Product Security Architect

Who we are:

At MoneyGram, every day brings new adventures as we break barriers and connect people worldwide with ease. As a trailblazer in P2P payments, we're on a mission to mobilize money across the globe and serve over 150 million people in the process. With a purpose-driven strategy, a culture of fintech innovation, and unparalleled customer-centric capabilities, we're transforming the way people send and receive money. Our cutting-edge, mobile-first platform and strategic partnerships with leading brands enable us to reach consumers through MoneyGram Online, our extensive global retail network, and our embedded finance business for enterprise customers. If you're ready for an exhilarating journey filled with challenges and opportunities, come aboard and let's drive the future of payments together at MoneyGram!

What you will contribute:

The Product Security Architect is a senior individual contributor who will support the Chief Information Security Officer to ensure that MoneyGram delivers security products that align with information security standards and regulatory requirements. The product security architect is responsible for serving as the voice of information security while working closely with other members of technology and the business.

Responsibilities & Deliverables:

Your deliverables will include, but are not limited, to the following:

• Performs comprehensive security reviews of new and existing applications to identify risks, propose mitigation strategies, and ensure alignment with security requirements, including compliance with regulatory frameworks such as PCI, SOC, and GDPR.

• Define and develop security requirements based on business strategies, risk assessments, threat modeling, testing and existing system analysis.

• Drive and advocate for security across applications, application cloud infrastructure, container environments, and orchestration in collaboration with development, DevOps, cloud, and enterprise architecture teams.

• Develop and maintain policies, standards and procedures related to application security requirements and processes.

• Partner with development and security teams to integrate security throughout the software development lifecycle (SDLC).

• Assist security leadership with overall security strategy, policies, and standards to continuously improve our security posture.

Qualifications & Experience:

• Bachelor's Degree in Computer Science or related field; or equivalent post high school education and/or work-related experience.

• CISSP, CCSP, CISA, or CISM certifications preferred.

• At least 7 years of experience in an information security role

• At least 1 year of experience with cloud computing and security considerations

• Experience designing and implementing security controls for custom applications in cloud environments

• Proven track record of partnering with development teams to enable the delivery of secure systems

• Experience securing containerized environments and managing container security

• In depth knowledge of deployment orchestration, automation, and security configuration management

• Solid knowledge of security risks/threats to large organization systems and networks, and ability to address those threats

• Experience designing systems to meet regulatory compliance such as PCI, SOC, SOX

• Strong problem-solving skills and ability to analyze and resolve problems with a bias for action

• Ability to translate complex technical information across all levels of the organization

• Strong relationship-building skills with business stakeholders

• Excellent interpersonal, communication and presentation skills.

Preferred:

• Master's degree in computer science, cybersecurity, or a related field

• AWS or other cloud-based technical certifications

• Experience as a DevSecOps engineer

Why you will love working here:

• Remote Flexibility

• Generous PTO

• 13 Paid Holidays

• 22 Weeks of Maternity Leave

• 4 Weeks of New Family Bonding Time

• Medical / Dental / Vision Insurance

• 401K with Employer Match

Salary:

Anticipated Base Pay: $130K-165K participation in our annual bonus plan.

Disclaimer:

The salary/pay rate listed is a good faith determination that may be offered to a successful applicant for this position at the time of this job advertisement based on company hiring process and budget for this role and may be modified in the future. Actual compensation may vary from posting based on geographic location, work experience, education and/or skill level.