[Remote] Director of Cyber Security Architecture and Engineering Services
Note: The job is a remote job and is open to candidates in USA. U.S. Financial Technology (U.S. FinTech) is seeking an experienced Cybersecurity Architecture and Engineering Services Director to join our team of talented professionals. The Director will lead the overall design of cyber security architecture and engineering, ensuring compliance with policies while improving operational efficiencies within the Cyber Security tools ecosystem.ResponsibilitiesPartner with leaders across the business to identify opportunities and risks and develop solutions that support U.S. FinTech, a SaaS company serving as the critical backbone of the US mortgage finance industryRefine, design, and implement company-wide cyber security architecture and engineering in partnership with 2nd and 3rd lines of defenseDevelop cyber security patterns to enable developers to design and build applications with appropriate security controlsManage external assessment activities and synthesize information into senior level presentationsServes as a subject matter expert to internal business, technology, and security teams. Proactively advises on a range of cyber risk management activities and information security industry best practicesActs as an ambassador and senior technical advisor for enterprise cyber security while engaging with other senior technical leaders throughout the organizationDevelop and refine standards in partnership with Engineering, Infrastructure, Application Development, DataMaintain vigilance about current threat vectors and expertise of the ecosystem of cloud security-related toolsPrototype new security tools and technologies based on organizational strategy and evolving threats while looking for opportunities to optimize, consolidate and manage out tools that no longer meet company needsEngage in ongoing communication with peers in the Infrastructure and Application Support groups as well as the business group to ensure understanding of security goals, to solicit feedback and foster cooperationOversee deployment, integration, and initial configuration of all new cyber security solutions and enhancements to existing information security solutions in accordance with Information security policies, standards, and operational proceduresLead initiatives designed to share knowledge across cyber security, technology, and business teams. Identifies, recommends, coordinates, and delivers timely knowledge to support teams regarding technologies, processes, or toolsCreate and maintain a set of metrics to document and measure the performance and effectiveness of the Information Security program; responsible for communicating metrics to IT Leadership TeamSkillsBachelor's degree or higher in related disciplineIndustry Certification required, e.g. CISSP, CISA, CISM or equivalent designationA minimum of 10 years of experience building and leading cybersecurity programsA minimum of 5 of years leading Security Architecture and Engineering TeamsApplicants must be authorized to work in the US without requiring employer sponsorship currently or in the futureStrong working knowledge of Cyber Security Architectural and Engineering principles supporting Cyber Defense, Compliance, Perimeter Security, Data Protection, Application Security, Operating System Security, Virtual Infrastructure, Storage ProtectionWorking knowledge of physical securityExperience adopting Zero TrustStrong working knowledge of DevSecOpsStrong working knowledge of AWS and tools to support the CloudStrong working knowledge of Private Cloud, Public Cloud, and/or Hybrid CloudSelf-starter; adaptable to change; motivated to set personal and program goals and proactively track performance against goalsExperience working with Risk, Security or Audit frameworks (i.e., COBIT, COSO, ISO 27001/2, NIST 800-53, NIST CSF, AICPA, BITS)Serve as subject matter expert for InfoSec and IT Security related topics with experience in technical control testing aligned to NIST 800-53, FISMA, and SOCPossesses strong analytical skills capable of identifying, evaluating and mitigating significant risks within an enterpriseDemonstrated experience using and managing Risk Management tools is desiredStrong working experience with Microsoft Office Suite and GRC toolsAbility to document and explain risks and vulnerabilities to both business and technical stakeholdersAbility to influence peers and management; ability to team cross-functionally and form relationships to achieve objectivesStrong oral and written communication skills and ability to work well with others and in a collaborative, complex and fast paced environmentSecondary mortgage market or equivalent financial services experience is an advantageBenefitsPerformance bonus401k matchHealthcare coveragePTOA broad range of other benefitsCompany OverviewU.S. Financial Technology is a newly launched fintech company replacing Common Securitization Solutions for mortgage securities technology. It was founded in 2014, and is headquartered in Bethesda, Maryland, USA, with a workforce of 201-500 employees. Its website is https://www.usfintech.com.