• Guides the evaluation of current cybersecurity principals, processes, and controls, and leads the evaluation of new technology using existing standards and frameworks
• Works with Product teams to ensure products are designed for resilience, with validation and continuous improvement plans in place
• Partners with the Firmwide Simulation Utility (FSU), Firmwide Business Resiliency (FBR), and development teams to create new testing scenarios and capabilities
• Regularly provides technical guidance and direction to support the business and its technical teams, contractors, and vendors
• Works with stakeholders and senior leaders to recommend business modifications during periods of vulnerability
• Serves as function-wide subject matter expert in one or more areas of focus
• Actively contributes to the engineering community as an advocate of firmwide frameworks, tools, and practices of the Software Development Life Cycle
• Influences peers and project decision-makers to consider the use and application of leading-edge technologies
• Adds to team culture of diversity, equity, inclusion, and respect

Required qualifications, capabilities, and skills

​

• Formal training or certification on Cybersecurity Architecture concepts and 5+ years applied experience
• Familiarity with Terraform and Infrastructure-as-Code tools and principles
• Proficient in conducting design reviews and assessments to identify system vulnerabilities, including knowledge of OWASP, NIST, and SANS standards
• Understanding of the MITRE ATT&CK framework
• Hands-on practical experience delivering enterprise level cybersecurity solutions and controls
• Advanced in one or more programming languages or applications
• Advanced knowledge of cybersecurity architecture, applications, and technical processes with considerable, in-depth knowledge in one or more technical disciplines (e.g., public cloud, artificial intelligence, machine learning, mobile, etc.)
• Ability to tackle design and functionality problems independently with little to no oversight
• Practical cloud native experience
• Ability to evaluate current and emerging technologies to select or recommend the best solutions for the future state architecture

​

Preferred qualifications, capabilities, and skills

​

• Certifications in Cybersecurity, Cloud, Infrastructure or Product
• Overall knowledge of the Software Development Life Cycle​
• Familiarity with modern front-end technologies​

NA