Cybersecurity Senior Architect
Cybersecurity Senior Architect
Employer Active
Job Alert
You will be updated with latest job alerts via email
Share
Job Alert
You will be updated with latest job alerts via email
Job Description
The position is described below. If you want to apply click the Apply Now button at the top or bottom of this page. After you click Apply Now and complete your application youll be invited to create a profile which will let you see your application status and any communications. If you already have a profile with us you can log in to check status.
If you have a disability and need assistance with the application you can request a reasonable accommodation. Send an email to Accessibility (accommodation requests only; other inquiries wont receive a response).
Regular or Temporary:
RegularLanguage Fluency: English (Required)
Work Shift:
1st shift (United States of America)Please review the following job description:
Responsible for defining and maintaining cyber security architecture and technology plans with a focus on researching emerging technology best practices and applicable regulatory/compliance requirements then applying them to enable business solutions. Ensure that security controls are reliable and supports business initiatives and future growth through coordination with the Truist architectural community Corporate Cyber Security (CCS) Engineering Application Delivery Services and other stakeholders. Act as a lead subject matter expert on cyber capabilities best practices and security controls for your aligned applications and technology stacks.Essential Duties and Responsibilities
Following is a summary of the essential functions for this job. Other duties may be performed both major and minor which are not mentioned below. Specific activities may change from time to time.
1. Lead the planning creation and management of security architecture deliverables including but not limited to requirements solution designs patterns building blocks target architectures policies standards and guidance for all applicable platforms and environments to influence CCS Enterprise Technology and line of business decision making.
2. Acts as thought leader in new technology innovation incubation introduction and implementation critical to the CCS roadmap and Truists success. Build roadmap for acquiring integrating and implementing high-value technology and processes. Oversee efforts (e.g. proof of concepts) to measure and prove new technology value.
3. Lead development of system security context and preliminary system security concept of operations and define baseline system security requirements in accordance with applicable regulations and standards.
4. Create and maintain system security context and preliminary system security concept of operations and define baseline system security requirements in accordance with applicable regulations and standards.
5. Ensure that all acquired or developed security systems and security architectures integrate with enterprise security architecture.
6. Establish strong relationships with key technology stakeholders and create convergence by demonstrating credibility empathy and expertise on business and technical issues. Facilitate communicate collaborate and persuade others in the definition adoption and implementation of a coherent architecture.
7. Evaluate existing or emerging technologies to consider factors such as cost security compatibility and usability and ensure security product lifecycles are managed proactively.
8. Demonstrate comprehensive experience and skill in Information Security (InfoSec) and cyber security technology and practices necessary to negotiate and persuade technology direction on security principals and tenets such as confidentiality integrity availability authentication and non-repudiation.
9. Perform security reviews identify gaps in security architecture and develop security risk management plans.
Required Qualifications: The requirements listed below are representative of the knowledge skill and/or ability required. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.
1. Bachelors degree in Computer Science MIS-related field or equivalent education and related training
2. Twelve years experience in Information/Cyber Security and architecture
3. Comprehensive experience in application security architecture including design tools methods and techniques and the application of defense-in-depth principles; knowledge of network design processes including understanding of security objectives operational objectives and tradeoffs
4. Experience creating architecture deliverables such as to requirements solution designs models patterns building blocks sequence diagrams and target architectures.
5. Deep knowledge of:
- Several common technology stacks (i.e. AWS Azure Kubernetes distributed and/or mainframe) and how to secure them including access control data protection monitoring and integration with other technologies
- Authentication and authorization technologies including privileged access management and remote access;
- Application security the security development lifecycle and ability to apply to client-server and web-based application development environments;
- Enterprise databases and database security including database activity monitoring and database access control technologies;
- Encryption methods and technologies for data-in-transit and data-at-rest scenarios
- Incident response processes
- Denial of service prevention mechanisms;
- Firewall technologies and intrusion prevention methods;
- Cloud technologies and hosting;
- Operating system hardening;
- Virtualization technologies;
- Mobile technologies;
- Encryption tokenization and key management technologies;
- Endpoint Protection (includes malware);
- Data Loss Protection (DLP) technologies;
Desired Qualifications: The requirements listed below are representative of the knowledge skill and/or ability desired. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.
- At least one major cybersecurity certification such as CISSP CCSP CISM and/or GIAC certifications.
- Azure AWS and/or Kubernetes certifications
- Thorough knowledge of The Open Group Architecture Framework (TOGAF) or similar architecture framework including infrastructure data information security applications architectural concepts and associated disciplines
- Experience in the financial services industry or another highly regulated industry
General Description of Available Benefits for Eligible Employees of Truist Financial Corporation: All regular teammates (not temporary or contingent workers) working 20 hours or more per week are eligible for benefits though eligibility for specific benefits may be determined by the division of Truist offering the offers medical dental vision life insurance disability accidental death and dismemberment tax-preferred savings accounts and a 401k plan to teammates. Teammates also receive no less than 10 days of vacation (prorated based on date of hire and by full-time or part-time status) during their first year of employment along with 10 sick days (also prorated) and paid holidays. For more details on Truists generous benefit plans please visit our Benefits site. Depending on the position and division this job may also be eligible for Truists defined benefit pension plan restricted stock units and/or a deferred compensation plan. As you advance through the hiring process you will also learn more about the specific benefits available for any non-temporary position for which you apply based on full-time or part-time status position and division of work.
Truist is an Equal Opportunity Employer that does not discriminate on the basis of race gender color religion citizenship or national origin age sexual orientation gender identity disability veteran status or other classification protected by law. Truist is a Drug Free Workplace.
EEO is the LawPay Transparency Nondiscrimination Provision E-Verify
Required Experience:
Senior IC
Employment Type
Full-Time
