Job Description
Position Type: RegularYour opportunity At Schwab, you are empowered to make an impact on your career. Here, innovative thought meets creative problem solving, helping us “challenge the status quo” and transform the finance industry together. The Schwab Cybersecurity Services (SCS) organization is a centralized 1st Line of Defense Center of Excellence (COE) that provides security services to advance Schwab’s security posture and enhance the protection of Schwab’s critical assets. The Security Design team handles the Firm’s security strategy and security architecture vision and development. We drive and synchronize security strategies aligned with technology and business priorities along with validating future directions through security research and innovation. In this role the Architect Lead will have responsibility for identifying, defining, developing, leading security technology strategy across a broad portfolio of security and related technology systems, and the assessment of new and emerging security technologies at the very large enterprise scale. As a senior member of the team you will engage and partner with senior leaders across the organization leveraging your extensive background in (managing / delivering / implementing / architecting) security technologies combined with expertise in organizational and cross-functional communication to develop security strategy, influence roadmaps, solution adoption, champion strategic opportunities / execution plans with the aim to improve security capabilities, reduce risk and position forward looking platform security enhancements. Responsibilities include, but not limited to: Responsible for defining an architectural strategy and design/implementation for large complex solutions, which aligns with the enterprise architecture strategy, technology, and platform choices Works with Domain Architect/Product Manager/Owner to plan and prioritize technology focused backlog items for the architecture runway to enable business epics/features and expand into new opportunities One aspect of this role will be focusing on Product Security. This area will involve analysis and direction of application development within Cybersecurity applying a broad domain of security expertise to security focused development for applications in the cloud and in the data center. Describes the solution intent and the associated operating environment, determining the primary systems/subsystems and their interfaces, defining non-functional requirements and architectural runway to support new epics/features and expand into new opportunities Ensures solutions are fit for purpose and use by working with stakeholders, vendors/service providers, and evaluating the impact of strategic design decisions Contributes to best practices, standard templates, and the architecture roadmap for security domains. Works across business and technology to interpret business, technology and threat drivers, to develop practical security capabilities Clarifies the architecture for the development teams to support implementation, and provides solution options to resolve any architectural impediments Performs design reviews to ensure all non-functional requirements for a solution are sufficiently met (e.g. security, performance, maintainability, scalability, usability, and reliability) Develop security patterns, standards, and architectural decision records to ensure Schwab data at rest, in motion or in use is properly secured Liaises with other security architects and security practitioners to share best practices and insights What you have Required 4-year college/university degree required Minimum 10 years of experience designing, building, and managing security infrastructure or solutions as well as, application development experience – cloud native, distributed/hybrid deployment models This includes. Knowledge of multiple security domains, experience with customer authentication processes – online properties and voice Detailed understanding of the security implications of authentication workflow decisions/processes – document risks, evaluate remediation options and present results to tech leaders as well as executive level. Has demonstrated flexibility within a variety of changing situations, while working with individuals and groups. Experience managing, developing and nurturing a team of senior engineers and architects, working with limited supervision, working well with others in a globally diverse IT environment Preferred Experience with assessment, development, implementation, integration, optimization, and documentation of a comprehensive and broad set of security technologies and processes in on premise, public and private cloud environments Strong knowledge of enterprise security concepts/frameworks and products, secure design principles and best practices Framework knowledge: NIST 800-53, CIS Benchmarks, ISO 27000 series, COBIT, etc. CISSP, CSSLP certification preferred. Other Information Security oriented certifications a plus In addition to the salary range, this role is also eligible for bonus or incentive opportunities. What’s in it for you At Schwab, we’re committed to empowering our employees’ personal and professional success. Our purpose-driven, supportive culture, and focus on your development means you’ll get the tools you need to make a positive difference in the finance industry. Our Hybrid Work and Flexibility approach balances our ongoing commitment to workplace flexibility, serving our clients, and our strong belief in the value of being together in person on a regular basis. We offer a competitive benefits package that takes care of the whole you – both today and in the future: 401(k) with company match and Employee stock purchase plan Paid time for vacation, volunteering, and 28-day sabbatical after every 5 years of service for eligible positions Paid parental leave and family building benefits Tuition reimbursement Health, dental, and vision insurance