Enterprise Security Principal Architect (ETS)

Company: Navy Federal Credit Union
Location: Vienna
Posted on: November 7, 2024

Job Description:

Overview To provide comprehensive architectural leadership in translating Navy Federal strategies into effective IT and business capabilities through the planning, design, implementation, and integration of IT systems and services. Define and drive business transformation efforts by minimizing architectural and operational risk, and by providing proven technical solutions to business challenges. Work is performed under limited supervision. Cloud: The Cloud Computing focus specializes in the delivery of the computing services and the duties associated with it such as designing, planning, administering, developing, or maintaining applications in the cloud-based environments like AWS, Google Cloud Platform or Microsoft Azure.Responsibilities

• Architecture Design: Develop and maintain a comprehensive security architecture framework that aligns with NFCU's strategic objectives and regulatory requirements.
  • Develop architectural documentation and/or artifacts for use in business and technology projects, knowledge transfer, decision support, and product evaluation.
  • Develop target architectures ensuring the integration points of end-user technology services and other related services are consistent, scalable, and flexible.
  • Develop and apply architectural reference patterns that guide the selection, development, implementation and use of IT within the enterprise.
  • Develop, review and enforce enterprise architecture standards.
  • Security Strategy: Formulate and implement security strategies and standards to safeguard NFCU's information technology assets.
    • Plan and develop robust and secure technical solutions that align with Navy Federal strategies.
    • Assist in facilitating architectural governance based on business and IT strategies.
    • Collaboration: Partner with IT teams, business units, and stakeholders to ensure security considerations are incorporated into project planning and execution.
      • Collaborate on architecture reviews to assess the integrity and quality of proposed technical solutions.
      • Understand the intersection and alignment of technology solutions to planned projects and initiatives to maximize the value to the enterprise.
      • Provide forward-thinking technical expertise and thought leadership in current and emerging technologies, development practices, market trends and best practices.
      • Build and maintain relationships with team members, management, key stakeholders and/or external contacts (e.g., vendors, etc.).
      • Risk Assessment: Participate in risk assessments and security assessments with cross-functional teams to identify vulnerabilities and recommend remediation strategies.
        • Assist in the Identification and provide recommendations for the acceptance or mitigation of any issues and risks associated with requirements, proposed solutions, architectural designs, implementation plans and timelines.
        • Compliance: Ensure compliance with industry regulations, such as PCI-DSS, HIPAA, and FFIEC, by implementing appropriate security controls and practices.
          • Anticipate and plan for internal and/or external business challenges (e.g., Regulatory, Compliance, etc.), with the ability to recommend process, product or service enhancements.
          • Emerging Threats: Stay informed on the latest security trends, threats, and technology advancements to continuously enhance NFCU's security posture.
          • Mentorship: Provide guidance and mentorship to junior security staff and promote security awareness throughout the organization.
          • Perform other duties as assigned.Qualifications
            • Proven Experience in Security Architecture (5+ year's experience as a Security architect).
            • Experience in Zero Trust Architectures.
              • Implementation of zero trust principles in cloud environments.
              • Extensive Experience in Cloud Security.
                • Deep understanding of cloud platforms such as AWS, Azure, or Google Cloud.
                • Ability to design and implement secure cloud-based solutions.
                • Significant experience with The Open Group Architecture Framework (TOGAF) v.9 or higher, or relevant architecture framework.
                • Significant experience with Service Oriented Architectures.
                • Significant experience in utilizing various development and operations framework methodologies including Systems Development Life Cycle (SDLC) and/or Information Technology Infrastructure Library (ITIL).
                • Significant experience in communicating technical concepts and practices effectively at all levels, including non-technical audiences, adjusting as needed to a target audience.
                • Significant experience in translating business needs and requirements into comprehensive, useful, and clear architecture designs (e.g., logical architecture, system interaction, etc.) and artifacts.
                • Significant experience in developing business and/or technical architecture diagrams.
                • Significant experience in facilitating review and validation of architecture designs by technical and non-technical audiences.
                • Significant experience in interpreting and translating architecture designs into IT solutions to achieve specific business outcomes.
                • Significant experience in performing various forms of analysis including systems analysis, business process analysis and/or Architecture Fit/Gap analysis.
                • Significant experience in leading, guiding and mentoring professional staff.
