Senior Security Architect jobs at TransUnion - 378 jobs

A leading financial institution in Washington, DC is seeking a cybersecurity expert to enhance its malware defense team. Responsibilities include analyzing malware, tracking campaigns, and authoring reports. The ideal candidate must possess strong malware analysis skills, experience in creating analytical tools, and a solid understanding of network traffic analysis. This position offers an annual salary between $95,700.00 and $144,900.00 based on experience, alongside robust benefits aimed at ensuring employee wellness. #J-18808-Ljbffr

At Bank of America, we are guided by a common purpose to help make financial lives better through the power of every connection. We do this by driving Responsible Growth and delivering for our clients, teammates, communities and shareholders every day. Being a Great Place to Work is core to how we drive Responsible Growth. This includes our commitment to being an inclusive workplace, attracting and developing exceptional talent, supporting our teammates' physical, emotional, and financial wellness, recognizing and rewarding performance, and how we make an impact in the communities we serve. Bank of America is committed to an in‑office culture with specific requirements for office‑based attendance and which allows for an appropriate level of flexibility for our teammates and businesses based on role‑specific considerations. At Bank of America, you can build a successful career with opportunities to learn, grow, and make an impact. Join us! Bank of America is one of the world's leading financial institutions, serving over 66 million consumers and small businesses. Company success is only possible with a strong cyber defense, which enables Bank of America to safely conduct global operations across the United States and in approximately 35 countries. Our primary goal is to safeguard not only the company, but our clients and their trust. The Malware Defense Team is looking for top talent who would like to join one of the most advanced cybersecurity teams in the world. Responsibilities In‑depth analysis of malware, including authoring analysis reports. Tracking malware campaigns, malicious actors, and related infrastructure. Creation of tools and scripts to assist in the analysis of malware analysis. Field escalations of potentially malicious files and websites from teams within Malware Defense. Required Qualifications Strong direct experience of analyzing malware. Intermediate to advanced malware analysis skills. Experience creating innovative ways to track progression of malware families, infrastructure, and campaigns conducted by e‑crime, and cyber espionage actors. Experience creating tools and scripts to accelerate malware and threat analysis. Background in network traffic analysis - WireShark, Fiddler, proxy logs, etc. Experience analyzing malicious web content such as ClickFix, ClearFake, SocGholish, etc. Experience authoring YARA, Suricata, and EKFiddle detection rules. Experience with penetration testing and/or adversary emulation is a plus. Able to work independently on tasks, but also work well within a team environment. Desired Qualifications Experience analyzing malware targeting Linux, Android, and IOT platforms. Skills Cyber Security Data Privacy and Protection Problem Solving Process Management Threat Analysis Business Acumen Data and Trend Analysis Interpret Relevant Laws, Rules, and Regulations Risk Analytics Stakeholder Management Access and Identity Management Data Governance Encryption Information Systems Management Technology System Assessment Shift 1st shift (United States of America) Hours Per Week 40 Pay Transparency details US - CO - Denver - 1144 15th St - Denver Gis (CO9926), US - DC - Washington - 1800 K St NW - 1800 K Street NW (DC1842), US - IL - Chicago - 540 W Madison St - Bank Of America Plaza (IL4540) Pay and benefits information Pay range $95,700.00 - $144,900.00 annualized salary, offers to be determined based on experience, education and skill set. Discretionary incentive eligible. This role is eligible to participate in the annual discretionary plan. Employees are eligible for an annual discretionary award based on their overall individual performance results and behaviors, the performance and contributions of their line of business and/or group; and the overall success of the Company. Benefits: This role is currently benefits eligible. We provide industry‑leading benefits, access to paid time off, resources and support to our employees so they can make a genuine impact and contribute to the sustainable growth of our business and the communities we serve. #J-18808-Ljbffr

A leading financial institution is seeking a Cybersecurity Analyst in Denver. This role involves analyzing malware and creating tools for cybersecurity. Applicants should have experience in malware analysis, tracking campaigns, and relevant cybersecurity skills. A collaborative environment promotes innovation in addressing cyber threats. The position involves a salary range of $95,700 - $144,900, with an emphasis on benefits and a focus on employee wellness. #J-18808-Ljbffr

Northern Trust, a Fortune 500 company, is a globally recognized, award-winning financial institution that has been in continuous operation since 1889. Northern Trust is proud to provide innovative financial services and guidance to the world's most successful individuals, families, and institutions by remaining true to our enduring principles of service, expertise, and integrity. With more than 130 years of financial experience and over 22,000 partners, we serve the world's most sophisticated clients using leading technology and exceptional service. Summary: The Sr Lead, Security Architect role is responsible leading the design and implementation of secure customer identity and access management (CIAM) solutions. This role partners with security, product and development teams to help drive the strategic CIAM architecture vision while enabling secure, scalable user experiences and compliance with regulatory standards. Responsibilitiess Design and maintain CIAM architecture and roadmaps aligned with business and regulatory needs Collaborate with customer experience and product teams to balance usability with security Provide architectural guidance for API security, mobile app integration, and federated identity (OAuth2, OIDC, SAML) Ensure secure design and integration of identity services including registration, login, MFA, identity proofing, and access control. Experience : • Minimum of 7+ years of experience working in an information security engineering or development role in a large, complex environment. • Bachelor's or Master's degree in Computer Science or other IT related field. • Self-motivated, proactive and able to work independently. • Strong communication skills. Salary Range: $114,500 - 194,700 USD Salary range is a good faith estimate of base pay. Northern Trust provides a comprehensive benefits package including retirement benefits (401k and pension), health and welfare benefits (medical, dental, vision, spending accounts and disability), paid time off, parental and caregiver leave, life & accident insurance, and other voluntary and well-being benefits. Northern Trust also provides a discretionary bonus program that may include an equity component. Working with Us: As a Northern Trust partner, greater achievements await. You will be part of a flexible and collaborative work culture in an organization where financial strength and stability is an asset that emboldens us to explore new ideas. Movement within the organization is encouraged, senior leaders are accessible, and you can take pride in working for a company committed to assisting the communities we serve! Join a workplace with a greater purpose. We'd love to learn more about how your interests and experience could be a fit with one of the world's most admired and sustainable companies! Build your career with us and apply today. #MadeForGreater Reasonable accommodation Northern Trust is committed to working with and providing reasonable accommodations to individuals with disabilities. If you need a reasonable accommodation for any part of the employment process, please email our HR Service Center at *****************. We hope you're excited about the role and the opportunity to work with us. We value an inclusive workplace and understand flexibility means different things to different people. Apply today and talk to us about your flexible working requirements and together we can achieve greater.

