Staff Security Architect – Identity & Privileged Access
Who we are looking forThe State Street Global Cybersecurity team is looking for a Staff Security Architect Identity & Privileged Access.
The Cybersecurity team delivers platforms, architecture, and tooling to help Cybersecurity teams make faster, more informed decisions as we work to secure State Street's digital footprint.
As a Staff Security Engineer Identity & Privileged Access on the Security Architecture Governance Engineering (SAGE) team, you will focus on protecting user identities and identity-based systems from cyber threats using a combination of security tools, processes, and best practices to effectively prepare for as well as detect and respond to identity-related threats.
What you will be responsible for Develop and drive the execution of identity threat research and proactive defense, employing architectural understanding, analytic skills, and engineering tools to secure the identity surface.
Experience designing, implementing, and managing IAM & PAM solutions Secure the design of Privileged Access Workstation (PAW), Privileged Session Management (PSM) and Dynamic Privileged Access (DPA) solutions to secure sensitive administrative tasks.
Develop strategies for network segmentation to enhance security for privileged accounts.
Lead the integration and deployment of PAM systems and other related technologies.
Proficient in designing and implementing network segmentation for enhanced security.
Experience in creating secure zones for privileged access and managing firewall policies.
Knowledge of Zero Trust security models and their application in network segmentation (ZTNA).
Deep understanding of PAM and credential vaulting best practices and technologies.
Experience in integrating PAM solutions with various IT systems and platforms and Familiarity with multiple PAM and Credential Vaulting tools and solutions.
Participate in regular security architecture reviews to help evolve the design and implementation of critical privileged access systems.
Relevant experience in ICAM, CIEM, and ITDR implementation, especially with Microsoft Active Directory, Azure, AWS, and other Cloud providers.
Knowledge of scripting, automation and security analytics, and attack path analysis tools.
Certifications like Microsoft Certified:
Azure Administrator Associate or AWS Certified Security - Specialty can be beneficial.
What we valueThese skills will help you succeed in this role Strong understanding of IAM and PAM technologies, credential vaulting, ITDR, and UEBA.
Good problem solving and analytical skills.
Virtual leadership experience with ability to effectively drive results, provide feedback/direction, and manage and build relationships with leaders and team members in a geographically dispersed team environment.
Knowledge and understanding of data organizing or structuring complex data across varied data sources.
Experience in security architecture, with a focus on hybrid and multi cloud solutions.
Education & Preferred Qualifications You have multiyear (>8 years) experience within Cybersecurity including SecOps, penetration testing, security analytics, threat hunting, and/or security architecture.
Bachelor's Degree in Cybersecurity, Computer Science, or related technical discipline, with >6 years of experience including security architecture and IAM architecture.
You have experience with security observability, network segmentation, and identity threat monitoring in hybrid cloud environments.
You have a proven ability to Independently drive transformational security projects cross-organization.
You have knowledge of security testing, network monitoring, and penetration testing tools and techniques, and with security analytics tools and platforms.
You are a strong communicator who is comfortable working cross-functionally, with a track record of delivering results and demonstrating strong ownership.
Preference for candidates who have had experience in security analytics, security research, offensive security, or advanced threat prevention teams.
Given that much activity will have to be centered in US ET hours, we are looking for a candidate located on the eastern seaboard.
Are you the right candidate? Yes!We truly believe in the power that comes from the diverse backgrounds and experiences our employees bring with them.
Although each vacancy details what we are looking for, we don't necessarily need you to fulfil all of them when applying.
If you like change and innovation, seek to see the bigger picture, make data driven decisions and are a good team player, you could be a great fit.
Why this role is important to usOur technology function, Global Technology Services (GTS), is vital to State Street and is the key enabler for our business to deliver data and insights to our clients.
We're driving the company's digital transformation and expanding business capabilities using industry best practices and advanced technologies such as cloud, artificial intelligence and robotics process automation.
We offer a collaborative environment where technology skills and innovation are valued in a global organization.
We're looking for top technical talent to join our team and deliver creative technology solutions that help us become an end-to-end, next-generation financial services company.
Join us if you want to grow your technical skills, solve real problems and make your mark on our industry.
About State StreetWhat we do.
State Street is one of the largest custodian banks, asset managers and asset intelligence companies in the world.
From technology to product innovation, we're making our mark on the financial services industry.
For more than two centuries, we've been helping our clients safeguard and steward the investments of millions of people.
We provide investment servicing, data & analytics, investment research & trading and investment management to institutional clients.
Work, Live and Grow.
We make all efforts to create a great work environment.
Our benefits packages are competitive and comprehensive.
Details vary by location, but you may expect generous medical care, insurance and savings plans, among other perks.
You'll have access to flexible Work Programs to help you match your needs.
And our wealth of development programs and educational support will help you reach your full potential.
Inclusion, Diversity and Social Responsibility.
We truly believe our employees' diverse backgrounds, experiences and perspectives are a powerful contributor to creating an inclusive environment where everyone can thrive and reach their maximum potential while adding value to both our organization and our clients.
We warmly welcome candidates of diverse origin, background, ability, age, sexual orientation, gender identity and personality.
Another fundamental value at State Street is active engagement with our communities around the world, both as a partner and a leader.
You will have tools to help balance your professional and personal life, paid volunteer days, matching gift programs and access to employee networks that help you stay connected to what matters to you.
State Street is an equal opportunity and affirmative action employer.
Salary Range:
$120,000 - $202,500 AnnualThe range quoted above applies to the role in the primary location specified.
If the candidate would ultimately work outside of the primary location above, the applicable range could differ.
SummaryLocation:
Cambridge, MassachusettsType:
Full time.
