Director, Security Architecture

Fidelity Investments has a phenomenal opportunity to blend a passion for security along with deep technical experience. As a member of Workplace Investments (WI) Security Architecture you will have the opportunity to drive secure and compliant business solutions in a hybrid cloud environment. You collaborate with product teams and architects throughout the entire product development lifecycle—from inception to delivery—to provide solutions and security guidance. Your focus will be on ensuring the adoption of security standards, policies, and patterns. We encourage you to collaborate across business units and to engage with cybersecurity teams to understand emerging security changes, their impact on business, and drive essential changes with respective product owners.

The Team

WI Security Architecture operates within Fidelity Enterprise Architecture and are tasked with laying a solid foundation for Workplace Investments to secure customer and associate interactions and data. We support the WI Customer Protection Center of Excellence and teams within WI and across Fidelity to collaboratively shape the security architecture for customer identity, authentication, authorization, fraud mitigation, cloud security and data privacy.

Impact:

• Leave a lasting impact on Fidelity’s next-generation security modernization.

• Coach and grow with the WI Security Architecture team.

• Contribute to Fidelity’s next generation of digital capabilities.

The Expertise and Skills You Bring:

• 10+ years of industry experience in building/designing/architecting distributed systems and applications.

• Ability to communicate and collaborate effectively with Fidelity business partners to craft product strategy, roadmap, and implementation approaches.

• Deep cloud knowledge applying security principles, access controls, encryption standards, and secure protocols in AWS and Azure.

• Extensive technical knowledge and experience within information security in areas such as: cloud security, containerization, database security, encryption, authorization, authentication, and software development.

• Significant hands-on experience in application security solution architecture, technical design, and programming. Familiar with common software design patterns, methodologies, and processes.

• Experience on AWS services such as EKS, S3, IAM, VPC, etc., and Azure service such as AKS, Storage accounts, Service Bus, Key Vaults, App services, VMs, etc.

• Experience with IAM and protocols such as OAuth, OIDC, SAML, RBAC, ABAC, PBAC and familiarity with industry security regulations/standards (e.g., NIST, ISO, GDPR, HIPAA).

• Ability to playing a key role in resolving technical roadblocks involving multiple technologies and using well-reasoned proposals to Influence and resolve complex business problems and apply risk mitigation strategies.

Certifications preferred:

• Azure/AWS Certifications

• ISC2 Certifications