JobID: 210703707 JobSchedule: Full time JobShift: Base Pay/Salary: Chicago,IL $147,250.00-$225,000.00 Join one of the world's most influential companies and leverage your skills in cybersecurity to have a real impact on the Payments industry. As a Sr. Lead Cybersecurity Architect at JPMorgan Chase within the Cybersecurity and Technology Controls organization, you are an architect & trusted advisor working with developers, architects, and technology teams supporting our Payments organization. In this role, you will partner with internal customers, to ensure the World-Class solutions being built are designed and brought to life securely. You will be a trusted advisory to project and product leads, and a technical resource capable of going deep when needed. This role will support internal technologists around the globe in support of business growth, adoption of modern technologies, and varying technology integrations. Job Responsibilities: * Technical contributor and expected to apply your expertise in cybersecurity engineering, application, cryptography, and architecture domains to operate as the security-lead part of projects and initiatives supporting Payments. Define, Design, and Guide security throughout existing and future payment technology environments. * Work with internal technology team to ensure security and compliance is designed from-the-start for modern technology stacks such as point-of-sale devices (POS), device key and identity management, public cloud connectivity, API gateways, & hybrid environments. * Advise and assist on opportunities for architectural patterns, repeatability, and advise on deviations. In this context, a strong understanding of security tooling is important as you as you will advise your stakeholders on how and where to leverage various security products to mitigate risk. * Assess & Review architectures across various platforms (on-prem, cloud, modern technologies, etc.) and independently conduct design reviews, threat modeling and structured architecture reviews. * Translate and advise on technical designs that must meet risk profile and compliance needs in a global context. Including cross-border, data sovereignty, and design/advise to ensure our tech teams meet respective regulatory requirements applicable to their workloads. * Partnering with our Commercial and Investment Bank and other technical teams to ensure area owners are advise and oversee security design and implementation, applied in a timely manner. Providing regular management reporting to senior management and relevant stakeholders in business units. * Design security solutions to manage risk for new and emerging technologies in the Payments space. * Perform threat modelling to identify potential security risks and develop mitigation strategies. Use your knowledge of applicable regulatory requirements such as PCI-DSS, HIPAA, etc. to design secure architectures that both meet security, risk, and compliance requirements. Required Qualifications, Capabilities, and Skills: * Formal training or certification on cybersecurity architecture concepts and 5+ years applied experience. * Practical working knowledge of, or experience architecting and providing security guidance inline with industry frameworks applicable to Payments (ie: PCI-DSS, HIPAA, etc.). * Hands-on experience in threat modeling and designing secure controls for enterprise-level solutions. Thorough design and security architecture experience in one or more of the large public cloud providers. (e.g. AWS, Azure, Google Cloud) Certifications advantageous. * Experience designing secure solutions specific securing (payments) flows between 3rd parties or business partners. * Experience with Point of Sale (POS) device security, key management, identity, and interconnectivity with hybrid environments, third parties, and on-prem ecosystems. In-depth knowledge of the financial services industry and their IT systems Preferred Qualifications, Capabilities, and Skills: * Security architecture role or responsibilities at large enterprise, global scale. Experience working with AI models and complex distributed data sets. API Gateway security expertise. * Proficiency in information security domains, including policies and standards, risk and control assessments, access controls, regulatory compliance, technology resiliency, risk and control governance and metrics, incident management, secure systems development lifecycle, vulnerability management, and data protection . Risk management, governance, risk & compliance experience - preferably intersected with technical design and architectural inputs. * Cryptography experience in regard to key and secrets management for peripherals such as point-of-sale (POS) devices or IoT devices is helpful. Experience designing secure solutions specific to hybrid connectivity both in house across platforms and cloud providers. Experience managing Identity and Access Management (IAM) in an enterprise and hybrid environments. * Experience conducting architecture reviews to find and evaluate application and infrastructure security risks using formalized Threat Modeling methodologies (e.g., STRIDE). Experience in Application Security, background in penetration testing will be helpful in this role #CTC

