Information Security Architect

Min 6 yrs required

Full-time

No

# Job Title

Information Security Architect

# Organization

Federal Reserve Bank of Kansas City

# Job Description

The Federal Reserve Financial Services (FRFS) enterprise delivers a suite of payments services to financial institutions via FedLine® Solutions, Fedwire®, National Settlement Service (NSS), FedCash®1, FedACH® (Automated Clearing House), and Check Services. We are engaged in a strategic effort to transform FRFS to a national, enterprise-focused organization. Over time, FRFS will offer an increasingly integrated set of Federal Reserve payment services, incorporating the FedNowSM Service upon its market entry in 2023. Through our evolved structure, we will meet the needs of the marketplace for new products and services more quickly and provide a more robust and unified customer experience across our financial service offerings.

The FRFS Technology Group is currently filling multiple Information Security Architect positions and will place candidates at different levels depending on experience and expertise. We are looking for qualified, experienced Information Security Architects that have deep expertise in one or more of the following areas:

- Infrastructure Security Architecture (. network, middleware and compute stacks)
- Application and API Security Architecture
- IAM Architecture Security with a focus on MFA, IdP, Certificates and OAuth.
- AWS Security Architecture
- Salesforce Security Architecture

## What You Will Be Doing

- Designing and developing security architectures for systems that reside in on-prem and cloud environments based on security requirements, risk, resiliency needs and best practices.
- Creating architectures that minimize cyber risks impacting the integrity, availability, or confidentiality of FRFS organizational assets.
- Developing differentiated security patterns based on business requirements and/or sensitivity of the assets being protected. ., critical payment systems vs. systems that host publicly available information.
- Executing threat model analysis and authoring detailed patterns and standards to identify & reduce risk.
- Representing cyber security in the development and implementation of the overall enterprise architecture. Acting as the ambassador and senior technical representative for security while engaging with other senior technical leaders.
- Partnering with platform, application development and operational teams to develop the appropriate security patterns, and processes for FRFS technologies cloud infrastructures.
- Directly influencing security improvements across the entire technology stack
- Analyzing, designing, and developing roadmaps and implementation plans
- Participating in policy development, standards, guidelines, and procedures
- Evaluating the current architecture to identify security weaknesses and developing opportunities for improvements.
- Researching and evaluating emerging technology, against the Financial Services industry, and the current threat landscape
- Providing leadership, guidance, and mentoring others
- Contributing to the vision, strategy, values, and priorities that help the FRFS enterprise achieve its mission, as a member of the FRFS Technology Team.
- Developing close relationships with key stakeholders and external partners to ensure contemporary thinking, including the FRFS Technology Leadership Team, FRFS Leadership Team, and National IT stakeholders, with particular emphasis on collaboration with the Office of the Chief Information Security Officer to ensure complementary actions and avoid duplicative services.

## What We Look For

- Demonstrated strong working knowledge of the SDLC and techniques used to address secure coding practices such as DAST, SAST and Threat Modeling
- Working knowledge/experience deploying Zero Trust Architecture is a plus.
- Possess a deep understanding of leading cloud offerings.
- Expertise in developing Infrastructure as Code (IaC)
- Strong experience using and securing CI/CD pipelines including GitLab.
- Experience in migrating manual processes to leverage automation within cloud environments.
- Experience in designing security monitoring, incident response tooling in cloud environments.
- Demonstrated ability to use quantitative evidence to justify a security design or risk management decision.
- Excellent written and verbal communication skills, specifically having experience communicating to executive teams and business stakeholders.
- Understanding and working experience with risk management and control frameworks (NIST 800-53) and industry best practices.
- Experience serving as a champion of building a diverse and inclusive work environment.

## Qualifications

- Typically requires at least 6 years of relevant experience.
- Bachelor’s degree specializing in an information technology field from an accredited college or university, or equivalent combination of directly related education and/or work experience. Master’s degree specializing in an information technology field from an accredited college or university, or equivalent combination of directly related education and/or work experience preferred.
- Certified Information Systems Security Professional (CISSP) certification or other IS industry certification required. Senior understanding of subject. Has in-depth and/or breadth of knowledge in discipline. Performs work independently with limited supervision and direction. Serves as a resource for less experienced staff.
- Applicants must be currently authorized to work in the United States without the need for visa sponsorship now or in the future.
- This position has additional screening requirements due to the information accessed while performing the job. These additional screenings would be initiated at the time of offer acceptance and can take up to a couple of months to be completed.

# Locations

- Kansas City, MO
- St. Louis, MO
- Cleveland, OH
- Chicago, IL
- Philadelphia, PA
- San Francisco, CA
- Minneapolis, MN
- Atlanta, GA
- Boston, MA
- Dallas, TX
- Remote
- Richmond, VA

Not specified.

Medical, Dental, and Vision Insurance; Competitive Compensation; Flexible Work Environment; 401k/Thrift Plan; Tuition Reimbursement; Professional Development Opportunities; Pension Plan; Flexible Spending Accounts; Life Insurance; Vacation & Personal Time; Paid Holidays; Parental Leave; Adoption Assistance; Onsite Fitness Center; Onsite Cafeteria; Free Parking; Additional Convenience Benefits, Discounts and More.

Not specified.

Security Architecture, Risk Management, Cloud Computing, Automation, Communication, Leadership, SDLC, CI/CD Pipelines, Infrastructure as Code, Threat Modeling, DAST, SAST, Zero Trust Architecture, Infrastructure Security, Application Security, API Security, IAM, AWS, Salesforce, Control Frameworks, Diversity and Inclusion.

Bachelor's degree in an information technology field, Master's degree preferred.

Apply through the company website or email .

Qualification and Experience Bachelor's degree in an information technology field, Master's degree preferred, Certified Information Systems Security Professional (CISSP) or other IS industry certification required, at least 6 years of relevant experience.

Legal