Cloud Cyber Security Solution Senior Architect at Truist

| Atlanta, GA
Sorry, this job was removed at 3:16 p.m. (CST) on Friday, April 29, 2022
Find out who's hiring in Atlanta, GA.
See all Developer + Engineer jobs in Atlanta, GA
Apply Now
By clicking continue you agree to Built In’s Privacy Policy and Terms of Use.
The position is described below. If you want to apply, click the Apply button at the top or bottom of this page. You'll be required to create an account or sign in to an existing one.

Need Help?

If you have a disability and need assistance with the application, you can request a reasonable accommodation. Send an email to Accessibility or call 877-891-2510 (accommodation requests only; other inquiries won't receive a response).

Regular or Temporary:

Regular

Language Fluency: English (Required)

Work Shift:

1st shift (United States of America)

Please review the following job description:

This is a strategic target and solutions cloud architecture role that will derive security specifications from business requirements, and design security solutions that support core organizational functions, and assure their confidentiality, integrity and high availability. This role works to gain organizational commitment for cloud security infrastructure systems and software plans, as well as assist to evaluate and select cloud security technologies required to complete those plans. They will provide integrated cloud infrastructure-related technical expertise across the organization, from conceptualization and project planning to the post-implementation support level. Principally works, under limited supervision, with Corporate Information Security (CIS) personnel, Line of Business (LOB) personnel, external vendors, and internal IT Services personnel including Enterprise Architects, Application & Data Services personnel and other IT Operations Services teams. Cloud Security Solution Architects develop security specifications, requirements and architecture artifacts in compliance with corporate standards, laws and regulations for architecture adherence and performance guidelines.

Cyber Security Solution Architecture team is seeking an enthusiastic Cloud Cyber Solution Architect that has a passion for their internal clients and helping them win by building best in breed digital and cloud solutions for the Bank.

This role will have both an internal and external focus. Meaning this individual will partner closely with the teams responsible for developing next generation digital banking solutions, with particular focus on secure enablement of external client access and experience.

The individual who occupies this role must have deep expertise in designing and implementing security solutions for IaaS, PaaS, and SaaS Cloud environments across Application Security, Cryptography, and Identity and Access Management, Logging and Monitoring, and Governance domains of cyber security. This includes identity, access, authentication, authorization, business to business (b2b), business to consumer (b2e) and business to employee (b2e) concepts and constructs.

Successful Architects in this role must be prepared to embrace change and relentlessly pursue an intentional high bar for excellence in security practices and principles. They must support our internal clients' needs to converge the heritage ecosystems and design new solutions where a previous capability does not exist. They must also iteratively improve upon the cyber solutions to meet the evolving threat landscape.

Specific solution expertise is desired in the following areas:
  • Digital Commerce, Digital Banking and Financial Systems architecture
  • Large data management architecture and integrations
  • Attack protection and mitigation technologies - DDoS, WAF, Bot, etc.
  • AWS Cloud - application migration, fit for purpose, etc.
  • Multifactor authentication, Risk Based Authentication
  • Application authentication models
  • Application Security - OWASP control and evaluation criteria
  • Intelligent Robotic Process Automation
  • Cryptographic technology - Transit encryption, storage encryption, Hash, KMS, Digital Signature, etc.
  • Federated Identity Management / Identity Providers / Single Sign On (SSO)
  • Client authentication approaches for "anti-bot" technologies, signaling, and fraud prevention.
Ideal candidate will also have experience in the following areas -
  • Containerization, Micro-services, API, CI/CD
  • Content Delivery technologies
  • CRM Technology - Eloqua, Oracle, Acoustic
  • Adobe Experience Platform
  • Mobile Application Development
  • Fintech integration
Duties include:
  • Architecting effective and efficient fit for purpose solutions that meet the Bank's needs and requirements.
  • Applies in-depth and specialized expertise in Digital Banking and Client Experiences technologies and significant breadth of experience across cyber / information security.
  • Serve as Cyber Security and Cloud Security Subject Matter Expert participating in segment solution review processes.
  • May be called upon to contribute to refinement of scope and business cases.
  • May be called upon to contribute to Cloud target architecture and patterns.
  • Participates in the gathering and development of requirements by coaching stakeholders and decomposing business requirements into technical and system requirements.
  • Interrupt requirements to determine the best solutions and approaches.
  • Creates architectures and operational documentation with support of engineering and operations staff.
  • Advise, consult, lead, guide and mentor project teams, engineers, analysts, and support staff in the delivery of solutions both On-prem and in the Cloud.
  • Participate in agile planning processes and delivery methodologies.
  • Build relationships with internal clients and teams.
  • Conducts threat modeling and security gap assessment exercises in concert with other teams.
  • Contributes to the creation of policy, standards, Minimum Security Baselines (MSBs), procedures and guidelines.
  • Bring visibility to and escalates security risks, as well as, technical, execution, deployment or other risks as applicable.
  • Cyber security SME during Proof of Concept/Value Exit Read outs by communicating results and recommendations to stakeholders
  • Cyber SME during post-mortem reviews of projects / products to measure design versus implementation differentials
  • Contribute to the Truist Cyber Architecture Practice by supporting Cyber Enterprise Architecture objectives.
Qualifications

Required Qualifications:

The requirements listed below are representative of the knowledge, skill and/or ability required. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.