Honeywell is seeking a Senior Cybersecurity Architect to help define and drive cybersecurity architecture, threat strategy, and technical direction across multiple teams and programs. This role sits within the Innovation, Architecture, and Threat Intelligence organization and serves as a senior technical authority supporting secure system design, threat analysis, and cybersecurity best practices across the enterprise. You will report directly to our Chief Architect and you'll work out of our Duluth, GA or Atlanta, GA locations on a hybrid work schedule. This is a hands-on technical leadership role focused on architecture, guidance, and influence-not day-to-day operations or people management. You will work closely with senior engineers, architects, and product teams to ensure security is built into systems from the earliest design stages. **KEY RESPONSIBILITIES** + Lead the design and review of cybersecurity architectures for complex systems and platforms. + Research advanced and emerging technologies and collaborate with other architects on new cybersecurity initiatives. + Ensure security best practices are integrated into modern system architectures, including containerized and microservice-based environments. + Analyze emerging cybersecurity threats and translate threat intelligence into actionable guidance for engineering teams. + Conduct security assessments and risk analyses to identify vulnerabilities and recommend mitigation strategies. + Partner with cross-functional engineering and product teams to integrate security into the full development lifecycle. + Serve as a senior cybersecurity subject matter expert for technical challenges across multiple teams and locations. + Provide hands-on technical guidance and mentorship to engineers and architects as needed. + Support security incident response efforts by providing architectural and technical expertise. **US PERSON REQUIREMENT** Due to compliance with U.S. export control laws and regulations, candidate must be a U.S. Person, which is defined as, a U.S. citizen, a U.S. permanent resident, or have protected status in the U.S. under asylum or refugee status or have the ability to obtain an export authorization. **YOU MUST HAVE** + Minimum 6 years of experience in cybersecurity, security architecture, or a related technical domain. + Demonstrated experience leading or influencing technical projects. + Strong understanding of containerized and microservice-based architectures. + Solid knowledge of cybersecurity principles, technologies, and best practices. **WE VALUE** + Bachelor's or Advanced Degree in Cybersecurity, Computer Science, or another related field + Comfort writing code or building prototypes (e.g., C#, .NET, Python) to validate security architectures, threat models, and design decisions. + Industry certifications such as CISSP, CISM, or GIAC. + Experience working in product-based engineering environments + Prior experience acting as a senior technical advisor or architect in cybersecurity. + Strong communication skills with the ability to explain security concepts to both technical and non-technical audiences. + Ability to lead and influence across teams without direct management responsibility. **BENEFITS OF WORKING FOR HONEYWELL** In addition to a competitive salary, leading-edge work, and developing solutions side-by-side with dedicated experts in their fields, Honeywell employees are eligible for a comprehensive benefits package. This package includes employer-subsidized Medical, Dental, Vision, and Life Insurance; Short-Term and Long-Term Disability; 401(k) match, Flexible Spending Accounts, Health Savings Accounts, EAP, and Educational Assistance; Parental Leave, Paid Time Off (for vacation, personal business, sick time, and parental leave), and 12 Paid Holidays. For more information visit: click here The application period for the job is estimated to be 40 days from the job posting date; however, this may be shortened or extended depending on business needs and the availability of qualified candidates. Job posting date: 1/12/2026 **ABOUT HONEYWELL** Honeywell International Inc. (Nasdaq: HON) invents and commercializes technologies that address some of the world's most critical challenges around energy, safety, security, air travel, productivity, and global urbanization. We are a leading software-industrial company committed to introducing state-of-the-art technology solutions to improve efficiency, productivity, sustainability, and safety in high-growth businesses in broad-based, attractive industrial end markets. Our products and solutions enable a safer, more comfortable, and more productive world, enhancing the quality of life of people around the globe. Learn more about Honeywell: click here **THE BUSINESS UNIT** The Corporate Strategic Business Group (CORP SBG) at Honeywell is a division focused on corporate-level functions and initiatives that support the overall operations and strategy of the company. It is responsible for overseeing areas such as finance, legal, human resources, communications, and corporate governance, working closely with other business units and SBGs to ensure alignment and coordination across the organization. The CORP SBG plays a crucial role in the overall strategic direction and management of Honeywell's corporate functions and operations, supporting the company's business objectives. Honeywell is an equal opportunity employer. Qualified applicants will be considered without regard to age, race, creed, color, national origin, ancestry, marital status, affectional or sexual orientation, gender identity or expression, disability, nationality, sex, religion, or veteran status. Learn more about inclusion and diversity: click here (***************************************************************** Honeywell helps organizations solve the world's most complex challenges in automation, the future of aviation and energy transition. As a trusted partner, we provide actionable solutions and innovation through our Aerospace Technologies, Building Automation, Energy and Sustainability Solutions, and Industrial Automation business segments - powered by our Honeywell Forge software - that help make the world smarter, safer and more sustainable. Honeywell is an equal opportunity employer. Qualified applicants will be considered without regard to age, race, creed, color, national origin, ancestry, marital status, affectional or sexual orientation, gender identity or expression, disability, nationality, sex, religion, or veteran status.

