ACL Digital
Cyber Security Architect
ACL Digital, St Louis, Missouri
Summary: Security Architect This position will provide security solutions, designs, architecture guidance, reviews, support, strategies across the entire organization to include security decision making through successful implementation while employing the highest levels of integrity. Every security decision must consider both direct and indirect impacts on the global IT infrastructure. Closely partner and collaborate with other engineering teams to effectively design, document, and deploy secure solutions globally to enhance and evolve the security posture of the firm ensuring data integrity, availability and confidentiality of all data entrusted that needs protection. Job responsibilities include Responsible for secure design review and implementation of on-premises and cloud security controls in support of hundreds of internal and external business IT projects and applications contributing to revenue growth globally. Review, assess and sign-off on projects with respect to risk and adherence to security policies, standards, and industry best practices. Experience with security architecture reviews and security controls across IAM, Data protection, Application Security, Network Security, Security Analytics. Experience with delivering secure design aligning to security requirements and reference architectures. What you'll have 4-year college/university degree required Minimum 10 years of experience building and managing security infrastructure and solutions in the financial industries Strong ability to effectively communicate with peers and present to the senior leadership team. Experience with security technical review, development, implementation, integration, optimization, and documentation of a comprehensive and broad set of security technologies and processes in on premise, public and private cloud environments Experience with Hybrid cloud architectures and designs Must have experience with Internet Application Hosting architectures, best practices and related technologies to effectively protect externally facing applications Experience with DevSecOps process, Container technologies (Docker, Kubernetes), API Gateways, and other common web application technologies is preferred Strong knowledge of enterprise security concepts/frameworks and products, secure design principles and best practices NIST 800-53, CIS Benchmarks, ISO 27000 series, COBIT, etc. Good written and verbal communication skills a must. Must be able to design and create technical solution/process documentation quickly and succinctly Must be a self-starter, strong leader who is able to manage, develop and nurture a team of senior engineers and architects; work with limited supervision & be able to work well with others in a globally diverse IT environment Understanding of cryptography as it relates to application, network and cloud security CISSP, CCSP, TOGAF certification preferred. Other Information Security oriented certifications a plus Additional Job Details: Intake Notes Remote role, but would be nice if nearby SCHW locations (St Louis, DEN, DFW, AUS) Need someone with a broad security architecture understanding. Should have design and architecture guidance experience (look for security architecture reviews, controls, hybrid architecture, public cloud) SaaS cloud experience and security tech would be very useful The team generally looks at a lot solutions/products that comes through SCHW and team looks to see if/how they can deploy it securely (not a huge risk) During deployment - they help with identifying what things to keep an eye on