Cloud Security Architect in Various at Key Bank- Corporate

Date Posted: 3/1/2018

Job Snapshot

  • Employee Type:
  • Location:
    For those who work at home, OH
  • Experience:
    Not Specified
  • Date Posted:
  • Job ID:

Job Description

Job Brief:

The Cloud Security Architect leads the design and development of innovative security architectures for protecting cloud workloads and data deployed into different types of cloud and cloud/hybrid systems. This position contributes to the overall enterprise cloud architecture and leads the security vision and strategy around cloud-based applications across all types (including Infrastructure, Platform and Software as a Service (IaaS/PaaS/SaaS). The Cloud Security Architect will serve as the central point of contact for Corporate Information Security and other technology teams within the Bank for all matters related to cloud security.

Competencies and Skills:

  • Architecting solutions within Microsoft Azure, Amazon Web Services (AWS) and preferably, other cloud Providers.
  • Assessment, development and implementation, operationalization and documentation of a comprehensive set of security technologies and processes (Secure software development [application security], data protection, cryptography, key management, identity and access management (AIM), network security, within SaaS, IaaS, PaaS, and other cloud environments.
  • Common and industry standard cloud-native / cloud-friendly authentication mechanisms (OAuth, OpenID, etc.).
  • Service-oriented architecture for cloud-based services.
  • Cloud security and governance tools, cloud access security brokers (CASBs) and server virtualization technologies.
  • Enterprise applications architectures.
  • Possess a firm understanding of the offerings within both Amazon Web Services (AWS) and Microsoft Azure platforms.
  • Based upon business requirements, design cloud-native architectures and patterns that will allow those requirements to be met with a minimal degree of risk to the Bank and with appropriate security controls.
  • Acts as the technical representative for Corporate Information Security while engaging with other technical leaders throughout the Bank in design and implementation of cloud and cloud/hybrid based implementations and solutions.
  • Works with other technical organizations to choose appropriate technology solutions and facilitates complete integration in the enterprise environments.
  • Develops applicable security standards in partnership with other teams.
  • Identifies, recommends, coordinates and conducts informal/formal sessions to deliver timely knowledge to various teams regarding technologies, processes or tools.
  • Develops and coordinates strategies to increase Cloud Security knowledge throughout the Bank, as well as developing and mentoring more junior staff.
  • In-depth expertise in your area(s) of technology and take leadership in it.
  • Ability to collaborate with other leaders who can supplement your knowledge in other areas.
  • Ability to capitalize on work already completed, using experience from similar situations and adapting them to the current situation.
  • Have and maintain a global view of alternative solutions available on the market and be able to discuss and compare them with the solution being proposed.
  • Understand the costs and business impacts of the technologies and solution you are proposing, keeping business benefits and the client’s priorities paramount.
  • Exceptional communications skills with diverse audiences.
  • Strong critical thinking and analytical skills.
  • Strong leadership, project and team-building skills, including the ability to lead teams and drive projects and initiatives in multiple departments.
  • Demonstrated ability to identify risks associated with business processes, operations, information security programs and technology projects.
  • The ability to be the enterprise security subject matter expert who can explain technical topics to those without a technical background.
  • Deep understanding of the conflicts that often exist between business user experience and information security.
  • Ability to promote and champion the importance of information security to business partners to address perceived business risks.
  • Ability to understand and communicate that security is not a cost, but a business enabler, helping to achieve business objectives.
  • Ability to listen and learn.
  • Lead diplomatically.
  • Discuss design principles and constraining factors and be prepared to defend the design rationale behind your solution.
  • Common sense approach to planning and design of a solution and match it to the client’s situation.
  • Ability to keep an open mind.

Required Qualifications:
  • Bachelor’s or Master’s degree in Information Assurance, Computer Science, Information Systems or related field of study.
  • Experience with deployment orchestration, automation and security configuration management.
  • Architecture of mobile platforms, solutions, integrated with cloud-based services (Preferred).
  • Detailed understanding of SSL/TLS protocols and certificate-based solutions (Preferred).
Certifications Requirements:
  • Cloud Security and Architecture related certification (Amazon AWS Certified Solutions Architect (Preferred).
  • Security industry certifications are required including but not limited to CISSP, CISM, etc.

Experience: 8+ years of practical experience in IT field is required. 5+ years of direct information security experience in the security architecture area including 2+ years of Cloud technical environment experience.

Essential Job Function:
  • Design and develop security architectures for cloud and cloud/hybrid based systems.
  • Represent Corporate Information Security in development and implementations of the overall enterprise cloud architecture.
  • Lead technical forums, serving as both a formal and informal mentor to share knowledge across Information Security and technologies teams.
  • Seek opportunities to continually improve on current solutions.

KeyCorp's roots trace back 190 years to Albany, New York. Headquartered in Cleveland, Ohio, Key is one of the nation's largest bank-based financial services companies, with assets of approximately $134.5 billion at March 31, 2017. Key provides deposit, lending, cash management, insurance, and investment services to individuals and businesses in 15 states under the name KeyBank National Association through a network of more than 1,200 branches and more than 1,500 ATMs. Key also provides a broad range of sophisticated corporate and investment banking products, such as merger and acquisition advice, public and private debt and equity, syndications, and derivatives to middle market companies in selected industries throughout the United States under the KeyBanc Capital Markets trade name. KeyBank is Member FDIC.

Key Technology and Operations (KTO) is Key Bank’s shared services organization for technology, operational, and servicing functions supporting business partners and clients across all lines of business. Within the overall organization, KTO provides efficient, reliable and secure technology; creates an effective variable cost technology delivery model that maximizes the return on IT spend; orchestrates the efficient use of corporate information and technology assets; and supports innovation that creates competitive distinction. KTO is effective and efficient in payment and deposit servicing, loan servicing, exception and dispute processing, investment and support services, sourcing and procurement, as well as enterprise-wide fraud prevention, investigations and operational support to human resources and the Bank’s BSA/AML program.


KeyCorp is an Equal Opportunity and Affirmative Action Employer committed to engaging a diverse workforce and sustaining an inclusive culture. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status.

JobID: 27865BR