**Innovate to solve the world's most important challenges** The future is what you make it. When you join Honeywell, you become a member of our global team of thinkers, innovators, dreamers and doers who make the things that make the future. That means changing the way we fly, fueling jets in an eco-friendly way, keeping buildings smart and safe and even making it possible to breathe on Mars. Working at Honeywell isn't just about developing cool things. That's why all of our employees enjoy access to dynamic career opportunities across different fields and industries. Are you ready to help us make the future? Honeywell Connected Enterprise (HCE) is a global leader for products and technologies that are installed in more than 10 million buildings, aircraft, and facilities worldwide. We are a pioneer in the Internet of Things, developing the next generation of connected offerings. Are you someone who wants to drive real improvements into real products in an environment which has a strong organizational support for product security? In the role of Senior Advanced Cloud Security Architect for Honeywell Connected Enterprise, you will join a growing Product Security team overseeing the posture of HCE Cloud offerings and driving security by design across cloud-based products. The Senior Advanced Cloud Security Architect will report to the HCE Cloud Security Manager and will drive secure cloud posture and risk reduction across software products through standardized and defined processes by partnering with Honeywell Global Security and collaboration with team members. + Innovate by developing new solutions and identifying industry-leading practices in secure cloud environments. + Collaborate with team members to advance state-of-the-art cloud security practices. + Support and work alongside the CTO and SRE to enhance best-in-class cloud posture in a multi-cloud environment. + Partner with Honeywell Global Security to understand and influence cloud security baselines, providing practical solutions that incorporate engineering considerations without introducing risk. + Drive the establishment of cloud security baselines through policy initiatives in a multi-cloud environment, primarily focusing on Azure, utilizing automation. + Identify metrics that will promote behavioral changes in the cloud, such as untagged cloud resources, cloud built without IaC, and overall cloud risk. + Implement dashboards to offer insights into cloud risk and facilitate risk reduction activities. + Support security incident and response activities by performing analysis, collaborating with stakeholders, and driving the resolution of incidents. + Promote and apply Zero Trust architecture and principles across cloud and edge environments. + Assist in the management and deployment of cloud baseline policies at scale through automation. In addition to a competitive salary, leading-edge work, and developing solutions side-by-side with dedicated experts in their fields, Honeywell employees are eligible for a comprehensive benefits package. This package includes employer subsidized Medical, Dental, Vision, and Life Insurance; Short-Term and Long-Term Disability; 401(k) match, Flexible Spending Accounts, Health Savings Accounts, EAP, and Educational Assistance; Parental Leave, Paid Time Off (for vacation, personal business, sick time, and parental leave), and 12 Paid Holidays. For more Honeywell Benefits information visit: ******************************* The application period for the job is estimated to be 40 days from the job posting date; however, this may be shortened or extended depending on business needs and the availability of qualified candidates. Job Posting Date: September 17th, 2025. YOU MUST HAVE + 5 years of experience with a public cloud such as AWS, Azure, GCP + Ability to perform threat modeling of cloud-based systems WE VALUE + Bachelor's Degree + Master's Degree + Ability to identity and define project scope and level of effort + Experience with programming and automation + Ability to identify and remediate issues early, analyze, and propose alternative solutions + Strong interpersonal skills with the ability to facilitate diverse groups, help negotiate priorities, and resolve conflicts among stakeholders + Passion for achieving results and continual self-improvement + Experience and knowledge of Public Cloud Provider (e.g., Azure, AWS, GCP) security controls and capabilities (e.g., DDoS, Firewalls, WAF, Network Segregation) + Understanding of secure networking design and principles + Experience of multi-layer cloud security controls ensuring confidentiality, integrity, and availability + Understanding of Internet of Things (IOT) security concerns, architecture, and controls + Experience with Identity and Access Management security solutions and protocols (e.g., SAML, OpenID, and OAuth) + Experience and understanding of Container/Kubernetes security and controls + Understanding of security by design principles, architecture level security, API security, and Zero Trust security concepts + Up to date knowledge of current and emerging security threats and techniques for exploiting security weaknesses + Understanding of National and International regulatory and compliance standards + Certifications in security demonstrating deep practical knowledge such as CCSP, or CISSP Due to compliance with U.S. export control laws and regulations, candidate must be a U.S. Person, which is defined as, a U.S. citizen, a U.S. permanent resident, or have protected status in the U.S. under asylum or refugee status or have the ability to obtain an export authorization. Honeywell helps organizations solve the world's most complex challenges in automation, the future of aviation and energy transition. As a trusted partner, we provide actionable solutions and innovation through our Aerospace Technologies, Building Automation, Energy and Sustainability Solutions, and Industrial Automation business segments - powered by our Honeywell Forge software - that help make the world smarter, safer and more sustainable. Honeywell is an equal opportunity employer. Qualified applicants will be considered without regard to age, race, creed, color, national origin, ancestry, marital status, affectional or sexual orientation, gender identity or expression, disability, nationality, sex, religion, or veteran status.

