Full Job Description
The Security Architect is responsible for providing subject matter expertise on complex security requirements by evaluating the security architecture and frameworks and providing solutions that align to the organizational requirements and strategic vision. It will be responsible for maintaining the current cybersecurity architecture and assist with product evaluation to determine fit for use and purpose. The Security Architect will be involved in high-level architecture and design efforts to ensure secure solution delivery while maintaining tolerance to the organizations risk appetite. The position will support the functions, strategy and vision set forth by the Chief Information Security Officer (CISO). It will partner and work as a team member with other IT OPS Governance & Risk Management functions such as Technology Risk and Compliance, Identity and Access Management, Data Protection & Privacy and Technology Governance.
Essential Job Duties
Provide expertise to IT-OPS Governance and Risk Management with various Business and Technology projects that may require interfacing with bank's senior and executive management.
Established and maintain a formal Security Architecture topology that provides a logical structure for classifying and organizing our security design elements to ensure a complete and usable Security Architecture improving efficiency and risk mitigation of new or current systems or initiatives.
Understanding of current Information Security principles as they pertain to the CIA Triad. Functional knowledge of encryption techniques, network security, EDR, zero-trust principles, Windows security controls, SIEM, and IR.
Evaluate emerging technologies and vendors to stay current on Cybersecurity and Technology trends in order to provide solutions to the ever-changing technology landscape.
Enhances team accomplishments and expertise by mentoring team members; championing Information Security practices; removing silos, and promote knowledge sharing within the organization.
Maintain Security Architecture alignment to security principles, regulatory and compliance requirements, and industry standards (NIST, GLBA, HIPAA, PCI, etc.)
Functional knowledge of cloud security principles to provide recommendations of security controls and design for various service delivery models (SaaS, PaaS, IaaS, etc.)
As required will provide security requirements by evaluating business strategies and requirements; researching information security standards. Provide guidance to system security practices that align to industry standards.
Act as a liaison to technology partners and lines of business as needed on Information Security matters. Has the ability to provide the framework that breaks down complexity into apparent simplicity.
Report to CISO and Senior Management on security gaps, issues, failures or concerns of established security or service continuity frameworks and architecture to remediate and provide early solutions to problems.
Preferred Education: College Degree. CISM or CISSP Certification
Minimum Experience: Three (3) Years of banking or similar regulatory driven business environment. Three (3) Years of Information Security experience with Cybersecurity frameworks and standards.
Preferred Experience: Five (5) Years of banking or similar regulatory driven business environment. Five (5) Years of Information Security experience with Cybersecurity frameworks and standards.
Knowledge Level: Understanding of current technology and security concepts. Working knowledge of security architectures, frameworks, and concepts. Fundamental understanding of COBIT, ITIL and NIST Cybersecurity Framework. Functional knowledge of DevSecOps and SOAR.
Skills & Abilities: Professional communication and ability to work across diverse teams. Decision making that aligns with risk tolerance of the organization. Ability to drive business-value through solution delivery. A passion for Cybersecurity and working in a growth-oriented environment. Highly motivated with entrepreneurial spirit.
The above statements are intended to describe the general nature and level of the work being performed by people assigned to this work. This is not an exhaustive list of all duties and responsibilities. Cadence Management reserves the right to amend and change responsibilities to meet business and organizational needs as necessary. Cadence Bank is an affirmative action/equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, religion, color, national origin, sex, age, status as a protected veteran, among other things, or status as a qualified individual with disability