (IT) leaders on the security architecture direction for enterprise-wide, transformational, technology imperatives. 

What you will be responsible for: 

• Develop and drive the execution of cybersecurity compliance to architecture by applying frameworks, regulations, and standards to architecture and standards documentation to continuously enhance our security posture. 

• Support the creation of and adherence to information security reference architectures by developing reusable patterns for security and mapping standards to policy, and compliance. 

• Provide expert guidance to cross-functional teams, including architecture, engineering, operations, and compliance, to ensure security considerations are embedded in all stages of project lifecycles. 

• Develop and manage security architecture steering committees, working groups, and other governance bodies in partnership with cybersecurity leadership and LoDs to ensure robust management of security practices across the enterprise. 

• Conduct comprehensive risk assessments, threat modeling, and vulnerability analysis to identify potential security gaps and develop mitigation strategies 

• Develop, document, and maintain security architecture blueprints, technical standards, guidelines, and related compliance mapping for consistent implementation across projects 

• Work directly with security, legal, compliance, and LoD teams to help drive integration of security and compliance standards and practices across current and future lines of business, evaluate the regulatory environment, and implement changes to architectural standards and processes. 

• Develop and maintain partnerships with key business and technology leaders across State Street to persuade, inform & influence on security architecture direction across the enterprise. 

• Analysis and security architecture for sub and affiliate integration and security architecture governance.  

• Mapping Technical standards development and alignment across the organization, to include our subs & affiliates.  

What we value: 

• Demonstrated competency in strategic thinking and leadership; 

• Demonstrated ability in influencing technical teams; 

• Proven project management and organizational skills, specifically managing multiple, concurrent projects; 

• Demonstrated knowledge of Governance, Risk, and Compliance (GRC) strategies including NIST, ISO, and CCM; 

• Proven experience in security architecture for both applications and infrastructure. 

• Experience in security architecture, with a focus on hybrid and multi cloud solutions. 

• Strong technical governance experience developing standards, policies, controls in large, regulated organizations.  

Education & Preferred Qualifications 

• You have multiyear (>12 years) experience within Cybersecurity including GRC (Governance, Risk, and compliance), SecOps, threat modelling, and secure architecture. 

• Bachelor's Degree in Cyber Security, Law, or related discipline, with >12 years of experience. Master Degree or MBA preferred. 

• You have experience with security observability and compliance monitoring in hybrid cloud environments. 

• You have a proven ability to Independently drive transformational security projects cross-organization. 

• You have knowledge of security testing tools and techniques, and with security analytics tools and platforms. 

• You are a strong communicator who is comfortable working cross-functionally, with a track record of delivering results and demonstrating strong ownership. 

• Preference for candidates who have had experience as an information security officer managing business security risks or as a manager leading security operations function. 

• You have extensive security experience with significant specific experience integrating security concerns in the GRC (Governance, Risk, and compliance) context at large multinational Organisations. 

• Given that much activity will have to be centred in US ET hours, we are looking for a candidate located on the eastern seaboard.  

Are you the right candidate? Yes! 

We truly believe in the power that comes from the diverse backgrounds and experiences our employees bring with them. Although each vacancy details what we are looking for, we don’t necessarily need you to fulfil all of them when applying. If you like change and innovation, seek to see the bigger picture, make data driven decisions and are a good team player, you could be a great fit. 

Why this role is important to us 

Our technology function, Global Technology Services (GTS), is vital to State Street and is the key enabler for our business to deliver data and insights to our clients. We’re driving the company’s digital transformation and expanding business capabilities using industry best practices and advanced technologies such as cloud, artificial intelligence and robotics process automation. 

We offer a collaborative environment where technology skills and innovation are valued in a global organization. We’re looking for top technical talent to join our team and deliver creative technology solutions that help us become an end-to-end, next-generation financial services company. 

Join us if you want to grow your technical skills, solve real problems and make your mark on our industry. 

About State Street 

What we do. State Street is one of the largest custodian banks, asset managers and asset intelligence companies in the world. From technology to product innovation, we’re making our mark on the financial services industry. For more than two centuries, we’ve been helping our clients safeguard and steward the investments of millions of people. We provide investment servicing, data & analytics, investment research & trading and investment management to institutional clients. 

Work, Live and Grow. We make all efforts to create a great work environment. Our benefits packages are competitive and comprehensive. Details vary by location, but you may expect generous medical care, insurance and savings plans, among other perks. You’ll have access to flexible Work Programs to help you match your needs. And our wealth of development programs and educational support will help you reach your full potential. 

Inclusion, Diversity and Social Responsibility. We truly believe our employees’ diverse backgrounds, experiences and perspectives are a powerful contributor to creating an inclusive environment where everyone can thrive and reach their maximum potential while adding value to both our organization and our clients. We warmly welcome candidates of diverse origin, background, ability, age, sexual orientation, gender identity and personality. Another fundamental value at State Street is active engagement with our communities around the world, both as a partner and a leader. You will have tools to help balance your professional and personal life, paid volunteer days, matching gift programs and access to employee networks that help you stay connected to what matters to you. 

State Street is an equal opportunity and affirmative action employer. 

Salary Range:

The range quoted above applies to the role in the primary location specified. If the candidate would ultimately work outside of the primary location above, the applicable range could differ.