                • Experience in managing multiple priorities independently and/or in a team environment to achieve goals.
                • Ability to work both independently and as part of a team within a matrixed environment.
                • Advanced skill using analytical and problem solving skills to troubleshoot and resolve technical challenges and identify patterns of software quality and reusability.
                • Advanced skill using creative and innovative thinking to create original concepts and approaches for various projects and stakeholders.
                • Advanced skill to translate technical concepts into non-technical terms.
                • Advanced skill building effective relationships through rapport, trust, diplomacy and tact.
                • Advanced organizational, planning and time management skills.
                • Advanced skill communicating with all levels within an organization.
                • Advanced verbal, interpersonal and written communication skills.
                • Advanced word processing, spreadsheet, diagramming, and presentation software skills.
                • Advanced skill to deliver presentations to virtual and in-person teams.
                • Bachelor's degree in Information Technology, Computer Science, Cybersecurity, or related field, or the equivalent combination of education, training, and experience.
                • Certified Information Systems Security Professional (CISSP).
                  • Preferred - Certified Information Systems Security Professional (CISSP) and Certified Information Security Manager (CISM). Desired Qualifications
                    • Master's Degree in Information Technology, Computer Science, Cybersecurity, or related field, or the equivalent combination of education, training, and experience.
                    • Advanced knowledge of banking and financial industry standards and practices.
                    • Advanced knowledge of regulatory and compliance-related mandates such as CCPA and GDPR.
                    • Advanced knowledge of Navy Federal functions, philosophy, operations and organizational objectives.
                    • Certification in TOGAF, COBIT, Microsoft AZURE Solution Architect, or Scaled Agile.
                    • Certified Information Systems Auditor (CISA).
                    • Certified Cloud Security Professional (CCSP).
                    • Offensive Security Certified Professional (OSCP).
                    • Ability to manage large-scale security projects from conception to implementation.
                    • Proficient in network security, encryption, identity management, and access control.
                    • Knowledge of securing AI and machine learning models in the cloud.
                    • Experience in diverse industries to bring varied insights into security practices.
                    • Ability to anticipate and mitigate potential security threats.
                    • Understanding of securing containerized environments using Kubernetes or Docker.
                    • Experience with tools like Terraform or Ansible for cloud infrastructure automation.
                    • Integration of security practices into the DevOps process.Hours: Monday - Friday, 8:00AM - 4:30PMLocation: 820 Follin Lane, Vienna, VA 22180 - 5510 Heritage Oaks Drive Pensacola, FL 32526 - 141 Security Drive Winchester, VA 22602 About Us Navy Federal provides much more than a job. We provide a meaningful career experience, including a culture that is energized, engaged and committed; and fierce appreciation for our teams, who are rewarded with highly competitive pay and generous benefits and perks. * Best Companies for Latinos to Work for 2024* Computerworld Best Places to Work in IT* Forbes 2024 America's Best Large Employers* Forbes 2023 The Best Employers for New Grads* Fortune Best Workplaces for Millennials 2023* Fortune Best Workplaces for Women 2023* Fortune 100 Best Companies to Work For 2024* Military Times 2023 Best for Vets Employers* Newsweek Most Loved Workplaces * Ripplematch Campus Forward Award - Excellence in Early Career Hiring* Yello and WayUp Top 100 Internship ProgramsFrom Fortune. 2024 Fortune Media IP Limited. All rights reserved. Used under license. Fortune and Fortune Media IP Limited are not affiliated with, and do not endorse products or services of, Navy Federal Credit Union.Equal Employment Opportunity: Navy Federal values, celebrates, and enacts diversity in the workplace. Navy Federal takes affirmative action to employ and advance in employment qualified individuals with disabilities, disabled veterans, Armed Forces service medal veterans, recently separated veterans, and other protected veterans. EOE/AA/M/F/Veteran/Disability EOE/AA/M/F/Veteran/DisabilityHybrid Workplace: Navy Federal Credit Union is a hybrid workplace, and details will be discussed during your interview process.Disclaimers: Navy Federal reserves the right to fill this role at a higher/lower grade level based on business need. An assessment may be required to compete for this position. Job postings are subject to close early or extend out longer than the anticipated closing date at the hiring team's discretion based on qualified applicant volume. Navy Federal Credit Union assesses market data to establish salary ranges that enable us to remain competitive. You are paid within the salary range, based on your experience, location and market positionBank Secrecy Act: Remains cognizant of and adheres to Navy Federal policies and procedures, and regulations pertaining to the Bank Secrecy Act.

Keywords: Navy Federal Credit Union, Wheaton-Glenmont , Enterprise Security Principal Architect (ETS), Professions , Vienna, Maryland