Principal Cloud Security Architect

Last updated one month ago
Location:Riverwoods, Illinois

Discover. A brighter future.

With Discover, you’ll have the chance to make a difference at one of the world’s leading digital banking and payments companies. From Day 1, you’ll do meaningful work you’re passionate about, with the support and resources you need for success. We value what makes each employee unique and provide a collaborative, team-based culture that gives everyone an opportunity to shine. Be the reason millions of people find a brighter financial future, while building the future you want, here at Discover.

Job Description

We are looking for progressive minded, innovative Principal Cloud Security Architect, who can whiteboard a solution, and possess strong engineering skills to help deliver business outcomes. The Principal Cloud Security Architect will be part of the Cybersecurity Architecture Team focused on helping design and mature innovative and cutting edge security capabilities and build-in practical security in enterprise initiatives. S/he will play a leadership role providing technical thought leadership for cloud security product domain, assist with vision and strategy and is expected to solve complex security problems. You will be integral in ensuring security is designed and integrated into cloud services, aligning business needs with technology and doing so in a manner which ensures security is built-in. You will participate in the decision-making processes and have an opportunity to influence implementation of sound architectural and engineering principles and best practices. S/he will be responsible for identifying business use cases for technical capabilities, reducing technical debt, leading and conducting hands-on evaluations and developing value proposition for new products and services. You will lead initiatives designed to share knowledge across teams. S/he will act as the ambassador and technical representative for Cybersecurity while engaging with other technical leaders throughout organization to design and implement digital transformational solutions.

This individual will be expected to work closely with Cybersecurity Product Managers, Product Owner, Engineers, and users of Cybersecurity technologies, Domain Architects, Software Engineers as well as business users to champion and help deliver and mature security posture. The ideal candidate will have also have business acumen, a sound understanding of the risk management practices with the ability to think, operate and balance priorities in extreme dimensions—strategic and tactical, long-term and near-term. This individual will also be a strong proponent and practitioner of infrastructure as code practices.

This is an excellent opportunity for someone who is a self-starter, results oriented, loves to solve problems, and loves to enable secure business practices.

Responsibilities:

  • Acts as the principal advisor to upper management in Cybersecurity matters, and protection, detection and threat prevention capabilities. Creates Cybersecurity architecture strategy in alignment with business and technology objectives.
  • Provides oversight and technical leadership across all Cybersecurity functional domains to ensure confidentiality, integrity, and availability of all systems. Articulate cybersecurity architecture vision, security strategies and risk implications to key stakeholders to guide leadership decision-making
  • Researches, designs and integrates new cybersecurity solutions, and determine scope, legal and criticality impact in the environment
  • Validates and certifies current and future state architectural models to assess potential impact across all enterprise systems.
  • Works closely with management and the engineering groups to define the strategic direction of the department and promote resilient engineering and data analytics practices
  • Oversees Cybersecurity engineering projects, initiatives and analytics to ensure complete and timely delivery of key department objectives .
  • Provides guidance and advocacy regarding project prioritization and technology investment direction for Cybersecurity.
  • Provides guidance and advocacy regarding project prioritization and technology investment direction for Cybersecurity.
  • Builds and maintains effective relationships with management, peers, project managers and internal customers.
  • Maintains in-depth knowledge of engineering next-gen designs, and security trends and threats. Prepares reports, technical presentation and analytics visualization for management decision-making. Resolves and remediates security issues and/or vulnerabilities. Ensure compliance to audit, regulatory and legal requirements.
  • Sets direction, organizes and enable collaboration across cross-functional departments. Provides strong leadership and direction to team members. Coaches and mentors other professional staff members.

Minimum Qualifications:

  • High school diploma or GED
  • 8+ years of experience in information security or related field

Preferred Qualifications

  • Bachelor's degree in information security, information technology, or related field
  • 3 years’ experience in Cybersecurity and/or 4 years in Cloud/Platform Engineering.
  • Strong problem solving and analytical skills; able to quickly digest any issue/problem encountered and recommend an appropriate solution.
  • Excellent verbal and written negotiation skills including the ability to author and present materials ranging from detailed technical specifications to high-level presentations.
  • Possess ability to envision cloud security capabilities needed based on business drivers and capabilities gaps.
  • Must have expert level or at a minimum proficient level skills in engineering AWS services as well as designing security capabilities and securing the services leveraging applicable cloud security capabilities in areas of IAM, endpoint security, network security, data protection and application security practices.
  • Have experience working in DevOps environment, automation first mindset, ability to script/code if necessary in Python or similar languages.
  • Knowledge of container platforms and their design practices in Kubernetes, Openshift.
  • Have strong knowledge of designing, building/engineering and securing services in GCP, and Azure.
  • In-depth knowledge and experience of next-gen technical architectures, evolving business practices, development practices, finding innovative ways to enable secure business practices and strong risk management skills.
  • Have experience building current and future state architectures, threat models, leveraging agile methodologies.
  • Knowledge of software defined networking solutions.
  • Knowledge payment services compliance and cyber security frameworks (PCI DSS, NIST CSF) is a plus

#LI-LJ1

What are you waiting for? Apply today!

The same way we treat our employees is how we treat all applicants – with respect. Discover Financial Services is an equal opportunity employer (EEO is the law). We thrive on diversity & inclusion. You will be treated fairly throughout our recruiting process and without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status in consideration for a career at Discover.