Senior Director of Cyber Security Architecture and Engineering Services

The Company

U.S. Financial Technology (U.S. FinTech) is seeking an experienced Senior Director of Cybersecurity Architecture and Engineering Services to join our team of talented professionals. This is a full-time remote opportunity. 

U.S. FinTech built and operates the largest and most advanced mortgage securitization platform in the world, supporting the Uniform Mortgage-Backed Security (UMBS) of Fannie Mae and Freddie Mac.

Supporting 70% of the mortgage-backed securities in the market, U.S. FinTech provides best-in-class single-family issuance, bond administration, disclosure, and tax services. We support a broad portfolio of products for our clients with full lifecycle management.

Our market-leading, cloud-based, end-to-end platform executes transactions on an extraordinary scale which has bolstered liquidity in the secondary mortgage market, one of the largest and most important financial markets in the world. Our unique approach to securitization combines the best minds in financial services with the know-how, flexibility, and innovation of leading technologists.

Job Information

The Sr Director Cybersecurity Architecture and Engineering Services will lead the overall design of cyber security architecture, cyber security engineering and business architecture to ensure that the organization is compliant to cyber security policies both internally and externally. This position will contribute to the overall security vision and strategy.  The focus will be on improving operational efficiencies and reliability within U.S. FinTech’s Cyber Security tools ecosystem while continuing the teams to work in an increasingly cloud native environment as we are completely cloud based.  This position will lead day-to-day management and execution of Cyber security architecture and engineering functions across all divisions.  This position will interface with  IT professionals as well as leaders of the business to assess and manage cyber risk, share the security vision, and solicit involvement in achieving higher levels of enterprise security through information sharing and collaboration.  This is a successor type role for all across InfoSec's functional areas.

Key Job Functions

• Partner with leaders across the business to identify opportunities and risks and develop solutions that support U.S. FinTech, a SaaS company serving as the critical backbone of the US mortgage finance industry.
• Refine, design, and implement company-wide cyber security architecture and engineering in partnership with 2nd and 3rd lines of defense.
• Develop cyber security patterns to enable developers to design and build applications with appropriate security controls.
• Manage external assessment activities and synthesize information into senior level presentations.
• Serves as a subject matter expert to internal business, technology, and security teams. Proactively advises on a range of cyber risk management activities and information security industry best practices.
• Acts as an ambassador and senior technical advisor for enterprise cyber security while engaging with other senior technical leaders throughout the organization.
• Develop and refine standards in partnership with Engineering, Infrastructure, Application Development, Data.
• Maintain vigilance about current threat vectors and expertise of the ecosystem of cloud security-related tools.
  Prototype new security tools and technologies based on organizational strategy and evolving threats while looking for opportunities to optimize, consolidate and manage out tools that no longer meet company needs.
• Engage in ongoing communication with peers in the Infrastructure and Application Support groups as well as the business group to ensure understanding of security goals, to solicit feedback and foster cooperation.
• Oversee deployment, integration, and initial configuration of all new cyber security solutions and enhancements to existing information security solutions in accordance with Information security policies, standards, and operational procedures.
• Lead initiatives designed to share knowledge across cyber security, technology, and business teams. Identifies, recommends, coordinates, and delivers timely knowledge to support teams regarding technologies, processes, or tools.
• Create and maintain a set of metrics to document and measure the performance and effectiveness of the Information Security program; responsible for communicating metrics to IT Leadership Team.

Education   

• Bachelor’s degree or higher in related discipline.
• Industry Certification required, e.g. CISSP, CISA, CISM or equivalent designation

Minimum Experience  

• A Minimum of 12 years of experience building and leading global cybersecurity programs
• A minimum of 5 of years leading Security Architecture and Engineering Teams.
  
• Applicants must be authorized to work in the US without requiring employer sponsorship currently or in the future. U.S. FinTech does not offer H-1B sponsorship for this position.

Specialized Knowledge & Skills     

• Strong working knowledge of Cyber Security Architectural and Engineering principles supporting Cyber Defense, Compliance, Perimeter Security, Data Protection, Application Security, Operating System Security, Virtual Infrastructure, Storage Protection
• Working knowledge of physical security
• Experience adopting Zero Trust
• Strong working knowledge of DevSecOps
• Strong working knowledge of AWS and tools to support the Cloud
• Strong working knowledge of Private Cloud, Public Cloud, and/or Hybrid Cloud
• Self-starter; adaptable to change; motivated to set personal and program goals and proactively track performance against goals.
• Experience working with Risk, Security or Audit frameworks (i.e., COBIT, COSO, ISO 27001/2, NIST 800-53, NIST CSF,  AICPA, BITS).
• Serve as subject matter expert for InfoSec and IT Security related topics with experience in technical control testing aligned to NIST 800-53, FISMA, and SOC. 
• Possesses strong analytical skills capable of identifying, evaluating and mitigating significant risks within an enterprise.
• Demonstrated experience using and managing Risk Management tools is desired.
• Strong working experience with Microsoft Office Suite and GRC tools.
• Secondary mortgage market or equivalent financial services experience is an advantage.
• Ability to document and explain risks and vulnerabilities to both business and technical stakeholders.
• Ability to influence peers and management; ability to team cross-functionally and form relationships to achieve objectives.
• Strong oral and written communication skills and ability to work well with others and in a collaborative, complex and fast paced environment.

Pay Range $205,250  to $236,500 

U.S. FinTech's pay range for this job level is a general guideline only and not a guarantee of compensation or salary. Additional factors considered in extending an offer include (but are not limited to) a candidate’s qualifications, skills, competencies, and experience, as well as internal equity, alignment with market data, applicable bargaining agreement (if any), or other law. U.S. FinTech offers a competitive total compensation package, which includes a performance bonus, 401k match, healthcare coverage, PTO, and a broad range of other benefits.

Employment

As a condition of employment with U.S. Financial Technology, any successful job applicant will be required to  successfully complete a background investigation, which may also include a credit check for positions in some areas of our business.   

U.S. Financial Technology is an Equal Opportunity Employer.

##LI-Remote