VP, IS Cloud Security Architect

Synchrony Financial Stamford , CT 06901

Posted 1 week ago

Job Description:

Role Summary/Purpose:

The VP, Information Security Cloud Security Architect will be responsible for leading and driving an enterprise wide cloud security program to safeguard and secure the organizations cloud platforms and services. In this role, this individual will be the Cloud Security product owner working with the cyber security leadership to help to define the roadmap and strategy and influencing teams to deliver on this strategy across the company. The Cloud Security Architect will be responsible for development and implementation of cyber security capabilities and architectures to address current and emerging threats and requirements.

Essential Responsibilities:

  • Partners with leadership to define the cloud security roadmap and strategy for the organization.

  • Acts as the product owner to prioritize, implement, and deliver against the cloud security roadmap.

  • Stays current with emerging threat landscape and develops capabilities and strategies to safeguard the business from various threats.

  • Develop solution architectures and strategies for problems and gaps within the cloud ecosystem.

  • Designs reference architectures (e.g. patterns, blueprints) for security solutions and capabilities.

  • Ensures alignment between security architecture frameworks, standards and overall business strategy.

  • Serves as an information security expert, trusted advisor, and central point of contact for IT and the business.

  • Participates and is responsible for achieving security architecture compliance on requirements, including but not limited to: Sarbanes-Oxley, payment card industry standards (PCI-DSS), HIPAA/HITECH, global data privacy requirements, as well as state and federal regulations.

  • Perform other duties and/or special projects as assigned


  • Bachelor's degree, in Computer Science, Information Security, or a related field e.g., IT Audit, Enterprise Risk Management, etc. is preferred

  • Minimum 5 years of experience in an information security architect role

  • Minimum 3 years of experience in a leadership role (as a security architect is preferred)

  • Minimum 5 years of experience with regulatory compliance and information security management frameworks (e.g., IS027000, COBIT, NIST 800, etc.)

Desired Characteristics:

  • Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), Certified Information Security Auditor (CISA), and/or Global Information Assurance Certification (GIAC)

  • Certified AWS Certified Security Specialty and AWS Solutions Architect

  • Demonstrate an understanding of the impact of emerging business and end-user technologies have on information security requirements and architecture

  • Demonstrate an understanding of business needs and commitment to delivering high-quality, prompt, and efficient service to the business

  • Proven strong decision-making capabilities, with a proven track record of weighing the relative costs and benefits of potential actions and identify the most appropriate one

  • Demonstrated technical expertise in existing security and IT systems and an ability to keep pace with changing security and IT technologies

  • Strong interpersonal skills, with an emphasis on demonstrating previous experience effectively influencing others at all levels within the organization and cross functionally

  • A team-focused mentality with proven experience to work effectively with diverse stakeholders

  • Demonstrated experience communicating complex and technical issues to diverse audiences, verbally and in writing, in an easily-understood, and actionable manner

Eligibility Requirements:

  • You must be 18 years or older

  • You must have a high school diploma or equivalent

  • You must be willing to take a drug test, submit to a background investigation and submit fingerprints as part of the selection process

  • You must be able to satisfy the requirements of Section 19 of the Federal Deposit Insurance Act.

  • Effective 1-1-18, new hires (Level 4-7) must have 9 months of continuous service with the company before they are eligible to post on other roles. Once this new hire time in position requirement is met, the associate will have a minimum 6 months' time in position before they can post for future non-exempt roles. Employees, level 8 or greater, must have at least 24 months' time in position before they can post. All internal employees must have at least a "consistently meets expectations" performance rating and have approval from your manager to post (or the approval of your manager and HR if you don't meet the time in position or performance requirement).

Legal authorization to work in the U.S. is required. We will not sponsor individuals for employment visas, now or in the future, for this job opening.

All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status.

Reasonable Accommodation Notice:

  • Federal law requires employers to provide reasonable accommodation to qualified individuals with disabilities. Please tell us if you require a reasonable accommodation to apply for a job or to perform your job. Examples of reasonable accommodation include making a change to the application process or work procedures, providing documents in an alternate format, using a sign language interpreter, or using specialized equipment.

  • If you need special accommodations, please call our Career Support Line so that we can discuss your specific situation. We can be reached at 1-866-301-5627. Representatives are available from 8am 5pm Monday to Friday, Central Standard Time.

The salary range for this position is 85,000.00 - 170,000.00 USD Annual

Salaries are adjusted according to market in CA and Metro NY and some positions are bonus eligible.

Grade/Level: 12

Job Family Group:

Information Technology

icon no score

See how you match
to the job

Find your dream job anywhere
with the LiveCareer app.
Mobile App Icon
Download the
LiveCareer app and find
your dream job anywhere
App Store Icon Google Play Icon

Boost your job search productivity with our
free Chrome Extension!

lc_apply_tool GET EXTENSION

Similar Jobs

Want to see jobs matched to your resume? Upload One Now! Remove
Senior Cloud Security Architect


Posted 2 months ago

VIEW JOBS 2/6/2019 12:00:00 AM 2019-05-07T00:00 Sema4 is a health information company founded on the idea that more information, deeper analysis, and increased engagement will improve the diagnosis, treatment, and prevention of disease. A Mount Sinai Health System venture based in Stamford, Conn. Sema4 is enabling physicians and consumers to more seamlessly engage the digital universe of data, from genetic test results and clinical records to wearable sensor metrics and more. The company currently offers advanced genome-based diagnostics for reproductive health, oncology, and pharmacogenomics, and is building predictive models of disease biology. Sema4 believes that patients should be treated as partners, and that data should be shared for the benefit of all. Sema4 has a new role for a Senior Cloud Security Architect. You will be a "hands on" person with an extensive understanding of all main AWS services. Working with the CTO/CISO, IT and Development teams, you will help define and implement security strategy. The candidate should have "can do" attitude with a passion for cloud technology. RESPONSIBILITIES * Lead the design and development of AWS security architectures for protection of PHI/PII/PCI data deployed into cloud/hybrid systems. * Contribute to the overall global enterprise cloud architecture * Lead the security vision and strategy around Cloud-based applications, including Infrastructure, Platform and Software as a Service (IaaS/PaaS/SaaS). * Serve as the central point of contact for Enterprise Security for other Technology teams within the organization for all matters related to cloud security reporting into CTO/CISO. * Hands on design and implement application security in an AWS environment * End to end security to assess and address security risk and control * Develop documented security architectures detailing secure, defendable configurations systems, applications, data, and threat protection * Draft documentation for cloud based system security architecture. REQUIRED SKILLS * CloudFormation / Terraform * Hands on experience AWS / Windows / Linux Security * IT Risk Management Experience * PII and PHI data in an AWS environment and understand how to protect the data - In depth understanding of AWS security components * Experience with Cybersecurity policies and Standard strategy, risk posture assessments, policy formation, identify access/data protection management and threat protection * Experience with security technologies: * Cloud security , NIST/HIPAA/HITRUST/SOC2/GDPR * NextGen Firewalls * DLP (Data Loss Protection) * NAC , IDS/IPS ,IdAM ,SIEM , MDM, CASB, Encryption * Nice to have: Kubernetes , Mesos , Openshift QUALIFICATIONS * 4+ years with Cybersecurity * 3+ years AWS/Windows/Linux experience * Excellent interpersonal and communication skills required to partner with other leaders across the business to identify opportunities and risks and develop and deliver solutions that support business strategies and protect organization Sema4 Stamford CT

VP, IS Cloud Security Architect

Synchrony Financial