Financial Services Senior​/Enterprise Security Architect; ATL, KC, CHI or NY

Company

Federal Reserve Bank of Atlanta. This role can be based out of our ATL, KC, CHI or NY locations. Federal Reserve Financial Services (FRFS) delivers a suite of payments services to financial institutions, the United States Treasury, United States households, and facilitates liquidity movement for both national and international financial markets. Learn more about us here: https://(Use the "Apply for this Job" box below)./

The selected candidate will reside within a reasonable commuting distance defined by the employing Reserve Bank and will work full-time onsite.

We are looking for qualified, experienced Information Security Architects that have deep expertise in one or more of the following areas:

• Infrastructure Security Architecture (e.g. network, system/compute, and middleware stacks) including designing and guiding the implementation of secure connectivity solutions between on-premises datacenters, cloud environments, and customer systems.
• IAM Architecture Security (e.g. MFA, IdP, Secrets Management, Certificates, OAuth/SAML) including designing and guiding the implementation of modern, secure PKI infrastructures and certificate management systems.
• Application and API Security Architecture (e.g. threat modeling, application code security, supply chain security, API authentication/authorization) including direct engagement with Solution Architecture / application development teams and deploying robust encryption strategies using modern techniques to protect sensitive financial data in transit and at-rest.
• Cloud and Container Security (preferred but not required) including infrastructure-as-code, serverless, container, and securing hybrid cloud/on-premise solutions.

As a member of the FRFS Technology team, you will be contributing to the vision, strategy, values, and priorities that help the FRFS enterprise achieve its mission. You will be expected to think critically – express curiosity and a desire to understand while having empathy for others’ positions. Security Architects exceed delivery expectations and foster a culture of excellence to develop and maintain secure infrastructure and services, ensuring alignment with Federal Reserve Financial Services’ strategic objectives and compliance with industry regulations.

• Maintains expert-level knowledge of emerging technology trends and utilizes this knowledge to design innovative solutions that support and drive business objectives and technology roadmaps.
• Maintains expert-level knowledge of the current industry threat landscape as well as threats applicable to specific FRFS products, solutions, or technologies.
• Leads establishment and maintenance of security controls and compliance measures, ensuring alignment with industry regulations and organizational policies.
• Leads and/or participates in developing policies, standards, guidelines, detailed implementation patterns, and procedures to identify and reduce risk in partnership with application development and operational teams.

• Provides expert-level leadership on assignments to develop target logical and technical security architectures for products and solutions.
• Applies comprehensive knowledge to review and align product choices to ensure that security architecture standards, service quality, security, scalability, and cost efficiency goals are met.
• Serves as primary lead on security architecture reviews of products and systems to evaluate and ensure that the architecture being applied meets policies, principles, standards, and business/technology needs.
• Conducts security assessments of internal systems, applications, or third-party products as part of continuous monitoring and risk management processes.
• Evaluates current state architectures to identify security weaknesses and opportunities for improvements through threat modeling analysis, control assessments, and technical application assessments.

• Serves as subject matter expert to collaborate with development, operations, and security teams to integrate security services into the application development and deployment processes. Directly influences security improvements…