Honeywell is seeking a Senior Cybersecurity Architect to help define and drive cybersecurity architecture, threat strategy, and technical direction across multiple teams and programs. This role sits within the Innovation, Architecture, and Threat Intelligence organization and serves as a senior technical authority supporting secure system design, threat analysis, and cybersecurity best practices across the enterprise. You will report directly to our Chief Architect and you'll work out of our Duluth, GA or Atlanta, GA locations on a hybrid work schedule. This is a hands-on technical leadership role focused on architecture, guidance, and influence-not day-to-day operations or people management. You will work closely with senior engineers, architects, and product teams to ensure security is built into systems from the earliest design stages. KEY RESPONSIBILITIES * Lead the design and review of cybersecurity architectures for complex systems and platforms. * Research advanced and emerging technologies and collaborate with other architects on new cybersecurity initiatives. * Ensure security best practices are integrated into modern system architectures, including containerized and microservice-based environments. * Analyze emerging cybersecurity threats and translate threat intelligence into actionable guidance for engineering teams. * Conduct security assessments and risk analyses to identify vulnerabilities and recommend mitigation strategies. * Partner with cross-functional engineering and product teams to integrate security into the full development lifecycle. * Serve as a senior cybersecurity subject matter expert for technical challenges across multiple teams and locations. * Provide hands-on technical guidance and mentorship to engineers and architects as needed. * Support security incident response efforts by providing architectural and technical expertise. US PERSON REQUIREMENT Due to compliance with U.S. export control laws and regulations, candidate must be a U.S. Person, which is defined as, a U.S. citizen, a U.S. permanent resident, or have protected status in the U.S. under asylum or refugee status or have the ability to obtain an export authorization. YOU MUST HAVE * Minimum 6 years of experience in cybersecurity, security architecture, or a related technical domain. * Demonstrated experience leading or influencing technical projects. * Strong understanding of containerized and microservice-based architectures. * Solid knowledge of cybersecurity principles, technologies, and best practices. WE VALUE * Bachelor's or Advanced Degree in Cybersecurity, Computer Science, or another related field * Comfort writing code or building prototypes (e.g., C#, .NET, Python) to validate security architectures, threat models, and design decisions. * Industry certifications such as CISSP, CISM, or GIAC. * Experience working in product-based engineering environments * Prior experience acting as a senior technical advisor or architect in cybersecurity. * Strong communication skills with the ability to explain security concepts to both technical and non-technical audiences. * Ability to lead and influence across teams without direct management responsibility. BENEFITS OF WORKING FOR HONEYWELL In addition to a competitive salary, leading-edge work, and developing solutions side-by-side with dedicated experts in their fields, Honeywell employees are eligible for a comprehensive benefits package. This package includes employer-subsidized Medical, Dental, Vision, and Life Insurance; Short-Term and Long-Term Disability; 401(k) match, Flexible Spending Accounts, Health Savings Accounts, EAP, and Educational Assistance; Parental Leave, Paid Time Off (for vacation, personal business, sick time, and parental leave), and 12 Paid Holidays. For more information visit: click here The application period for the job is estimated to be 40 days from the job posting date; however, this may be shortened or extended depending on business needs and the availability of qualified candidates. Job posting date: 1/12/2026 ABOUT HONEYWELL Honeywell International Inc. (Nasdaq: HON) invents and commercializes technologies that address some of the world's most critical challenges around energy, safety, security, air travel, productivity, and global urbanization. We are a leading software-industrial company committed to introducing state-of-the-art technology solutions to improve efficiency, productivity, sustainability, and safety in high-growth businesses in broad-based, attractive industrial end markets. Our products and solutions enable a safer, more comfortable, and more productive world, enhancing the quality of life of people around the globe. Learn more about Honeywell: click here THE BUSINESS UNIT The Corporate Strategic Business Group (CORP SBG) at Honeywell is a division focused on corporate-level functions and initiatives that support the overall operations and strategy of the company. It is responsible for overseeing areas such as finance, legal, human resources, communications, and corporate governance, working closely with other business units and SBGs to ensure alignment and coordination across the organization. The CORP SBG plays a crucial role in the overall strategic direction and management of Honeywell's corporate functions and operations, supporting the company's business objectives. Honeywell is an equal opportunity employer. Qualified applicants will be considered without regard to age, race, creed, color, national origin, ancestry, marital status, affectional or sexual orientation, gender identity or expression, disability, nationality, sex, religion, or veteran status. Learn more about inclusion and diversity: click here

Innovate to solve the world's most important challenges The future is what you make it. When you join Honeywell, you become a member of our global team of thinkers, innovators, dreamers and doers who make the things that make the future. That means changing the way we fly, fueling jets in an eco-friendly way, keeping buildings smart and safe and even making it possible to breathe on Mars. Working at Honeywell isn't just about developing cool things. That's why all of our employees enjoy access to dynamic career opportunities across different fields and industries. Are you ready to help us make the future? Honeywell Connected Enterprise (HCE) is a global leader for products and technologies that are installed in more than 10 million buildings, aircraft, and facilities worldwide. We are a pioneer in the Internet of Things, developing the next generation of connected offerings. Are you someone who wants to drive real improvements into real products in an environment which has a strong organizational support for product security? In the role of Senior Advanced Cloud Security Architect for Honeywell Connected Enterprise, you will join a growing Product Security team overseeing the posture of HCE Cloud offerings and driving security by design across cloud-based products. The Senior Advanced Cloud Security Architect will report to the HCE Cloud Security Manager and will drive secure cloud posture and risk reduction across software products through standardized and defined processes by partnering with Honeywell Global Security and collaboration with team members. * Innovate by developing new solutions and identifying industry-leading practices in secure cloud environments. * Collaborate with team members to advance state-of-the-art cloud security practices. * Support and work alongside the CTO and SRE to enhance best-in-class cloud posture in a multi-cloud environment. * Partner with Honeywell Global Security to understand and influence