Job Closed
This listing is no longer active.
CSS manages the issuance and administration for Fannie Mae and Freddie Mac’s Single-Family Mortgage-Backed Security.
Senior Director – Cyber Security Architecture and Engineering Services
Location
United States
Posted
59 days ago
Salary
$205.3K - $236.5K / year
Seniority
Senior
Job Description
Senior Director – Cyber Security Architecture and Engineering Services
Common Securitization Solutions
• Lead the overall design of cyber security architecture, cyber security engineering, and business architecture • Contribute to the overall security vision and strategy • Improve operational efficiencies and reliability within U.S. FinTech’s Cyber Security tools ecosystem • Lead day-to-day management and execution of Cyber security architecture and engineering functions • Interface with IT professionals and leaders of the business to assess and manage cyber risk • Refine, design, and implement company-wide cyber security architecture and engineering • Develop cyber security patterns to enable developers to design and build applications with appropriate security controls • Manage external assessment activities • Serve as a subject matter expert to internal business, technology, and security teams • Proactively advise on a range of cyber risk management activities • Develop and refine standards in partnership with Engineering, Infrastructure, Application Development, Data • Oversee deployment, integration, and initial configuration of all new cyber security solutions
Job Requirements
- Bachelor’s degree or higher in related discipline
- Industry Certification required, e.g. CISSP, CISA, CISM or equivalent designation
- Minimum of 12 years of experience building and leading global cybersecurity programs
- Minimum of 5 years leading Security Architecture and Engineering Teams
- Applicants must be authorized to work in the US without requiring employer sponsorship currently or in the future
- Strong working knowledge of Cyber Security Architectural and Engineering principles supporting Cyber Defense, Compliance, Perimeter Security, Data Protection, Application Security, Operating System Security, Virtual Infrastructure, Storage Protection
- Strong working knowledge of DevSecOps
- Strong working knowledge of AWS and tools to support the Cloud
- Strong working knowledge of Private Cloud, Public Cloud, and/or Hybrid Cloud
- Strong analytical skills capable of identifying, evaluating and mitigating significant risks within an enterprise
- Strong working experience with Microsoft Office Suite and GRC tools.
Benefits
- Performance bonus
- 401k match
- Healthcare coverage
- Paid time off
- Broad range of other benefits
Related Guides
Related Categories
Related Job Pages
More Security Engineer Jobs
Director, Information Security Architecture and Solutions
WashU ITWashington University in St. Louis Information Technology
• Lead the Security Architecture and Solutions team, including recruiting, mentoring, performance management, and professional development • Define and maintain the enterprise security architecture vision and roadmap in alignment with university strategy, IT standards, and clinical care, research, and teaching missions • Provide expert security consulting to IT, research, and business units on new systems, applications, and services • Develop and maintain security reference architectures, patterns, and design standards for on-premises, cloud, and hybrid environments • Monitor the effectiveness of implemented security controls and recommend improvements • Stay current with emerging threats, technologies, and best practices to inform architecture decisions
Manager, Information Security and Risk Management – Vulnerability Management
Highmark HealthCreating remarkable health experiences, freeing people to be their best.
• Manage Information Security and Risk Management services with a focus on the Vulnerability Management program • Scale vulnerability management capabilities including detection strategies and metrics • Lead security staff and embed vulnerability management into IT operations • Active contributor to ISRM strategic planning
• Design, implement, and manage robust security controls and policies across the business, enhancing our detection and response capabilities. • Assist in addressing findings from automation and tooling, ensuring prompt and effective response and remediation. • Run and manage detection tooling and automation across the organization • Stay informed about the latest security threats, vulnerabilities, and compliance mandates affecting cloud environments, providing guidance on emerging technologies and security best practices. • Offer expert guidance and mentorship to junior security team members and employees across the company, fostering an organizational culture of security awareness and continuous improvement. • Collaborate with stakeholders to integrate security requirements effectively into IT projects and business initiatives.
• Liderazgo, coordinación, gestión y liderazgo de equipos pequeños. • Gestión de incidencias N2: resolución de incidencias técnicas no procedimentadas, con capacidad de análisis autónomo. • Análisis técnico: consultas SQL, revisión de logs, identificación de causas raíz. • Colaboración con N1: escalado eficiente y retroalimentación continua. • Gestión del conocimiento: documentación de soluciones y procedimientos emergentes.
