Sr Security Architect

Location: For Those Who Work At Home - Various, Ohio 44145 Use skills, experience and talent to help Key grow an effective information security program by analyzing, assessing, and helping mitigate security issues. Applicant must be able to demonstrate the ability to: Incorporate security requirements necessary to protect the organization’s mission and business processes in all aspects of enterprise architecture including reference models, solution architectures, as well as in the systems supporting those missions and business processes. Translate technology constraints and environmental conditions (e.g., law and regulation) into system and security designs and processes. Applicant must have a technical background across a wide range of security disciplines and solutions and must have excellent communication, presentation, writing, and customer interface skills. Essential job Functions Abilities Advise the Chief Information Security Officer and senior management on a range of security-related issues. Serve as the primary liaison between the Enterprise Architecture and Information Security teams and enable their alignment. Coordinate with system owners, common control providers, and security engineers on the implementation of security controls. Knowledge of: Authentication, authorization, and access control methods. Computer, network communication, and encryption methods, protocols, principles and concepts. Cyber defense and vulnerability assessment tools and their capabilities. Enterprise information security architecture. Awareness of new and emerging information technology (IT) and cybersecurity technologies. Cryptography, encryption key management concepts and current and emerging data encryption capabilities. Information classification program and procedures for information compromise. Integrating the organization’s goals and objectives into the architecture and translating operational requirements into protection needs. Frameworks and methodologies for enterprise security architecture and service management. Skills: Designing countermeasures to identified security risks. Determining how a security system should work and how changes in conditions, operations, or the environment will affect these outcomes. Identify cybersecurity and privacy issues that stem from connections with internal and external customers and partner organizations. Tasks: Define and document security requirements for business solutions throughout their acquisition lifecycle to enable a security and privacy posture that is consistent with the organization's information security risk tolerances utilizing pre-existing or planned framework of cybersecurity controls and services. Identify critical infrastructure systems with information communication technology that were designed without system security considerations. Required Qualifications Bachelor’s degree or equivalent work experience. Professional security certification desired (CISSP, CISM, CISA, etc.). Basic understanding of security threats and knowledge of financial industry. Strong risk-based analysis and decision-making skills. Proven ability to identify and implement process improvement opportunities. Results oriented, a team player, and self-starter with ability to work with general direction. Ability to manage competing priorities. COMPENSATION AND BENEFITS This position is eligible to earn a base salary in the range of $92,000 to $172,000 annually depending on location and job-related factors such as level of experience. Compensation for this role also includes eligibility for short-term incentive compensation and deferred incentive compensation subject to individual and company performance. Please click here for a list of benefits for which this position is eligible. Key has implemented a role-based Mobile by Design approach to our employee workspaces, dedicating space to those whose roles require specific workspaces, while providing flexible options for roles which are less dependent on assigned workspaces and can be performed effectively in a mobile environment. As a result, this role may be Mobile or Home-based, which means you may work primarily either at a home office or in a Key facility to perform your job duties. Job Posting Expiration Date: 05/09/2024 KeyCorp is an Equal Opportunity and Affirmative Action Employer committed to building a diverse, equitable and inclusive culture. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, veteran status or other protected category. Qualified individuals with disabilities or disabled veterans who are unable or limited in their ability to apply on this site may request reasonable accommodations by emailing HR_Compliance@keybank.com. #LI-Remote