Principal Security Architect

Job Posting Description

Are you curious, motivated, and forward-thinking? At FIS, you’ll have the opportunity to work on some of the most challenging and relevant issues in financial services and technology. Our talented people empower us, and we believe in being part of a team that is open, collaborative, entrepreneurial, passionate and above all fun.

About the team

We're seeking a Principal Security Architect to play a crucial role within our Security Department. This position is responsible for designing and maintaining the infrastructure that safeguards our systems, network, applications, and data against cyber threats. This role requires a combination of technical skills, problem-solving aptitude, and cybersecurity expertise.

What you will be doing:

• Serve as a Security Architect specializing in DevSecOps, ensuring the security and resilience of AWS cloud infrastructure and compute environments.
• Design and implement security solutions for AWS services, ensuring compliance with industry standards and regulations.
• Continuously analyze and strengthen security posture across the AWS cloud infrastructure.
• Automate the provisioning and configuration of security resources in the cloud environment.
• Author Infrastructure-as-Code templates with security guardrails for AWS infrastructure.
• Integrate robust security measures seamlessly into development and deployment pipelines, combining principles of development, security, and operations.
• Collaborate with cross-functional teams to integrate security into the development lifecycle.
• Provide strategic guidance and technical leadership on security best practices.
• Develop and enforce security policies and practices specifically tailored to containerized and microservices-based applications.
• Establish robust API security protocols, including authentication, authorization, and rate-limiting mechanisms, to safeguard inter-service communication in microservices architectures.
• Integrate security into service mesh frameworks to ensure secure service-to-service communications.
• Implement runtime security monitoring for microservices to detect and respond to anomalies or malicious activity.
• Conduct regular security assessments of container images, orchestration systems, and microservices deployments.
• Identify and deliver enterprise-wide security initiatives, standardizing security processes and protocols across the organization.
• Stay current with emerging threats, security technologies, and industry trends.
• Guide remediation efforts and security rollouts enterprise-wide.
• Be a champion and advocate of cybersecurity within the company.

What you bring:

• 10+ years of experience in information security, with at least 5 years focusing on cloud security.
• Deep understanding of AWS security services and best practices.
• Proficiency in Infrastructure-as-Code tools like Terraform, CloudFormation and Ansible.
• Strong scripting skills for automating security tasks and integrating with DevOps tools.
• Proficiency in container and microservices security concepts.
• Working knowledge of CI/CD pipelines with GitHub Actions, Jenkins, etc.
• Proficiency in using version control systems, particularly GitHub, including experience with branching, merging, and handling pull requests (PRs).
• Possess extensive knowledge across multiple security domains, such as DevSecOps, Vulnerability Management, Container security, Data protection, Identity and Access management, and Threat Intelligence. Capable of integrating cross-domain security strategies to deliver robust protection against diverse cybersecurity threats.
• Extensive knowledge of compliance standards: SOC2, ISO 27001, ISO 27701, CSA CCM, NIST CSF, NIST 800-53, US Data Privacy, and GDPR.
• Strong communication and leadership skills, with the ability to collaborate effectively with diverse teams.
• Familiarity with DevOps and Agile methodologies.
• Experience in application security and familiarity with SAST, DAST, and SCA tools is a plus.

Certifications Preferred

• CCSP - Certified Cloud Security Professional
• CISSP - Certified Information Systems Security Professional
• AWS Certified Solutions Architect Associate / Professional
• AWS Certified Security Specialty
• AWS Certified DevOps Engineer
• Certified Kubernetes Security Specialist (CKS

What we offer you:

• A multifaceted job with a high degree of responsibility and a broad spectrum of opportunities
• A broad range of professional education and personal development possibilities – FIS is your final career step!
• A competitive salary and benefits
• A variety of career development tools, resources and opportunities

Privacy Statement

FIS is committed to protecting the privacy and security of all personal information that we process in order to provide services to our clients. For specific information on how FIS protects personal information online, please see the Online Privacy Notice.

Sourcing Model

Recruitment at FIS works primarily on a direct sourcing model; a relatively small portion of our hiring is through recruitment agencies. FIS does not accept resumes from recruitment agencies which are not on the preferred supplier list and is not responsible for any related fees for resumes submitted to job postings, our employees, or any other part of our company.

#pridepass