cloud security baselines, providing practical solutions that incorporate engineering considerations without introducing risk. * Drive the establishment of cloud security baselines through policy initiatives in a multi-cloud environment, primarily focusing on Azure, utilizing automation. * Identify metrics that will promote behavioral changes in the cloud, such as untagged cloud resources, cloud built without IaC, and overall cloud risk. * Implement dashboards to offer insights into cloud risk and facilitate risk reduction activities. * Support security incident and response activities by performing analysis, collaborating with stakeholders, and driving the resolution of incidents. * Promote and apply Zero Trust architecture and principles across cloud and edge environments. * Assist in the management and deployment of cloud baseline policies at scale through automation. In addition to a competitive salary, leading-edge work, and developing solutions side-by-side with dedicated experts in their fields, Honeywell employees are eligible for a comprehensive benefits package. This package includes employer subsidized Medical, Dental, Vision, and Life Insurance; Short-Term and Long-Term Disability; 401(k) match, Flexible Spending Accounts, Health Savings Accounts, EAP, and Educational Assistance; Parental Leave, Paid Time Off (for vacation, personal business, sick time, and parental leave), and 12 Paid Holidays. For more Honeywell Benefits information visit: ******************************* The application period for the job is estimated to be 40 days from the job posting date; however, this may be shortened or extended depending on business needs and the availability of qualified candidates. Job Posting Date: September 17th, 2025. YOU MUST HAVE * 5 years of experience with a public cloud such as AWS, Azure, GCP * Ability to perform threat modeling of cloud-based systems WE VALUE * Bachelor's Degree * Master's Degree * Ability to identity and define project scope and level of effort * Experience with programming and automation * Ability to identify and remediate issues early, analyze, and propose alternative solutions * Strong interpersonal skills with the ability to facilitate diverse groups, help negotiate priorities, and resolve conflicts among stakeholders * Passion for achieving results and continual self-improvement * Experience and knowledge of Public Cloud Provider (e.g., Azure, AWS, GCP) security controls and capabilities (e.g., DDoS, Firewalls, WAF, Network Segregation) * Understanding of secure networking design and principles * Experience of multi-layer cloud security controls ensuring confidentiality, integrity, and availability * Understanding of Internet of Things (IOT) security concerns, architecture, and controls * Experience with Identity and Access Management security solutions and protocols (e.g., SAML, OpenID, and OAuth) * Experience and understanding of Container/Kubernetes security and controls * Understanding of security by design principles, architecture level security, API security, and Zero Trust security concepts * Up to date knowledge of current and emerging security threats and techniques for exploiting security weaknesses * Understanding of National and International regulatory and compliance standards * Certifications in security demonstrating deep practical knowledge such as CCSP, or CISSP Due to compliance with U.S. export control laws and regulations, candidate must be a U.S. Person, which is defined as, a U.S. citizen, a U.S. permanent resident, or have protected status in the U.S. under asylum or refugee status or have the ability to obtain an export authorization.

Join one of the world's most influential companies and leverage your skills in cybersecurity to have a real impact on the Payments industry. As a Sr. Lead Cybersecurity Architect at JPMorgan Chase within the Cybersecurity and Technology Controls organization, you are an architect & trusted advisor working with developers, architects, and technology teams supporting our Payments organization. In this role, you will partner with internal customers, to ensure the World-Class solutions being built are designed and brought to life securely. You will be a trusted advisory to project and product leads, and a technical resource capable of going deep when needed. This role will support internal technologists around the globe in support of business growth, adoption of modern technologies, and varying technology integrations. Job Responsibilities: Technical contributor and expected to apply your expertise in cybersecurity engineering, application, cryptography, and architecture domains to operate as the security-lead part of projects and initiatives supporting Payments. Define, Design, and Guide security throughout existing and future payment technology environments. Work with internal technology team to ensure security and compliance is designed from-the-start for modern technology stacks such as point-of-sale devices (POS), device key and identity management, public cloud connectivity, API gateways, & hybrid environments. Advise and assist on opportunities for architectural patterns, repeatability, and advise on deviations. In this context, a strong understanding of security tooling is important as you as you will advise your stakeholders on how and where to leverage various security products to mitigate risk. Assess & Review architectures across various platforms (on-prem, cloud, modern technologies, etc.) and independently conduct design reviews, threat modeling and structured architecture reviews. Translate and advise on technical designs that must meet risk profile and compliance needs in a global context. Including cross-border, data sovereignty, and design/advise to ensure our tech teams meet respective regulatory requirements applicable to their workloads. Partnering with our Commercial and Investment Bank and other technical teams to ensure area owners are advise and oversee security design and implementation, applied in a timely manner. Providing regular management reporting to senior management and relevant stakeholders in business units. Design security solutions to manage risk for new and emerging technologies in the Payments space. Perform threat modelling to identify potential security risks and develop mitigation strategies. Use your knowledge of applicable regulatory requirements such as PCI-DSS, HIPAA, etc. to design secure architectures that both meet security, risk, and compliance requirements. Required Qualifications, Capabilities, and Skills: Formal training or certification on cybersecurity architecture concepts and 5+ years applied experience. Practical working knowledge of, or experience architecting and providing security guidance inline with industry frameworks applicable to Payments (ie: PCI-DSS, HIPAA, etc.). Hands-on experience in threat modeling and designing secure controls for enterprise-level solutions. Thorough design and security architecture experience in one or more of the large public cloud providers. (e.g. AWS, Azure, Google Cloud) Certifications advantageous. Experience designing secure solutions specific securing (payments) flows between 3 rd parties or business partners. Experience with Point of Sale (POS) device security, key management, identity, and interconnectivity with hybrid environments, third parties, and on-prem ecosystems. In-depth knowledge of the financial services industry and their IT systems Preferred Qualifications, Capabilities, and Skills: Security architecture role or responsibilities at large enterprise, global scale. Experience working with AI models and complex distributed data sets. API Gateway security expertise. Proficiency in information security domains, including policies and standards, risk and control assessments, access controls, regulatory compliance, technology resiliency, risk and control governance and metrics, incident management, secure systems development lifecycle, vulnerability management, and data protection . Risk management, governance, risk & compliance experience - preferably intersected with technical design and architectural inputs. Cryptography experience in regard to key and secrets management for peripherals such as point-of-sale (POS) devices or IoT devices is helpful. Experience designing secure solutions specific to hybrid connectivity both in house across platforms and cloud providers. Experience managing Identity and Access Management (IAM) in an enterprise and hybrid environments. Experience conducting architecture reviews to find and evaluate application and infrastructure security risks using formalized Threat Modeling methodologies (e.g., STRIDE). Experience in Application Security, background in penetration testing will be helpful in this role #CTC

