Data Security Architect in Various at Key Bank- Corporate

Date Posted: 3/1/2018

Job Snapshot

  • Employee Type:
  • Location:
    For those who work at home, OH
  • Experience:
    Not Specified
  • Date Posted:
  • Job ID:

Job Description

Job Brief:

The Data Security Architect is a high-impact position within the Corporate Information Security Architecture department. This individual will be focused on designing and implementing our Data security architecture function. The ideal candidate will work across Corporate Information Security to assess our existing data estate, partner with our security engineering and IT support teams to define target state data distribution, persistence and control technologies and to identify and curate critical cyber security data models around threats, asset control, investment, assessment and risk.

Competencies and Skills:

  • Evaluate existing data domains, content, elements and consumers and document usage, criticality and ownership.
  • Define and drive population and adoption of critical data models and taxonomies for threat, control, asset, vulnerability, risk, investment and incident.
  • Partner with existing operations teams to ensure adoption of the taxonomies in day to day operational practice, all new build and refactoring of critical existing builds.
  • Understand requirements, level of detail and practical usability of existing and target data sets.
  • Establish and incubate common data models and vocabularies to enable assessment of control gap, control effectiveness, investment return and overall trending of spend to incident outcomes.
  • Acts as the technical representative for Corporate Information Security while engaging with other technical leaders throughout the Bank in design and implementation of cloud and cloud/hybrid based implementations and solutions.
  • Works with other technical organizations to choose appropriate technology solutions and facilitates complete integration in the enterprise environments.
  • Develops applicable security standards in partnership with other teams.
  • Identifies, recommends, coordinates and conducts informal/formal sessions to deliver timely knowledge to various teams regarding technologies, processes or tools.
  • Develops and coordinates strategies to increase data management knowledge throughout the Bank, as well as developing and mentoring more junior staff.
  • In-depth expertise in your area(s) of technology and take leadership in it.
  • Ability to collaborate with other leaders who can supplement your knowledge in other areas.
  • Ability to capitalize on work already done, using experience from similar situations and adapting them to the current situation.
  • Have and maintain a global view of alternative solutions available on the market and be able to discuss and compare them with your solution.
  • Understand the costs and business impacts of the technologies and solution you are proposing, keeping business benefits and the client’s priorities paramount.
  • Exceptional communications skills with diverse audiences.
  • Strong critical thinking and analytical skills.
  • Strong leadership, project and team-building skills, including the ability to lead teams and drive projects and initiatives in multiple departments.
  • Demonstrated ability to identify risks associated with business processes, operations, information security programs and technology projects.
  • The ability to be the enterprise security subject matter expert who can explain technical topics to those without a technical background.
  • Ability to find common ground between business users who focus on client experience and information security best practices.
  • Ability to promote and champion the importance of information security to business partners to address perceived business risks.
  • Ability to understand and communicate that security is not a cost, but a business enabler, helping to achieve business objectives.
  • Ability to listen and learn.
  • Lead diplomatically.
  • Discuss design principles and constraining factors and be prepared to defend the design rationale behind your solution.
  • Common sense approach to planning and design of a solution and match it to the client’s requirements.
  • Ability to keep an open mind.

Required Qualifications:

  • Bachelor’s or Master’s degree in Information Assurance, Computer Science, Information Systems or related field of study.
  • Experience with deployment orchestration, automation and security configuration management.
  • Possesses a strong data technology background with the ability to challenge or validate information models ad technology decisions from a position of knowledge and experience.
Certifications Requirements:

  • CISSP or similar industry qualification, open source project, security research (e.g., CAPEC, CVE, CEF, etc.) or design framework/patterns contribution, or other continuous learning examples in the information management of data & security spheres.

Experience: 8+ years of practical experience in IT field is required. 5+ years of direct information security experience in the security architecture area including 2+ years of data management technical environment experience.

Essential Job Function:

  • Unify, consolidate and maintain the various knowledge domains into a consolidated and cohesive data model that is used and consumed by IT developers, engineering and product teams with limited sharing of non-sensitive models to business consumers and developers outside Corporate Information Security.
  • Lead technical forums, serving as both a formal and informal mentor to share knowledge across Information Security and technologies teams.
  • Align standards, frameworks and security with overall business and technology strategy.
  • Identify and communicate current and emerging security technologies for current and emerging security threats.
  • Design security architecture elements to mitigate threats as they emerge.
  • Create solutions that balance business requirements with information and cyber security requirements.
  • Identify security design gaps in existing and proposed architectures and recommend changes or enhancements.

KeyCorp's roots trace back 190 years to Albany, New York. Headquartered in Cleveland, Ohio, Key is one of the nation's largest bank-based financial services companies, with assets of approximately $134.5 billion at March 31, 2017. Key provides deposit, lending, cash management, insurance, and investment services to individuals and businesses in 15 states under the name KeyBank National Association through a network of more than 1,200 branches and more than 1,500 ATMs. Key also provides a broad range of sophisticated corporate and investment banking products, such as merger and acquisition advice, public and private debt and equity, syndications, and derivatives to middle market companies in selected industries throughout the United States under the KeyBanc Capital Markets trade name. KeyBank is Member FDIC.

Key Technology and Operations (KTO) is Key Bank’s shared services organization for technology, operational, and servicing functions supporting business partners and clients across all lines of business. Within the overall organization, KTO provides efficient, reliable and secure technology; creates an effective variable cost technology delivery model that maximizes the return on IT spend; orchestrates the efficient use of corporate information and technology assets; and supports innovation that creates competitive distinction. KTO is effective and efficient in payment and deposit servicing, loan servicing, exception and dispute processing, investment and support services, sourcing and procurement, as well as enterprise-wide fraud prevention, investigations and operational support to human resources and the Bank’s BSA/AML program.


KeyCorp is an Equal Opportunity and Affirmative Action Employer committed to engaging a diverse workforce and sustaining an inclusive culture. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status.

JobID: 27863BR