Cloud Security Architect Lead

Cloud Security Architect Lead

Requirements

• 4-year college/university degree required
• Minimum 10 + years of experience building and managing security infrastructure and solutions in financial industries
• Experience implementing/configuring cloud services and tools aligned to our security priorities
• Demonstrates flexibility within a variety of changing situations, while working with individuals and groups.
• Strong ability to effectively communicate with and present to C level as well as the senior leadership team
• Experience with assessment, development, implementation, integration, optimization, and documentation of a comprehensive and broad set of security technologies and processes in on premise, public and private cloud environments
• Understanding of cryptography as it relates to application, network and cloud security
• Must have experience with Internet Application Hosting architectures, best practices and related technologies to effectively protect externally facing applications
• Strong knowledge of enterprise security concepts/frameworks and products, secure design principles and best practices
• Excellent written and verbal communication skills a must
• Must be able to quickly and succinctly design and create technical solution/process documentation
• Must be a self-starter, strong leader who is able to manage, develop and nurture a team of senior engineers and architects; work with limited supervision & be able to work well with others in a globally diverse IT environment

Responsibilities

• Responsible for defining an architectural vision and architecture for large complex solutions, which aligns with the enterprise architecture strategy, technology and platform choices
• Describes the solution intent and the associated operating environment, determining the primary systems/subsystems and their interfaces, defining non-functional requirements and architectural runway to support new epics/features and expand into new opportunities
• Ensures the solution is fit for purpose and use by working with stakeholders, vendors/service providers, and evaluating the impact of strategic design decisions
• Contributes to best practices, standard templates, and the architecture roadmap for defined domains.
• Creates cloud security reference architecture patterns for reusability.
• Contributes to the creation of the architecture roadmap of defined domains (Business, Application, Data and Technology) in support of the product roadmap
• Contributes to the development of best practices including standardized templates
• Works across business and technology to create the solution intent and architectural vision for large complex solutions and evolves it based on an emerging backlog
• Works with Product Manager/Owner to plan and prioritize technology focused backlog items for the architecture runway to enable business epics/features and expand into new opportunities
• The cloud security architect must interpret business, technology and threat drivers, and develop practical security roadmaps
• Clarifies the architecture for the development teams to support implementation, and provides solution options to resolve any architectural impediments
• Performs design reviews to ensure all non-functional requirements for a solution are sufficiently met (e.g. security, performance, maintainability, scalability, usability, and reliability)
• Develop security patterns, standards, and architectural decision records to ensure Schwab data at rest, in motion or in use is properly secured
• Liaises with other security architects and security practitioners to share best practices and insights
• Design and develop security architectures for cloud and cloud/hybrid-based systems

Preferred Qualifications

• Experience with Application Development, or Distributed Application Architecture highly preferred
• Experience with Hybrid cloud architectures and designs
• Experience with DevSecOps process, AI security, data warehousing, Container technologies, API Gateways, and other common web application technologies is preferred
• CISSP, CCSP, TOGAF certification preferred. Other Information Security oriented certifications a plus