Vacancy expired!
YOUR LIFE'S MISSION: POSSIBLE You have goals, dreams, hobbies and things you're passionate about.
What's Important to You Is Important to UsWe're looking for people who not only want to do meaningful, challenging work, keep their skills sharp and move ahead, but who also take time for the things that matter to them-friends, family and passions. And we're looking for team members who are passionate about our mission-making a difference in military members' and their families' lives. Together, we can make it happen.Don't take our word for it.• Military Times 2021 Best for Vets Employers• WayUp Top 100 Internship Programs• Forbes® 2022 The Best Employers for New Grads• Forbes® America's Best Employers• Newsweek Top 100 Most Loved Workplaces• Fortune Best Workplaces for Women• Fortune 100 Best Companies to Work For®• Computerworld® Best Places to Work in ITBasic Purpose The Identity & Access Management (IAM) Security Architects provide security leadership, assess risks, influence security standards, and serve as subject matter expert on security controls, architecture and design patterns throughout the planning, designing, implementation, integration, and operations of cloud, hybrid & on-premises IT systems and services. The candidate collaborates with business leaders, security teams, vendors, and engineers to apply security requirements and ensure technology selection aligns with business goals and meets InfoSec requirements to mitigate risks. Security architects also strongly influence zero trust prioritization and strategic IT security roadmaps. Work is performed under limited supervision driving the maturity and modernization of the IAM security program managing identities across technologies deployed within the organization.Responsibilities• Work with IAM Support and Engineering teams to review, design, and oversee the implementation of solutions used to ensure the security of employee and customer identities at NFCU• Help drive strategy for authentication and authorization, Identity Governance and Lifecycle Management, secrets management, privilege management, and application and infrastructure integrations with those solutions• Work with business leaders and stakeholders across the enterprise to understand business needs and the anticipated threats against the organization• Responsible for Cybersecurity risk identification within context of projects assigned and make recommendations on design and implementation patterns that will mitigate or eliminate risks to safeguard NFCU assets and infrastructure• Ensure adherence to NFCU's Security Technology Architecture Requirements and Standards (STARS) with policy-driven controls and countermeasures documented as design artifacts • Maintain expert knowledge of threats, cloud technology, tools, DevSecOps, and security architecture best practices • Assess and advise on security risks of architecture, access, controls, and design patterns • Determine security requirements by evaluating business goals and InfoSec standards; conducting vulnerability analysis and risk assessments; studying system architecture and design patterns; and identifying integration issues • Champion for enterprise-wide technology and security architectural standards, guidelines, principles, frameworks, and reference models to enhance NFCU's security posture. • Research, design, and implement processes that enable enterprise-wide visibility and management of security risks in cloud and hybrid solutions and services • Assess enterprise exposure to threats and vulnerabilities, advise on recommendations based upon risks and educate technical and business leaders on security best practices • Collaborate with key stakeholders to: develop IT security roadmaps; recommend changes to reduce risks; prioritize zero trust initiatives; and establish application security governance standards that support business goals while mitigating threats and vulnerabilities • Review security technology, tools, and services to recommend using existing investments or exploring new solutions based on security value, operational complexity, and cost metrics • Plan delivery of solutions, answer technical and procedural questions, and mentor team members• Provide recommendations on IT solutions that increase security and reduce complexity • Verify architectural security of systems by continuous monitoring and ensuring compliance to standards, policies, and procedures using reports, security tools or test scripts • Maintain current knowledge and understanding emerging security practices and standards; participating in educational opportunities; reading professional publications; maintaining personal networks; participating in professional organizationsQualifications • Bachelor's Degree in a related field, or the equivalent combination of education, training, and experience• Significant hands on experience in the field of identity management, cybersecurity or enterprise security architecture • Demonstrated ability to move comfortably between detailed technical discussions and business-oriented executive discussions to understand and convey complex technical issues in an effective way • Hands-on experience with designing or implementing Multifactor Authentication, Single Sign On, and SAML solutions.• Demonstrated experience in in identity and access management technology (Azure AD, LDAP and Active Directory), risk assessments, methodologies, and compensating controls • Subject matter expert in Identity & Access management (IAM), Privilege Identity Management (PIM), Public Key Infrastructure (PKI), Multi-factor Authentication (MFA) and Identify Governance and Administration (IGA) solutions. • Significant experience with working closely with application, network, and security teams to ensure requirements are reflected appropriately in cloud architecture and solutions • Strong ability to work effectively with different levels of staff, management, and stakeholders • Excellent interpersonal, verbal, and written communication skills • Demonstrated results-oriented leadership and facilitation skills• Strong relationship building skillsDesired Qualifications• 5+ years in architecting, planning, building, and supporting Identity Management Solutions• 5+ years of experience with Microsoft Azure• Demonstrated experience mentoring teams on Identity Management architecture initiatives• Experience with audits, both internal and external• Knowledge of PCI-DSS, HITRUST, and SOC• Excellent planning, organizational, and problem-solving skills• Certified as Certified Information Security Manager (CISM), CCISP (Certified Information Systems Security Professional) or SANS GIAC Security Essentials Certification (GSEC)• Knowledge and/or certifications in SABSA, O-ESA, Zachman or TOGAF Architecture Frameworks, COBIT, Scaled Agile Framework (SAFe), or Microsoft Certified: Cybersecurity Architect Expert• Ability to work with cross-functional team members• Knowledge of Navy Federal's mission, objectives, and functions and previous experience in the banking industryHours: Monday - Friday, 8:00AM - 4:30PMLocation: 820 Follin Lane, Vienna, VA 22180 | 5550 Heritage Oaks Dr. Pensacola, FL 32526 | 141 Security Dr. Winchester, VA 22602Navy Federal is now hybrid! Our standard enterprise requirement for a hybrid schedule is to report on-site 4-16 days each month. The number of days reporting on-site will ultimately be determined by the employee's leadership and business unit needs. You will learn more throughout the hiring and on boarding process.Salary Range: $98,500 - $168,400 annually Navy Federal Credit Union assesses market data to establish salary ranges that enable us to remain competitive. You are paid within the salary range, based on your experience, location and market position.Posting End Date: 03/23/2023Job postings are subject to close early or extend out longer than the anticipated closing date at the hiring team's discretion based on qualified applicant volume. #LI-Hybrid Equal Employment Opportunity Navy Federal values, celebrates, and enacts diversity in the workplace. Navy Federal takes affirmative action to employ and advance in employment qualified individuals with disabilities, disabled veterans, Armed Forces service medal veterans, recently separated veterans, and other protected veterans. EOE/AA/M/F/Veteran/DisabilityDisclaimerNavy Federal reserves the right to fill this role at a higher/lower grade level based on business need. An assessment may be required to compete for this position.Bank Secrecy ActRemains cognizant of and adheres to Navy Federal policies and procedures, and regulations pertaining to the Bank Secrecy Act.