Description

Responsible for providing senior architectural leadership, direction, and governance for M&T's cybersecurity Architecture. Support cybersecurity strategy and Vision development, cybersecurity solution creation efforts, and governance processes.

Responsibilities

• Define cybersecurity architecture vision, current state and future state including conceptual and logical components across architectures (e.g., Cloud, data, infrastructure)
• Providing architectural consulting and advice in the areas of cybersecurity architectural principles and best practices.
• Lead the development of the cybersecurity architecture roadmaps and cybersecurity related architecture patterns
• Collaborate with the other architects and the core EA team to ensure alignment with the Enterprise cybersecurity Architecture
• Understand technology industry and market trends to determine their potential impact on the cybersecurity enterprise architecture
• Recommend alternative options and approaches or improvements to enhance cybersecurity approaches and architectures to support organizational goals
• Collaborate with the cybersecurity organization to define the principles and standards that guide cybersecurity decisions for the enterprise
• Collaborate with data architects and the data organization to define, develop and communicate the data classification standards to promote consistent data management practices aligned with cybersecurity objectives
• Support initiatives and provide consultation to align these with cybersecurity architecture best practices
• Serve as point of escalation, review and recommendations for key cybersecurity issues or significant initiatives and decisions within the cybersecurity domain
• Participate in the governance process including reviews, Architecture Peer Review Group and Architecture Review Board
• Understand capabilities (future and current state) and determine corresponding enterprise system designs and Gaps
• Provide consulting support to solution architects within initiatives to ensure the initiative is aligned with overall cybersecurity enterprise architecture
• Understand Corporate Technology standards and ensure solutions fully comply. Recommend exceptions where appropriate
• Understand technology trends and the practical application of existing, new, and emerging technologies and associated cybersecurity impacts and relevance
• Identify the guiding principles, guidelines, standards, and patterns that ensure solutions and recommendations are aligned with the enterprise's future-state cybersecurity architecture vision
• Support the evaluation and selection of software product standards and services
• Document all architecture Conceptual and Logical design leveraging appropriate Enterprise Architecture tools
• Understand and adhere to M&T's risk and regulatory standards, policies, and controls in accordance with the Company's Risk Appetite. Identify risk-related issues needing escalation to management
• Support an environment that promotes diversity and reflects the M&T Bank brand
• Maintain M&T internal control standards, including timely implementation of internal and external audit points together with any issues raised by external regulators as applicable
• Complete other related duties as assigned

Required Skills

• Strong strategic planning capabilities (approaches and processes, tools, deliverables)
• Deep understanding of the cybersecurity architecture discipline, processes, concepts, and best practices (e.g., regulatory requirements, business continuity / disaster recovery)
• Knowledge of data mapping and movement across the organization; fraud modeling; analytics
• Knowledge of IAM
• Strong collaboration / communication skills along with effective problem solving and creative thinking capabilities
• Broad understanding across technologies and other architecture areas and the implications for cybersecurity
• Excellent understanding of strategic and new and emerging technology trends, and the practical application of existing, new and emerging technologies
• Excellent organizational skills, with ability to handle multiple and complex areas of responsibility
• Strong interpersonal skills
• Excellent analytical skills like technical translator, abstraction, pattern recognition, logical and holistic thinking
• Excellent written and verbal communication skills
• Strong planning skills
• Understanding of management methods and processes (Waterfall, Agile), and capability of supporting all types of initiative teams by providing advice and guidance on opportunities, impact, and risks, taking account of technical and architectural debt
• Knowledge of all components of an enterprise technical architecture
• Strong knowledge of DevSecOps and automation
• Ability to connect across disparate parts of the organization and understand domain / function implications of enterprise priorities

Preferred Skills

• Strong leadership skills
• Excellent understanding of Systems Development Life Cycle (SDLC), application development methodologies, Cloud, data, cybersecurity, infrastructure, and network architecture
• Prior experience working with developers and Engineers

Works With

• Solution Architects, Enterprise Architects, Technology Leadership, CISO

Education and Experience Required:

Bachelor's degree and a minimum of 6 years' operational/technical experience, or in lieu of a degree, a combined minimum of 10 years' higher education and/or work experience, including a minimum of 6 years' operational/technical experience

A minimum of 8 years' operational/technical experience, or in lieu of a degree, a combined minimum of 12 years' higher education and/or work experience, including a minimum of 8 years' operational/technical experience or equivalent

Preferred Education

• Graduate degree in a business or technical discipline
• Relevant certifications in Enterprise Architecture discipline, data management, data engineering, analytics

Preferred Experience

• Role of IAM in Financial Crimes
• Experience in at least two Information Technology solution development disciplines, including technical architecture, infrastructure, application development, cybersecurity, database management or Information Technology (IT) operations
• Exposure to multiple, diverse technologies and processing environments

#LI-KB1

Location
Buffalo, New York, United States of America