Estimated Salary: $20 to $28 per hour based on qualifications.
The Cybersecurity team delivers platforms, architecture, and tooling to help Cybersecurity teams make faster, more informed decisions as we work to secure State Street's digital footprint.
As a Staff Security Engineer Identity & Privileged Access on the Security Architecture Governance Engineering (SAGE) team, you will focus on protecting user identities and identity-based systems from cyber threats using a combination of security tools, processes, and best practices to effectively prepare for as well as detect and respond to identity-related threats.
What you will be responsible for Develop and drive the execution of identity threat research and proactive defense, employing architectural understanding, analytic skills, and engineering tools to secure the identity surface.
Experience designing, implementing, and managing IAM & PAM solutions Secure the design of Privileged Access Workstation (PAW), Privileged Session Management (PSM) and Dynamic Privileged Access (DPA) solutions to secure sensitive administrative tasks.
Develop strategies for network segmentation to enhance security for privileged accounts.
Lead the integration and deployment of PAM systems and other related technologies.
Proficient in designing and implementing network segmentation for enhanced security.
Experience in creating secure zones for privileged access and managing firewall policies.
Knowledge of Zero Trust security models and their application in network segmentation (ZTNA).
Deep understanding of PAM and credential vaulting best practices and technologies.
Experience in integrating PAM solutions with various IT systems and platforms and Familiarity with multiple PAM and Credential Vaulting tools and solutions.
Participate in regular security architecture reviews to help evolve the design and implementation of critical privileged access systems.
Relevant experience in ICAM, CIEM, and ITDR implementation, especially with Microsoft Active Directory, Azure, AWS, and other Cloud providers.
Knowledge of scripting, automation and security analytics, and attack path analysis tools.
Certifications like Microsoft Certified:
Azure Administrator Associate or AWS Certified Security - Specialty can be beneficial.
What we valueThese skills will help you succeed in this role Strong understanding of IAM and PAM technologies, credential vaulting, ITDR, and UEBA.
Good problem solving and analytical skills.
Virtual leadership experience with ability to effectively drive results, provide feedback/direction, and manage and build relationships with leaders and team members in a geographically dispersed team environment.
Knowledge and understanding of data organizing or structuring complex data across varied data sources.
Experience in security architecture, with a focus on hybrid and multi cloud solutions.
Education & Preferred Qualifications You have multiyear (>8 years) experience within Cybersecurity including SecOps, penetration testing, security analytics, threat hunting, and/or security architecture.
Bachelor's Degree in Cybersecurity, Computer Science, or related technical discipline, with >6 years of experience including security architecture and IAM architecture.
You have experience with security observability, network segmentation, and identity threat monitoring in hybrid cloud environments.
You have a proven ability to Independently drive transformational security projects cross-organization.
You have knowledge of security testing, network monitoring, and penetration testing tools and techniques, and with security analytics tools and platforms.
You are a strong communicator who is comfortable working cross-functionally, with a track record of delivering results and demonstrating strong ownership.
Preference for candidates who have had experience in security analytics, security research, offensive security, or advanced threat prevention teams.
Given that much activity will have to be centered in US ET hours, we are looking for a candidate located on the eastern seaboard.
Are you the right candidate? Yes!We truly believe in the power that comes from the diverse backgrounds and experiences our employees bring with them.
Although each vacancy details what we are looking for, we don't necessarily need you to fulfil all of them when applying.
If you like change and innovation, seek to see the bigger picture, make data driven decisions and are a good team player, you could be a great fit.
Why this role is important to usOur technology function, Global Technology Services (GTS), is vital to State Street and is the key enabler for our business to deliver data and insights to our clients.
We're driving the company's digital transformation and expanding business capabilities using industry best practices and advanced technologies such as cloud, artificial intelligence and robotics process automation.
We offer a collaborative environment where technology skills and innovation are valued in a global organization.
We're looking for top technical talent to join our team and deliver creative technology solutions that help us become an end-to-end, next-generation financial services company.
Join us if you want to grow your technical skills, solve real problems and make your mark on our industry.
About State StreetWhat we do.
State Street is one of the largest custodian banks, asset managers and asset intelligence companies in the world.
From technology to product innovation, we're making our mark on the financial services industry.
For more than two centuries, we've been helping our clients safeguard and steward the investments of millions of people.
We provide investment servicing, data & analytics, investment research & trading and investment management to institutional clients.
Work, Live and Grow.
We make all efforts to create a great work environment.
Our benefits packages are competitive and comprehensive.
Details vary by location, but you may expect generous medical care, insurance and savings plans, among other perks.
You'll have access to flexible Work Programs to help you match your needs.
And our wealth of development programs and educational support will help you reach your full potential.
Inclusion, Diversity and Social Responsibility.
We truly believe our employees' diverse backgrounds, experiences and perspectives are a powerful contributor to creating an inclusive environment where everyone can thrive and reach their maximum potential while adding value to both our organization and our clients.
We warmly welcome candidates of diverse origin, background, ability, age, sexual orientation, gender identity and personality.
Another fundamental value at State Street is active engagement with our communities around the world, both as a partner and a leader.
You will have tools to help balance your professional and personal life, paid volunteer days, matching gift programs and access to employee networks that help you stay connected to what matters to you.
State Street is an equal opportunity and affirmative action employer.
Salary Range:
$120,000 - $202,500 AnnualThe range quoted above applies to the role in the primary location specified.
If the candidate would ultimately work outside of the primary location above, the applicable range could differ.
SummaryLocation:
Cambridge, MassachusettsType:
Full time.
Estimated Salary: $20 to $28 per hour based on qualifications.
|
|
 | |
