Information Security Architect

CompanyFederal Reserve Bank of Kansas CityThe Federal Reserve Financial Services (FRFS) enterprise delivers a suite of payments services to financial institutions via FedLine Solutions, Fedwire, National Settlement Service (NSS), FedCash1, FedACH (Automated Clearing House), and Check Services.

We are engaged in a strategic effort to transform FRFS to a national, enterprise-focused organization. Over time, FRFS will offer an increasingly integrated set of Federal Reserve payment services, incorporating the FedNowSM Service upon its market entry in 2023. Through our evolved structure, we will meet the needs of the marketplace for new products and services more quickly and provide a more robust and unified customer experience across our financial service offerings.

Key Activities:

The FRFS Technology Group is filling multiple Information Security Architect positions and will place candidates at different levels depending on experience and expertise.

We are looking for qualified, experienced Information Security Architects that have deep expertise in one or more of the following areas:

• Infrastructure Security Architecture (e.g. network, middleware and compute stacks)

• Application and API Security Architecture

• IAM Architecture Security with a focus on MFA, IdP, Certificates and OAuth.

• AWS Security Architecture

• Salesforce Security Architecture

What you will be doing:

• Designing and developing security architectures for systems that reside in on-prem and cloud environments based on security requirements, risk, resiliency needs and best practices.

• Creating architectures that minimize cyber risks impacting the integrity, availability, or confidentiality of FRFS organizational assets.

• Developing differentiated security patterns based on business requirements and/or sensitivity of the assets being protected. E.g., critical payment systems vs. systems that host publicly available information.

• Executing threat model analysis and authoring detailed patterns and standards to identify & reduce risk.

• Representing cyber security in the development and implementation of the overall enterprise architecture. Acting as the ambassador and senior technical representative for security while engaging with other senior technical leaders.

• Partnering with platform, application development and operational teams to develop the appropriate security patterns, and processes for FRFS technologies cloud infrastructures.

• Directly influencing security improvements across the entire technology stack

• Analyzing, designing, and developing roadmaps and implementation plans

• Participating in policy development, standards, guidelines, and procedures

• Evaluating the current architecture to identify security weaknesses and developing opportunities for improvements.

• Researching and evaluating emerging technology, against the Financial Services industry, and the current threat landscape

• Providing leadership, guidance, and mentoring others

• Contributing to the vision, strategy, values, and priorities that help the FRFS enterprise achieve its mission, as a member of the FRFS Technology Team.

• Developing close relationships with key stakeholders and external partners to ensure contemporary thinking, including the FRFS Technology Leadership Team, FRFS

• Leadership Team, and National IT stakeholders, with particular emphasis on collaboration with the Office of the Chief Information Security Officer to ensure complementary actions and avoid duplicative services.

What We Look For:

• Demonstrated strong working knowledge of the SDLC and techniques used to address secure coding practices such as DAST, SAST and Threat Modeling

• Working knowledge/experience deploying Zero Trust Architecture is a plus.

• Possess a deep understanding of leading cloud offerings.

• Expertise in developing Infrastructure as Code (IaC)

• Strong experience using and securing CI/CD pipelines including GitLab.

• Experience in migrating manual processes to leverage automation within cloud environments.

• Experience in designing security monitoring, incident response tooling in cloud environments.

• Demonstrated ability to use quantitative evidence to justify a security design or risk management decision.

• Excellent written and verbal communication skills, specifically having experience communicating to executive teams and business stakeholders.

• Understanding and working experience with risk management and control frameworks (NIST 800-53) and industry best practices.

• Experience serving as a champion of building a diverse and inclusive work environment.

• The primary desired work location for this position is Kansas City, but candidates that live anywhere in the continental US will be considered equally. Candidates that live near one of our Reserve Bank locations will be provided some work from home flexibility. Rules for hybrid work arrangements differs from Bank to Bank and should be discussed during the interview process. This position will require you to travel as much as 15% of the time.

Qualifications:

• Typically requires at least 6 years of relevant experience.

• Bachelor's degree specializing in an information technology field from an accredited college or university, or equivalent combination of directly related education and/or work experience. Master's degree specializing in an information technology field from an accredited college or university, or equivalent combination of directly related education and/or work experience preferred.

• Certified Information Systems Security Professional (CISSP) certification or other IS industry certification required. Senior understanding of subject. Has in-depth and/or breadth of knowledge in discipline. Performs work independently with limited supervision and direction. Serves as a resource for less experienced staff.

Additional Information:

* Location(s):

o Remote Eligible - Yes

*Screening Requirements: This position has additional screening requirements due to the information accessed while performing the job. These additional screenings would be initiated at the time of offer acceptance and can take up to a couple of months to be completed. You can begin work before the screening is completed; however, continued employment is contingent on acceptable screening results. The areas screened may include education/employment verification, criminal history, credit history, and reference checks.

*Sponsorship: Applicants must be currently authorized to work in the United States without the need for visa sponsorship now or in the future.

About Us:

*

*

*

*

*Subject to change based on district

Follow us on , Instagram, , and

Full Time / Part TimeFull timeRegular / TemporaryRegularJob Exempt (Yes / No)YesJob CategoryInformation TechnologyWork ShiftFirst (United States of America)

The Federal Reserve Banks believe that diversity and inclusion among our employees is critical to our success as an organization, and we seek to recruit, develop and retain the most talented people from a diverse candidate pool. The Federal Reserve Banks are committed to equal employment opportunity for employees and job applicants in compliance with applicable law and to an environment where employees are valued for their differences.