Sr. Security Architect in Various at Key Bank- Corporate

Date Posted: 3/1/2018

Job Snapshot

  • Employee Type:
  • Location:
    For those who work at home, OH
  • Experience:
    Not Specified
  • Date Posted:
  • Job ID:

Job Description

Job Brief:

The successful senior information security architect is experienced across a breadth of technologies with a focus on security and has excellent communication skills. This individual is able to architect complex technology solutions to meet business requirements while utilizing or creating architectural patterns that comply with KeyBank’s information security policies, standards and strategic direction.

Skills and Competencies
Key technical skills include:
Five or more years’ experience in:

  • Security architecture, demonstrating solutions delivery, information security principles and emerging technologies, designing security solutions. This includes continuous monitoring and working with information security teams to ensure improvements to those solutions over time.
  • Consulting and engineering in the development and designing of security best practices and implementation of solid security principles across the organization to meet business goals along with customer and regulatory requirements.
  • Security considerations of cloud computing: including data breaches, weak authentication, account hijacking, malicious insiders, third parties, APTs, data loss and web-based attacks.
  • Identify and access management (IAM): The framework of security policies and technologies that limit and track the access of those in the organization to sensitive technology resources.
Experience with and knowledge of:

  • Programming languages, API/Web services, scripting languages and relational database management systems (RDBMS) such as MS SQL Server or Oracle.
  • Windows, UNIX and mainframe.
  • Relevant National Institute of Standards and Technology (NIST) standards, along with ISO27001, COBIT and COSO familiarization.

Required Qualifications:

  • Education: BS in information security, information technology, engineering, or related areas.
  • A Master’s degree in an IT field is a plus, and a master’s in security is an even bigger plus.
Possible Certifications Requirement:

  • Certified Information Systems Security Professional (CISSP)
  • Information Systems Security Architecture Professional (ISSAP)
  • Certified Information Security Manager (CISM)
  • Certified Information Systems Auditor (CISA)

Experience: 5+ years of information security architecture experience, including 2+ years of complex technical environment experience.

Competencies and Skills:

  • In-depth expertise and proven leadership in your area(s) of technology.
  • Ability to collaborate with other leaders who can supplement your knowledge in other areas.
  • Ability to capitalize on work already completed, using experience from similar situations and adapting them to the current situation.
  • Have and maintain a global view of alternative solutions available on the market and be able to discuss and compare them with current state solutions.
  • Understand the costs and business impacts of the technologies and solutions you propose, keeping business benefits and the client’s priorities paramount.
  • Exceptional communication skills with diverse audiences.
  • Strong critical thinking and analytical skills.
  • Strong leadership, project and team-building skills, including the ability to lead teams and drive projects and initiatives in multiple departments.
  • Demonstrated ability to identify risks associated with business processes, operations, information security programs and technology projects.
  • The ability to be the enterprise security subject matter expert who can explain technical topics to those without a technical background.
  • Deep understanding of the conflicts that often exist between business user experience and security.
  • Ability to promote and champion the importance of information security to business partners to address perceived business risks.
  • Ability to understand and communicate that security is not a cost, but a business enabler, helping to achieve business objectives within the risk appetite of the bank.
  • Ability to listen and learn.
  • Lead diplomatically.
  • Discuss design principles and constraining factors and be prepared to defend the design rationale behind your solution.
  • Common sense approach to planning and design of a solution and match it to the client’s requirements.
  • Ability to keep an open mind.

Essential Job Functions:

  • Design enterprise-class security systems for a production environment.
  • Align standards, frameworks and security with overall business and technology strategy.
  • Identify and communicate current and emerging security technologies for current and emerging security threats.
  • Design security architecture elements to mitigate threats as they emerge.
  • Create solutions that balance business requirements with information and cyber security requirements.
  • Identify security design gaps in existing and proposed architectures and recommend changes or enhancements.

KeyCorp's roots trace back 190 years to Albany, New York. Headquartered in Cleveland, Ohio, Key is one of the nation's largest bank-based financial services companies, with assets of approximately $134.5 billion at March 31, 2017. Key provides deposit, lending, cash management, insurance, and investment services to individuals and businesses in 15 states under the name KeyBank National Association through a network of more than 1,200 branches and more than 1,500 ATMs. Key also provides a broad range of sophisticated corporate and investment banking products, such as merger and acquisition advice, public and private debt and equity, syndications, and derivatives to middle market companies in selected industries throughout the United States under the KeyBanc Capital Markets trade name. KeyBank is Member FDIC.

Key Technology and Operations (KTO) is Key Bank’s shared services organization for technology, operational, and servicing functions supporting business partners and clients across all lines of business. Within the overall organization, KTO provides efficient, reliable and secure technology; creates an effective variable cost technology delivery model that maximizes the return on IT spend; orchestrates the efficient use of corporate information and technology assets; and supports innovation that creates competitive distinction. KTO is effective and efficient in payment and deposit servicing, loan servicing, exception and dispute processing, investment and support services, sourcing and procurement, as well as enterprise-wide fraud prevention, investigations and operational support to human resources and the Bank’s BSA/AML program.


KeyCorp is an Equal Opportunity and Affirmative Action Employer committed to engaging a diverse workforce and sustaining an inclusive culture. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status.

JobID: 27864BR