Honeywell is seeking a Senior Cybersecurity Architect to help define and drive cybersecurity architecture, threat strategy, and technical direction across multiple teams and programs. This role sits within the Innovation, Architecture, and Threat Intelligence organization and serves as a senior technical authority supporting secure system design, threat analysis, and cybersecurity best practices across the enterprise. You will report directly to our Chief Architect and you'll work out of our Duluth, GA or Atlanta, GA locations on a hybrid work schedule. This is a hands-on technical leadership role focused on architecture, guidance, and influence-not day-to-day operations or people management. You will work closely with senior engineers, architects, and product teams to ensure security is built into systems from the earliest design stages. **KEY RESPONSIBILITIES** + Lead the design and review of cybersecurity architectures for complex systems and platforms. + Research advanced and emerging technologies and collaborate with other architects on new cybersecurity initiatives. + Ensure security best practices are integrated into modern system architectures, including containerized and microservice-based environments. + Analyze emerging cybersecurity threats and translate threat intelligence into actionable guidance for engineering teams. + Conduct security assessments and risk analyses to identify vulnerabilities and recommend mitigation strategies. + Partner with cross-functional engineering and product teams to integrate security into the full development lifecycle. + Serve as a senior cybersecurity subject matter expert for technical challenges across multiple teams and locations. + Provide hands-on technical guidance and mentorship to engineers and architects as needed. + Support security incident response efforts by providing architectural and technical expertise. **US PERSON REQUIREMENT** Due to compliance with U.S. export control laws and regulations, candidate must be a U.S. Person, which is defined as, a U.S. citizen, a U.S. permanent resident, or have protected status in the U.S. under asylum or refugee status or have the ability to obtain an export authorization. **YOU MUST HAVE** + Minimum 6 years of experience in cybersecurity, security architecture, or a related technical domain. + Demonstrated experience leading or influencing technical projects. + Strong understanding of containerized and microservice-based architectures. + Solid knowledge of cybersecurity principles, technologies, and best practices. **WE VALUE** + Bachelor's or Advanced Degree in Cybersecurity, Computer Science, or another related field + Comfort writing code or building prototypes (e.g., C#, .NET, Python) to validate security architectures, threat models, and design decisions. + Industry certifications such as CISSP, CISM, or GIAC. + Experience working in product-based engineering environments + Prior experience acting as a senior technical advisor or architect in cybersecurity. + Strong communication skills with the ability to explain security concepts to both technical and non-technical audiences. + Ability to lead and influence across teams without direct management responsibility. **BENEFITS OF WORKING FOR HONEYWELL** In addition to a competitive salary, leading-edge work, and developing solutions side-by-side with dedicated experts in their fields, Honeywell employees are eligible for a comprehensive benefits package. This package includes employer-subsidized Medical, Dental, Vision, and Life Insurance; Short-Term and Long-Term Disability; 401(k) match, Flexible Spending Accounts, Health Savings Accounts, EAP, and Educational Assistance; Parental Leave, Paid Time Off (for vacation, personal business, sick time, and parental leave), and 12 Paid Holidays. For more information visit: click here The application period for the job is estimated to be 40 days from the job posting date; however, this may be shortened or extended depending on business needs and the availability of qualified candidates. Job posting date: 1/12/2026 **ABOUT HONEYWELL** Honeywell International Inc. (Nasdaq: HON) invents and commercializes technologies that address some of the world's most critical challenges around energy, safety, security, air travel, productivity, and global urbanization. We are a leading software-industrial company committed to introducing state-of-the-art technology solutions to improve efficiency, productivity, sustainability, and safety in high-growth businesses in broad-based, attractive industrial end markets. Our products and solutions enable a safer, more comfortable, and more productive world, enhancing the quality of life of people around the globe. Learn more about Honeywell: click here **THE BUSINESS UNIT** The Corporate Strategic Business Group (CORP SBG) at Honeywell is a division focused on corporate-level functions and initiatives that support the overall operations and strategy of the company. It is responsible for overseeing areas such as finance, legal, human resources, communications, and corporate governance, working closely with other business units and SBGs to ensure alignment and coordination across the organization. The CORP SBG plays a crucial role in the overall strategic direction and management of Honeywell's corporate functions and operations, supporting the company's business objectives. Honeywell is an equal opportunity employer. Qualified applicants will be considered without regard to age, race, creed, color, national origin, ancestry, marital status, affectional or sexual orientation, gender identity or expression, disability, nationality, sex, religion, or veteran status. Learn more about inclusion and diversity: click here (***************************************************************** Honeywell helps organizations solve the world's most complex challenges in automation, the future of aviation and energy transition. As a trusted partner, we provide actionable solutions and innovation through our Aerospace Technologies, Building Automation, Energy and Sustainability Solutions, and Industrial Automation business segments - powered by our Honeywell Forge software - that help make the world smarter, safer and more sustainable. Honeywell is an equal opportunity employer. Qualified applicants will be considered without regard to age, race, creed, color, national origin, ancestry, marital status, affectional or sexual orientation, gender identity or expression, disability, nationality, sex, religion, or veteran status.

