Job Description

Who we are looking for

The Advanced Defensive - Architect is a member of a small team tasked with securing the firm's most critical network environments and applications.

The Advance Defensive Architect is responsible for designing, implementing, and monitoring the control posture for the firm’s most critical network environments and applications. This includes producing reference models, segments, solutions architecture, and advising teams as they build the system to ensure it is protected and aligns to required

Reports to: Advanced Defensive Architecture Managing Director

What you will be responsible for

• Executing the vision, strategy, and mission of the Advanced Defensive Architecture organization.
• Reduce State Street security risks by integrating controls aligned with the State Street’s goals and objectives into security architecture.
• Understand and prioritize essential system capabilities, and business functions that must be achieved by a system.
• Determine baseline system security requirements aligned to the criticality of the network environments and applications.
• Develop cybersecurity designs for systems and networks with multilevel security requirements, and that process multiple data classification levels.
• Support the Managing Director to understand, manage and reduce information security risks on behalf of executive leadership.
• Integrate cybersecurity requirements into comprehensive designs, policies and plans for systems and networks.
• Define acquisition life cycle cybersecurity architecture requirements and security engineering requirements.
• Determine if systems and architecture are consistent with cybersecurity architecture guidelines.
• Perform security reviews of the firm’s most critical network environments and applications.
• Identify gaps in security architecture of the firm’s most critical network environments and applications.
• Develop a prioritized cybersecurity risk management plan for the firm’s most critical network environments and applications.
• Determine and document the impact of new systems, software, and integrations on the system’s cybersecurity posture.
• Create system security architecture documentation, plans, and projects.
• Identify metrics and use these metrics to determine cybersecurity design and architecture effectiveness.

​ What we value

These experiences will help you succeed in this role:

• 5 years or more experience in Security Architecture, with at least 1 year in artificial intelligence and automation.
• Extensive experience translating requirements into security controls.
• Extensive experience performing security architecture analysis.
• Extensive experience in evaluating system designs for cyber risk and compliance with control frameworks and principles.
• Proven ability to successfully work remotely, travel when needed, and operate across multiple geographic time zones.
• Extensive experience designing, network architecture aligned to security principles and control frameworks.
• Experience with on-premises, colocation centers and cloud environments.
• Experience with app migrations from on-premises data centers to cloud platforms.
• Experience leveraging Cloud Security Posture Management (CSPM) and visibility tools.
• Experience with payment systems or classified network architecture.
• Experience in implementing network segmentation.
• Experience in coordinating efforts between stakeholders.
• Experience in presenting to executive (e.g., C-Suite) audiences.

This knowledge will help you succeed in this role:

• Knowledge of cyber security threat actors particularly their tactics, techniques, procedures, tradecraft, and noteworthy attacks.
• Knowledge of cybersecurity principles and practices, including defense in depth.
• Knowledge of computer network protocols.
• Knowledge of risk management processes.
• Knowledge of cybersecurity law, regulations, and industry best practices.
• Knowledge of system design tools and techniques.
• Knowledge of server administration and principles and practices.
• Knowledge of software engineering principles and practices.
• Knowledge of enterprise information technology (IT) architecture principles, practices and reference models.
• Knowledge of systems engineering processes, principles and practices.
• Knowledge of hardware and software reverse engineering tools and techniques.
• Knowledge of secure software development, deployment, and maintenance.

Education

• Bachelor’s Degree in computer science, cybersecurity, information technology, software engineering, information systems, or computer engineering.
• Security Architecture Certification (e.g., SABSA, ISSAP, Microsoft Cybersecurity Architect Expert, AWS Security Specialty).

Preferred qualifications

• Master’s Degree in computer science, cybersecurity, information technology, software engineering, information systems, or computer engineering
• Experience working with information security teams such as fusion centers, security operations centers, vulnerability assessment, vulnerability threat management, security incident management, cyber “hunt,” and big data analysis.
• Experience working with law enforcement agencies and external audit organizations for investigations, audits, and similar activities.
• Self-starter, self-motivated, and able to work independently with little oversight while managing a large, globally distributed team.
• Highly polished presentation skills, with the ability to simply and convincingly present technical issues to non-technical audiences.
• Able to develop and operate within a set financial budget.

Desired Outcomes

Design highly secure network segments and applications and guide and advise others to uplift the security of existing critical systems.

Salary Range:

$120,000 - $202,500 Annual

The range quoted above applies to the role in the primary location specified. If the candidate would ultimately work outside of the primary location above, the applicable range could differ.

Employees are eligible to participate in State Street’s comprehensive benefits program, which includes: our retirement savings plan (401K) with company match; insurance coverage including basic life, medical, dental, vision, long-term disability, and other optional additional coverages; paid-time off including vacation, sick leave, short term disability, and family care responsibilities; access to our Employee Assistance Program; incentive compensation including eligibility for annual performance-based awards (excluding certain sales roles subject to sales incentive plans); and, eligibility for certain tax advantaged savings plans.

For a full overview, visit https://hrportal.ehr.com/statestreet/Home

About State Street

Across the globe, institutional investors rely on us to help them manage risk, respond to challenges, and drive performance and profitability. We keep our clients at the heart of everything we do, and smart, engaged employees are essential to our continued success.

We are committed to fostering an environment where every employee feels valued and empowered to reach their full potential. As an essential partner in our shared success, you’ll benefit from inclusive development opportunities, flexible work-life support, paid volunteer days, and vibrant employee networks that keep you connected to what matters most. Join us in shaping the future.

As an Equal Opportunity Employer, we consider all qualified applicants for all positions without regard to race, creed, color, religion, national origin, ancestry, ethnicity, age, disability, genetic information, sex, sexual orientation, gender identity or expression, citizenship, marital status, domestic partnership or civil union status, familial status, military and veteran status, and other characteristics protected by applicable law.

Discover more information on jobs at StateStreet.com/careers

Read our CEO Statement

Job Application Disclosure:

It is unlawful in Massachusetts to require or administer a lie detector test as a condition of employment or continued employment. An employer who violates this law shall be subject to criminal penalties and civil liability.