Principal Cybersecurity Architect (Security Operations)

At Discover, be part of a culture where diversity, teamwork, and collaboration reign. Join a company that is just as employee focused as it is on its customers and is consistently awarded for both. We’re all about people, and our employees are why Discover is a great place to work. Be the reason we help millions of consumers build a brighter financial future and achieve yours along the way with a rewarding career. 

As a Principal Cybersecurity Architect, you will be part of the Cybersecurity Architecture Team focused on helping design, implement and mature innovative and cutting-edge security capabilities. The Cybersecurity Architecture Team champions secure by design principles into our initiatives, provides hands on technical leadership for security domains, assists with defining vision and execution of strategy aligning to business needs and is expected to help solve wide range of security challenges. The Cybersecurity Architecture Team is part of a highly collaborative Cybersecurity program and an engineering culture driven technology organization. Actively manages and escalates risk and customer-impacting issues within the day-to-day role to management. 

The Principal Cybersecurity Architect will be primarily aligned with supporting the technologies used within Discover's Security Operations Center.  The secondary focus will be infrastructure- Endpoint, Network, and Cloud security.

Responsibilities 

• Designs, updates and maintains security architecture capabilities for several products in assigned domain (e.g., Application, Cryptography, Endpoint, Network, Cloud, or IAM) optimizes functionality, minimizes risk, and aligns with business objectives 
• Evaluates technical solutions and incorporates emerging and strategic cybersecurity technologies into technical solutions, considering costs, business benefits, technical limitations, risks and compliance considerations to align with cybersecurity objectives, enterprise and portfolio future state architecture direction. Stays current on relevant industry compliance requirements and incorporates them into strategic plans 
• Solicits and analyzes functional and non-functional requirements to identify architecturally significant decisions and develop options, tradeoffs, and recommendations 
• Works closely with key cybersecurity stake holders such as Cybersecurity Product leadership, Engineers, and consumers of security services to identify risks, define and design tactical and strategic risk mitigation plans and execution of these accordingly 
• Advises and guides product team and helps with project planning by identifying architecturally significant dependencies and guiding the approach to project execution. ü Effectively communicates across departments and leadership groups and builds consensus in support of strategic objectives 
• Partners with product leadership to develop and establish a product vision and roadmap while ensuring it aligns with the cybersecurity strategy, enterprise technology strategy, and industry trends, inclusive of build vs buy decisions 
• Partners with key stake holders from Enterprise, Technical and Application Architecture to champion secure by design principles, perform security architecture analysis and help deliver secure and reliable solutions 
• Builds usable security patterns, security product roadmaps, capability maturity models and other best practice artifacts 
• Coaches and mentors' engineers and less experienced architects 

Minimum Qualifications 

At a minimum, here’s what we need from you: 

• Bachelors – Computer Science or related  
• 8+ Years – Information Security, Engineering, Business Administration, Data Analytics, Technical Architecture or related  
• Internal applicants only: technical proficiency rating of proficient on the Dreyfus architecture scale 

Preferred Qualifications 

Bonus Points If You Have: 

• Experience with Security Operations Center technologies used for- Security Incident Event Management (SIEM), Incident Response, SOC automation, Security analytics, Network Intrusion detection, and email security/DLP.
• Cross domain knowledge of more than one component of the Cybersecurity ecosystem- AppSec, Cryptography and Data Security, Endpoint Security, Identity and Access Management, Network Security, and Cloud.
• Experience with the MITRE ATT&CK framework.
• Familiarity with Microsoft M365, Amazon Web Services, Azure, or Google Cloud Platform.
• Experience with Zero Trust and Micro Segmentation concepts.
• Experience with hybrid on-premises, co-located, and cloud hosted architectures.
• Experience with the shared security model used by cloud service providers.
• Industry certifications such as CISSP, SANS/GIAC, AWS, GCP, or Microsoft.

 External applicants will be required to perform a technical interview. 

#LI-JJ1