Current Statistics
1,627,178 Total Jobs 285,461 Jobs Today 17,956 Cities 222,694 Job Seekers 146,724 Resumes |
|
|
|
|
|
|
Information Security Architect - San Francisco California
Company: Federal Reserve Bank of Kansas City Location: San Francisco, California
Posted On: 04/28/2024
CompanyFederal Reserve Bank of Kansas City The Federal Reserve Financial Services (FRFS) enterprise delivers a suite of payments services to financial institutions via FedLine Solutions, Fedwire, National Settlement Service (NSS), FedCash1, FedACH (Automated Clearing House), and Check Services. We are engaged in a strategic effort to transform FRFS to a national, enterprise-focused organization. Over time, FRFS will offer an increasingly integrated set of Federal Reserve payment services, incorporating the FedNowSM Service upon its market entry in 2023. Through our evolved structure, we will meet the needs of the marketplace for new products and services more quickly and provide a more robust and unified customer experience across our financial service offerings. Key Activities: The FRFS Technology Group is filling multiple Information Security Architect positions and will place candidates at different levels depending on experience and expertise. We are looking for qualified, experienced Information Security Architects that have deep expertise in one or more of the following areas: - Infrastructure Security Architecture (e.g. network, middleware and compute stacks)
- Application and API Security Architecture
- IAM Architecture Security with a focus on MFA, IdP, Certificates and OAuth.
- AWS Security Architecture
- Salesforce Security Architecture What you will be doing:
- Designing and developing security architectures for systems that reside in on-prem and cloud environments based on security requirements, risk, resiliency needs and best practices.
- Creating architectures that minimize cyber risks impacting the integrity, availability, or confidentiality of FRFS organizational assets.
- Developing differentiated security patterns based on business requirements and/or sensitivity of the assets being protected. E.g., critical payment systems vs. systems that host publicly available information.
- Executing threat model analysis and authoring detailed patterns and standards to identify & reduce risk.
- Representing cyber security in the development and implementation of the overall enterprise architecture. Acting as the ambassador and senior technical representative for security while engaging with other senior technical leaders.
- Partnering with platform, application development and operational teams to develop the appropriate security patterns, and processes for FRFS technologies cloud infrastructures.
- Directly influencing security improvements across the entire technology stack
- Analyzing, designing, and developing roadmaps and implementation plans
- Participating in policy development, standards, guidelines, and procedures
- Evaluating the current architecture to identify security weaknesses and developing opportunities for improvements.
- Researching and evaluating emerging technology, against the Financial Services industry, and the current threat landscape
- Providing leadership, guidance, and mentoring others
- Contributing to the vision, strategy, values, and priorities that help the FRFS enterprise achieve its mission, as a member of the FRFS Technology Team.
- Developing close relationships with key stakeholders and external partners to ensure contemporary thinking, including the FRFS Technology Leadership Team, FRFS
- Leadership Team, and National IT stakeholders, with particular emphasis on collaboration with the Office of the Chief Information Security Officer to ensure complementary actions and avoid duplicative services. What We Look For:
- Demonstrated strong working knowledge of the SDLC and techniques used to address secure coding practices such as DAST, SAST and Threat Modeling
- Working knowledge/experience deploying Zero Trust Architecture is a plus.
- Possess a deep understanding of leading cloud offerings.
- Expertise in developing Infrastructure as Code (IaC)
- Strong experience using and securing CI/CD pipelines including GitLab.
- Experience in migrating manual processes to leverage automation within cloud environments.
- Experience in designing security monitoring, incident response tooling in cloud environments.
- Demonstrated ability to use quantitative evidence to justify a security design or risk management decision.
- Excellent written and verbal communication skills, specifically having experience communicating to executive teams and business stakeholders.
- Understanding and working experience with risk management and control frameworks (NIST 800-53) and industry best practices.
- Experience serving as a champion of building a diverse and inclusive work environment.
- The primary desired work location for this position is Kansas City, but candidates that live anywhere in the continental US will be considered equally. Candidates that live near one of our Reserve Bank locations will be provided some work from home flexibility. Rules for hybrid work arrangements differs from Bank to Bank and should be discussed during the interview process. This position will require you to travel as much as 15% of the time. Qualifications:
|
|
|
|
|
|
|