Principal Cybersecurity IAM Architect
Discover. A brighter future.
With Discover, you’ll have the chance to make a difference at one of the world’s leading digital banking and payments companies. From Day 1, you’ll do meaningful work you’re passionate about, with the support and resources you need for success. We value what makes each employee unique and provide a collaborative, team-based culture that gives everyone an opportunity to shine. Be the reason millions of people find a brighter financial future, while building the future you want, here at Discover.
Job Description
We are looking for progressive minded, innovative Principal Cybersecurity IAM Architect, who can whiteboard a solution, and possess strong engineering skills to help deliver business outcomes. The Principal Cybersecurity IAM Architect will be part of the Cybersecurity Architecture Team focused on helping design and mature, innovative and cutting edge security architecture capabilities and build-in practical security in enterprise initiatives. As a Principal Cybersecurity Architect you will provide technical thought leadership for Identity and Access Management product domain, assist with vision and strategy and is expected to solve complex security problems. You will be integral in ensuring security is designed and integrated into hybrid cloud services, aligning business needs with technology and doing so in a manner which ensures security is built-in. You will participate in the decision-making processes related to particular security domain and relevant cloud services, have an opportunity to influence implementation of sound architectural and engineering principles and best practices. S/he will be responsible for identifying business use cases for technical capabilities, reducing technical debt, leading and conducting hands-on evaluations and developing value proposition for new products and services. You will lead initiatives designed to share knowledge across teams. S/he will act as the ambassador and technical representative for Cybersecurity while engaging with other technical leaders throughout organization to design and implement digital transformational solutions.
This individual will be expected to work closely with Cybersecurity Product Managers, Product Owner, Engineers, and users of Cybersecurity technologies, Domain Architects, Software Engineers as well as business users to champion and help deliver and mature security posture. The ideal candidate will have also have business acumen, a sound understanding of the risk management practices with the ability to think, operate and balance priorities in extreme dimensions—strategic and tactical, long-term and near-term. This individual will also be a strong proponent and practitioner of infrastructure as code practices.
This is an excellent opportunity for someone who is a self-starter, strong proponent of building in user experience in IAM designs, results oriented, loves to solve problems, and loves to enable secure business practices.
Responsibilities:
- Acts as the principal advisor to upper management in Cybersecurity matters, and protection, detection and threat prevention capabilities. Creates Cybersecurity architecture strategy in alignment with business and technology objectives.
- Provides oversight and technical leadership across all Cybersecurity functional domains to ensure confidentiality, integrity, and availability of all systems. Articulate cybersecurity architecture vision, security strategies and risk implications to key stakeholders to guide leadership decision-making
- Researches, designs and integrates new cybersecurity solutions, and determine scope, legal and criticality impact in the environment
- Validates and certifies current and future state architectural models to assess potential impact across all enterprise systems.
- Works closely with management and the engineering groups to define the strategic direction of the department and promote resilient engineering and data analytics practices
- Oversees Cybersecurity engineering projects, initiatives and analytics to ensure complete and timely delivery of key department objectives .
- Provides guidance and advocacy regarding project prioritization and technology investment direction for Cybersecurity.
- Provides guidance and advocacy regarding project prioritization and technology investment direction for Cybersecurity.
- Builds and maintains effective relationships with management, peers, project managers and internal customers.
- Maintains in-depth knowledge of engineering next-gen designs, and security trends and threats. Prepares reports, technical presentation and analytics visualization for management decision-making. Resolves and remediates security issues and/or vulnerabilities. Ensure compliance to audit, regulatory and legal requirements.
- Sets direction, organizes and enable collaboration across cross-functional departments. Provides strong leadership and direction to team members. Coaches and mentors other professional staff members.
Minimum Qualifications:
- High school diploma or GED
- 8+ years of experience in information security or related field
Preferred Qualifications
- Bachelor's degree in information security, information technology, or related field
- Strong designing and engineering several of the following modern hybrid-cloud based Identity and Access Management solutions covering Identity and Directory Services, Privileged Access Management, Identity Lifecycle, Identity Governance, Multi-Factor Authentication, Credential Management, etc.
- Strong experience with several authentication and directory services protocols (e.g. FIDO, OIDC, SAML, LDAP/HDAP, ADFS).
- Strong problem solving and analytical skills; able to quickly digest any issue/problem encountered and recommend an appropriate solution.
- Possess ability to envision IAM capabilities needed based on business drivers and capabilities gaps.
- Have experience working in DevOps environment, automation first mindset, ability to script/code in Python or similar languages and familiarity working with APIs.
- Experience in executing Zero Trust Authentication strategies.
- Have strong knowledge of IAM capabilities in AWS, GCP, and Azure.
- Have experience of building current and future state architectures, threat models, leveraging agile methodologies.
- Knowledge of container platforms and service mesh.
- Knowledge payment services compliance and cyber security frameworks (NIST SP800-63, PCI DSS).
#LI-LJ1
What are you waiting for? Apply today!
The same way we treat our employees is how we treat all applicants – with respect. Discover Financial Services is an equal opportunity employer (EEO is the law). We thrive on diversity & inclusion. You will be treated fairly throughout our recruiting process and without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status in consideration for a career at Discover.