Who we are looking for

The State Street Cyber Architecture & Engineering (part of Global CyberSecurity team) is looking for a VP level Cyber Security Application Assurance Engineer with excellent intellectual and analytical capabilities, entrepreneurial problem-solving skills, strong communications, and influencing capabilities. You will work on consulting with multiple IT application development lines, as well as business owners to test that security has been coded properly into their environments at the build point. You will help make sure have build their applications with the agreed on security architecture, and their deployment CI/CD pipeline results in secure code, not code that we need to secure. You should have a passion for effecting change across the organization. This role will have a broad range of responsibilities and security code reviews, design, and redesign for scale.

What you will be responsible for

As a Cyber Security Application Assurance Engineer, you will:

• Consult with multiple IT Application Development and business areas to assure security build for scale and assure the building of zero trust code to enhance end-to-end layered security maturity.
  • Be part of long-term security strategy development and execution within the Security Architecture practice.
  • Exercise experience and influence to make well-informed decisions for build vs. buy debate within GCS and within IT solutions.
  • Mentor, coach, and guide junior talent to help create a pool of healthy subject matter experts.
  • Assist in architecting and implementing highly scalable and secure enterprise solutions
• Work as a hands-on technical leader with a good understanding of cloud-native concepts and tradeoffs.
• Project leadership
  • Oversee implementation of multiple key initiatives within IT and the business, working closely with line management responsible for executing change.
  • Work closely with functional areas at state street to develop plans and materials related to standard security NFR and validation process.

What we value

These skills will help you succeed in this role, the ability to:

• Demonstrated resilience and tenacity to keep stakeholders energized and committed to journey throughout the change lifecycle, managing fatigue, and sticking with the change to realize expected business benefits.
• Strong communication skills to promote critical wins and new behaviors throughout the organization.
• Collaborative leadership and work style with the ability to effectively interact with and earn the trust of peers, development teams across the organization
• Project and process management skills, including proven ability to manage multiple projects simultaneously.
• Self-starter with a keen sense of ownership and commitment to work, and passion for delivering results.

Education & Preferred Qualifications

• Bachelor’s or MS degree.
• 5-10 years’ experience with
• Designing, deploying, and maintaining multiple automated scripted and programmed code scanning tools within a CI/CD Agile pipeline.
  • PKI infrastructure, security protocols, Zero trust networking, routing, and networking segmentation.
  • Working with scaling systems to billions of secure transactions while maintaining SLA and performance.
  • Access controls using Active Directory, AAD, and IDP
  • Containerization and its security challenges
  • Designing and microservices management using Kubernetes
  • Designing and understand DR scaling and resilience challenges
  • Expertise with Splunk and other data/log aggregation tools
  • Strong coding skills, esp in any of Java, C, C++, .net, Python
  • Strong CI/CD pipeline skills in such tools as Jenkins, Git(hub or lab), Jira, or similar.
• Strong open source skills.