Job responsibilities

• Engages technical teams and business stakeholders to discuss and propose technical approaches to meet current and future cybersecurity needs
• Defines the technical target state of their cybersecurity product and drives achievement of the strategy
• Identifies opportunities to eliminate or automate remediation of recurring issues to improve overall cybersecurity of software applications and systems 
• Leads evaluation sessions with external vendors, startups, and internal teams to drive continuous improvement and assess cybersecurity design and technical credentials for use in existing systems and architecture
• Leads communities of practice to drive awareness and use of new and leading-edge cybersecurity technologies 
• Adds to team culture of diversity, equity, inclusion, and respect 

Required qualifications, capabilities, and skills

• Formal training or certification on security engineering concepts and 5+ years applied experience
• Expertise in threat modeling using STRIDE and MITRE frameworks.
• Extensive hands-on experience in security architecture, design reviews, and delivering enterprise-level cybersecurity solutions and controls.
• Experience in programming languages, automation, and continuous delivery methods, with proficiency in all aspects of the Software Development Life Cycle.
• Understanding of agile methodologies, including continuous integration and delivery, application resiliency, and security.
• Proficiency in software applications and technical processes, particularly within technical disciplines such as public cloud, AI, machine learning, and mobile technologies.

• Security certifications like CISSP, CCSP
• Familiar of the financial services industry, IT systems, and practical cloud-native experience, with the ability to evaluate technologies and communicate effectively with senior business leaders.