Cyber Security IAM Architect
Regions Bank
- Hoover, AL
- Permanent
- Full-time
- Develops and establishes a strategic cyber security architecture and strategic vision, including standards and frameworks that are aligned with the overall business and Regions’ information technology strategy
- Provides advisory and consultative services to businesses, information technology groups, and cyber security senior leadership
- Works closely with Enterprise Architecture and Application Development groups to enhance the security posture of new and existing systems
- Designs cyber security architecture, evaluates and mitigates potential risk, and approves implementation of systems and applications into production
- Performs assessments using the National Institute of Standards and Technology (NIST) Cyber Security Framework and the Federal Financial Institutions Examination Council (FFIEC) Cyber Assessment Tool to identify gaps and remediate deficiencies
- Ensures systems and applications are implemented with compensating controls to meet regulatory requirements (e.g. GLBA, SOX, HIPPA, FFIEC, etc.) as well as other organizational compliance (PCI) requirements
- Tracks metrics for compliance to internal cyber security standards set by application and system owners
- Provides consultative services related to large business projects
- May lead the work of junior architects and evaluate needs, assisting in the development of necessary skills and technical knowledge
- Bachelor’s degree in Computer Science, or related field
- Seven (7) years of experience in cyber security, with a focus on software development, secure software development lifecycle (SDLC), or security architecture
- Experience in the design and implementation of cyber security solutions
- Ability to effectively evaluate risk vs. reward
- Ability to independently problem solve with sound judgement
- Ability to translate complex technical information across all levels of the organization through communications and/or presentations
- Ability to work in a team environment when applicable
- Advanced knowledge of risks associated with virtualization and cloud-based computing and the impact of those technologies on an organizations security posture
- Advanced knowledge of security principles, solutions, tools, methodologies, and techniques
- Proficiency in Microsoft Office (Excel, Word, PowerPoint, Outlook, etc.)
- Strong project management skills
- Strong verbal, written communication, and organizational skills
- Strong work ethic and self-motivation
- Develops and maintains identity access management capabilities with AWS and Azure
- Develops and maintains strategic identity access management capabilities such as secrets management, DNS, azure active directory, Okta
- Serves as Identity Access Management security subject-matter expert and provides advisory and consultative services to businesses, information technology groups, and cyber security senior leadership
- Works closely with Security/Enterprise Architecture and Application Development groups to enhance the security posture of areas related to IAM
- Ten (10) years of experience in cyber security, with a focus on cloud IAM as well as various IDP’s
- Five (5) years of hands on experience with Hashicorp Vault, Terraform, AWS, Azure
- Experience in the design and implementation of IAM solutions for both on-premises and cloud environments
- Paid Vacation/Sick Time
- 401K with Company Match
- Medical, Dental and Vision Benefits
- Disability Benefits
- Health Savings Account
- Flexible Spending Account
- Life Insurance
- Parental Leave
- Employee Assistance Program
- Associate Volunteer Program