1. Bachelor's degree in a technical or business field, or equivalent education and related training

2. Eight years of demonstrated experience of systems engineering and/or architecture in at least one of the information security areas: network security, access management, end point protection, data loss prevention, vulnerability management, application security, forensics, web security, mainframe, incident response and/or cyber threat management in a medium to large corporation

3. Highly experienced in network security architecture, including design tools, methods, and techniques and the application of Defense-in-Depth principles; knowledge of network design processes, including understanding of security objectives

4. Specialized depth and thorough Knowledge of The Open Group Architecture Framework (TOGAF), including infrastructure, data, information security, applications, architectural concepts, and associated disciplines

5. Deep knowledge of:
  • Mainframe security, including access control, monitoring, integration with non-mainframe technologies, and virtualization;
  • Authentication and authorization technologies including remote access;
  • Application security and the security development lifecycle and ability to apply to client-server and web-based application development environments;
  • Enterprise databases and database security, including database activity monitoring and database access control technologies;
  • Encryption methods and technologies for data-in-transit and data-at-rest scenarios;
  • Incident response processes;
  • Denial of Service prevention mechanisms;
  • Firewall technologies and intrusion prevention methods;
  • Cloud technologies and hosting;
  • Operating system hardening;
  • Virtualization technologies;
  • Mobile technologies;
  • Encryption and key management technologies;
  • Endpoint Protection (includes malware);
  • Data Loss Protection technologies
6. Experience with peripheral component interconnect and other security audit processes, evidence gathering and development/management of remediation plans used in resolution of finding

Preferred Qualifications:
  • 10 year of information / cyber security experience with significant focus on security architecture, design, engineering and delivery.
  • At least 3 years of experience in securing cloud environments
  • Expertise and experience developing and deploying secure Digital Banking and Client Experience solutions.
  • Cloud Architecture Subject Matter Expert with a solid command of multiple cyber functions with the ability to manage technical security risks, compliance, governance, and privacy
  • Comprehensive experience in secure design principles, threat modeling, defense-in-depth, design tools, methods and techniques supporting digital banking security architecture
  • Must be extremely detail oriented in created in design and design documentation
  • The candidate must be a highly experienced subject matter expert Digital Commerce Architecture. Candidate must be able to speak to other domains of cyber / information security but must have expertise in identity and access management, application security, and cryptography.
  • Understanding of Security foundations and Standards such as hardening, least privilege, attack surface reduction, NIST SP800-series, NIST Cybersecurity Framework, FIPS 140-2, Common Criteria, FISMA/FedRAMP, ISO 27000, PCI-DSS, CIS Benchmarks, and similar.
  • Works independently, with guidance in only the most complex and unusual situations.
  • Certification: CISSP, CCSP, AWS/Azure/GCP certification, SANS or TOGAF certifications
  • Experience with Agile Scrum (Daily Standup, Sprint Planning and Sprint Retrospective meetings)
  • Mergers and acquisitions experience.
  • Consulting or professional services backgrounds are a plus.
  • Financial services industry experience is a major plus.
  • Masters degree in: Computer Science, Information Systems, Security, or other closely related field.
Other Job Requirements / Working Conditions

Sitting

Constantly (More than 50% of the time)

Visual / Audio / Speaking

Able to access and interpret client information received from the computer and able to hear and speak with individuals in person and on the phone.

Manual Dexterity / Keyboarding

Able to work standard office equipment, including PC keyboard and mouse, copy/fax machines, and printers.

Availability

Able to work all hours scheduled, including overtime as directed by manager/supervisor and required by business need.

Travel

Minimal and up to 10%

Truist supports a diverse workforce and is an Equal Opportunity Employer who does not discriminate against individuals on the basis of race, gender, color, religion, national origin, age, sexual orientation, gender identity, disability, veteran status or other classification protected by law. Drug Free Workplace.

EEO is the Law Pay Transparency Nondiscrimination Provision E-Verify
More Information on Truist
Truist operates in the Fintech industry. The company is located in Charlotte, NC. Truist was founded in 2019. It has 12339 total employees. It offers perks and benefits such as Flexible Spending Account (FSA), Disability Insurance, Dental Benefits, Vision Benefits, Health Insurance Benefits and Life Insurance. To see all 375 open jobs at Truist, click here.
Read Full Job Description
Apply Now
By clicking continue you agree to Built In’s Privacy Policy and Terms of Use.

Similar Jobs

Apply Now
By clicking continue you agree to Built In’s Privacy Policy and Terms of Use.
Save jobView Truist's full profileFind similar jobs