Senior Cybersecurity Solutions Architect
Buffalo, NY
Full Time Senior-level / Expert USD 97K - 163K
M&T Bank
With a community bank approach, M&T Bank helps people reach their personal and business goals with banking, mortgage, loan and investment services.The Bank sponsors individuals for TN and H-1B transfers on a case by case basis. Please note that this position is not open to anyone on an F-1 student visa including those eligible for CPT/OPT or the Stem OPT extension.
This role offers a hybrid work schedule; offering the flexibility to work remotely two days a week, while providing the opportunity for in-person collaboration at our Buffalo, NY Tech Hub.
Overview:The Senior Cybersecurity Architect acts as a trusted security advisor to internal technology and application teams. This role leads a security practice focused on performing specialized assessments of security controls for cloud systems and applications, ensuring compliance with internal policies, federal regulations, and industry standards. This role takes a risk-based approach to ensure that appropriate security principles and controls are implemented throughout the system development lifecycle, safeguarding customer and corporate assets while aligning with the organization's risk appetite.
This senior level role will have responsibilities that span across various internal teams and projects, ultimately supporting cloud initiatives. This includes playing a key role in advising business units, ensuring applications meet cloud requirements, and assisting in the development of cloud strategies.
Primary Responsibilities:
- Cloud Security Architecture: Collaborate with business and technology teams to align security architecture for cloud-based solutions, identifying gaps and recommending security enhancements.
- Cloud Technology Security Reviews: Lead security reviews for primarily cloud-based projects, ensuring appropriate security controls are applied and compliant. Provide cyber security support to these projects from inception to production.
- Cloud Security Advisory: Provide guidance to technical and non-technical audiences on cloud security, including identity and access management (IAM), encryption, network security, container security, and more.
- Risk-Based Security Assessments: Engage with technology teams to identify security risks in proposed, or active projects, and provide recommendations or modifications. Support technology teams with proper documentation of exceptions to standards.
- Security Control Implementation: Advise on controls that protect data confidentiality, integrity, and availability in accordance with the organization’s risk appetite. Document and verify that controls are aligned with Bank policies, standards, as well as industry best practices and standards (i.e. NIST, CSA, CIS, etc.).
- Policy Development: Lead and participate in development of cloud security policies, standards, and best practices. Participate in the refinement of standards in collaboration with the Cybersecurity Policy team.
- Compliance Reporting: Maintain records of security recommendations, requirements, and how applications meet those recommendations and requirements. Be able to support inquiries from internal and external auditors.
- Industry Trends and Threats: Stay up to date on security trends and threats to advise management on any risk to the business as well as proposed mitigation strategies.
- Technical Communication: Present security recommendations effectively to both technical and non-technical audiences, including senior management, to promote proper understanding and alignment to cyber security requirements.
- Mentorship: Guide more junior cybersecurity personnel, as well as personnel from other disciplines, in applying cybersecurity principles/best practices. Foster a collaborative environment across organizational units that align with M&T’s values.
Education and Experience Required:
- Minimum of 2 years’ higher education and 7 years’ relevant work experience, or in lieu of a degree, a combined minimum of 9 years’ higher education and/or work experience, including a minimum of 7 years’ relevant work experience
- Strong knowledge of cybersecurity principles and industry best practices, relevant to confidentiality, integrity and availability
- Strong knowledge of cloud security principles, with cloud offerings such as Azure, GCP, and AWS.
- Proven knowledge in the implementation of security technologies (e.g. Firewalls, encryption, IAM/SSO, Active Directory, SAML, API Management)
- Experience handling multiple projects, meeting strict deadlines and overseeing project tasks for less experienced team members
Education and Experience Preferred:
- Bachelor’s degree in computer science, Information Security, or related field.
- Certifications such as CISSP, CCSP, CRISC, or other Cybersecurity/Cloud related industry recognized certifications.
- Knowledge of the Risk Management Framework (RMF) and experience with frameworks and standards like NIST SP 800-53, Cloud Controls Matrix (CCM), CIS Cloud Benchmarks.
- Experience performing security assessments and selecting security controls based on confidentiality, integrity and availability requirements of systems.
- Familiarity with cloud environments such as Azure, AWS, or Google Cloud, and the ability to apply security principles to these platforms.
- Working knowledge of Zero Trust Architecture, cloud security standard development, shared responsibility model, and perimeter security models.
- Knowledge of cloud security tooling (e.g. Cloud Security Posture Management [CSPM], Cloud Native Application Protection Platforms [CNAPP], Cloud CI/CD, etc.)
- Experience in project management methodologies in relation to cloud projects.
- Familiarity with GDPR, PCI, and other data privacy laws and how they affect cloud security.
- Knowledge of Cybersecurity threats.
- Ability to present complex technical information clearly to diverse audiences, including senior management.
- Ability to support internal and external audits be preparing documentation and facilitating the audit process.
#LI-JB3 #Hybrid
M&T Bank is committed to fair, competitive, and market-informed pay for our employees. The pay range for this position is $97,869.52 - $163,115.87 Annual (USD). The successful candidate’s particular combination of knowledge, skills, and experience will inform their specific compensation.LocationBuffalo, New York, United States of AmericaTags: Active Directory APIs Audits AWS Azure CCSP CI/CD CISSP Cloud CNAPP Compliance Computer Science CRISC CSPM Encryption Firewalls GCP GDPR IAM Network security NIST NIST 800-53 Privacy Risk management RMF SAML Security assessment SSO STEM Zero Trust
Perks/benefits: Competitive pay
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.