Information Security Architect (Remote - NC, NJ, VA, AZ)

Overview

This is a remote role that may be hired only in NC, AZ, NJ, VA. Remote with ability to travel to Raleigh, North Carolina, Phoenix, Arizona, or Morristown, New Jersey, on an as-needed basis. This position is responsible for delivering architecture intent to enterprise stakeholders and the Information Security organization at large, ensuring the secure realization of business initiatives in a manner consistent with the Bank's current and future risk appetite.

Responsibilities

1. Security Strategy: assists in designing and implementing security strategies for assigned subject matter domains (e.g., Identity and Access Management, Compute) and Information Security at large, based on knowledge of the domain, bank policies and standards, current and anticipated regulatory requirements, and expected threats and risks.
2. Security Architecture: review existing and proposed architectures, identify security gaps through threat modeling and/or technical risk assessment, and recommend changes or enhancements. Continuously improve processes to drive scale, consistency, and repeatability.
3. Solutions Architecture: as required, act as a solutions architect for security solutions; provide initial solutions architecture, assist with foundational integrations, and lead the initial implementation of solutions.
4. Business Support: serve as an Information Security subject matter expert, providing advisory and consulting services to stakeholders. Communicate effectively to both technical and non-technical audiences, orally and in writing.
5. Continuous Education: stay informed about developments in information technology, security technology, and emerging threats. Use this knowledge to influence security strategies and establish secure design patterns for emerging technologies.

Qualifications

• Bachelor's Degree and 8 years of experience in Information Technology including Information Security OR High School Diploma or GED and 12 years of experience in Information Technology including Information Security.

Preferred Qualifications:

• 4+ years of experience providing architecture and/or security architecture subject matter expertise in a large-scale enterprise environment.
• Experience with threat modeling (e.g., PASTA, STRIDE, DREAD) and technical risk assessment.
• Familiarity with industry-standard security frameworks (e.g., NIST RMF, NIST CSF, COBIT, ISO, CIS, CSA CCM).
• Familiarity with architectural frameworks (e.g., TOGAF, DODAF, Zachman).
• Knowledge of cyber-attack taxonomy (e.g., CAPEC, ATT&CK).
• Advanced Security Certifications such as CISSP or CISM are highly desirable.
• Experience with scripting and/or programming.
• Effective communication skills for translating complex technical concepts.
• Strong interpersonal, strategic planning, analytical skills, and attention to detail.

Benefits are an integral part of total rewards. First Citizens Bank is committed to providing a competitive, thoughtfully designed benefits program to meet the needs of our associates. More information can be found at https://jobs.firstcitizens.com/benefits.

• Information Security
• Threat Modeling
• Certified Information Systems Security Professional (CISSP)