Honeywell is seeking a Senior Cybersecurity Architect to help define and drive cybersecurity architecture, threat strategy, and technical direction across multiple teams and programs. This role sits within the Innovation, Architecture, and Threat Intelligence organization and serves as a senior technical authority supporting secure system design, threat analysis, and cybersecurity best practices across the enterprise. You will report directly to our Chief Architect and you'll work out of our Duluth, GA or Atlanta, GA locations on a hybrid work schedule. This is a hands-on technical leadership role focused on architecture, guidance, and influence-not day-to-day operations or people management. You will work closely with senior engineers, architects, and product teams to ensure security is built into systems from the earliest design stages. KEY RESPONSIBILITIES * Lead the design and review of cybersecurity architectures for complex systems and platforms. * Research advanced and emerging technologies and collaborate with other architects on new cybersecurity initiatives. * Ensure security best practices are integrated into modern system architectures, including containerized and microservice-based environments. * Analyze emerging cybersecurity threats and translate threat intelligence into actionable guidance for engineering teams. * Conduct security assessments and risk analyses to identify vulnerabilities and recommend mitigation strategies. * Partner with cross-functional engineering and product teams to integrate security into the full development lifecycle. * Serve as a senior cybersecurity subject matter expert for technical challenges across multiple teams and locations. * Provide hands-on technical guidance and mentorship to engineers and architects as needed. * Support security incident response efforts by providing architectural and technical expertise. US PERSON REQUIREMENT Due to compliance with U.S. export control laws and regulations, candidate must be a U.S. Person, which is defined as, a U.S. citizen, a U.S. permanent resident, or have protected status in the U.S. under asylum or refugee status or have the ability to obtain an export authorization. YOU MUST HAVE * Minimum 6 years of experience in cybersecurity, security architecture, or a related technical domain. * Demonstrated experience leading or influencing technical projects. * Strong understanding of containerized and microservice-based architectures. * Solid knowledge of cybersecurity principles, technologies, and best practices. WE VALUE * Bachelor's or Advanced Degree in Cybersecurity, Computer Science, or another related field * Comfort writing code or building prototypes (e.g., C#, .NET, Python) to validate security architectures, threat models, and design decisions. * Industry certifications such as CISSP, CISM, or GIAC. * Experience working in product-based engineering environments * Prior experience acting as a senior technical advisor or architect in cybersecurity. * Strong communication skills with the ability to explain security concepts to both technical and non-technical audiences. * Ability to lead and influence across teams without direct management responsibility. BENEFITS OF WORKING FOR HONEYWELL In addition to a competitive salary, leading-edge work, and developing solutions side-by-side with dedicated experts in their fields, Honeywell employees are eligible for a comprehensive benefits package. This package includes employer-subsidized Medical, Dental, Vision, and Life Insurance; Short-Term and Long-Term Disability; 401(k) match, Flexible Spending Accounts, Health Savings Accounts, EAP, and Educational Assistance; Parental Leave, Paid Time Off (for vacation, personal business, sick time, and parental leave), and 12 Paid Holidays. For more information visit: click here The application period for the job is estimated to be 40 days from the job posting date; however, this may be shortened or extended depending on business needs and the availability of qualified candidates. Job posting date: 1/12/2026 ABOUT HONEYWELL Honeywell International Inc. (Nasdaq: HON) invents and commercializes technologies that address some of the world's most critical challenges around energy, safety, security, air travel, productivity, and global urbanization. We are a leading software-industrial company committed to introducing state-of-the-art technology solutions to improve efficiency, productivity, sustainability, and safety in high-growth businesses in broad-based, attractive industrial end markets. Our products and solutions enable a safer, more comfortable, and more productive world, enhancing the quality of life of people around the globe. Learn more about Honeywell: click here THE BUSINESS UNIT The Corporate Strategic Business Group (CORP SBG) at Honeywell is a division focused on corporate-level functions and initiatives that support the overall operations and strategy of the company. It is responsible for overseeing areas such as finance, legal, human resources, communications, and corporate governance, working closely with other business units and SBGs to ensure alignment and coordination across the organization. The CORP SBG plays a crucial role in the overall strategic direction and management of Honeywell's corporate functions and operations, supporting the company's business objectives. Honeywell is an equal opportunity employer. Qualified applicants will be considered without regard to age, race, creed, color, national origin, ancestry, marital status, affectional or sexual orientation, gender identity or expression, disability, nationality, sex, religion, or veteran status. Learn more about inclusion and diversity: click here

Reporting to the Chief Information Security Officer and working closely with the campus community and outside parties, the Information Security Architect protects the people, the information, and the systems of Drexel University. Essential Functions Awareness, training and communications. Forensics, intrusion detection, incident response, and threat hunting. Vulnerability scanning and monitoring, including patch management and retirement of obsolete systems. - (Non-Essential) End-point security, including encryption at rest. Network security, including encryption in transit. Identity management. In-house software development and maintenance. Cloud computing and software contracts. Support the Chief Information Security Officer's work on leadership, strategy, policy, risk management, disaster recovery, business continuity, compliance, external relations, and emerging technologies and threats. Required Qualifications Minimum of a Bachelor's Degree in computer science, information systems, or a related field or the equivalent combination of education and work experience. ( Please review the Equivalency Chart for additional information.) Minimum of Ten years of experience in information security. Mastery of and experience with four or more of the following functions: Management of information security technologies to protect information, networks, servers, endpoints, and cloud services, e.g., firewalls, antivirus, encryption, data leak prevention, security information and event management systems, and intrusion detection and prevention systems. Vulnerability and threat management. Incident detection, documentation, response, and remediation. Identity management. Application of information security and privacy laws, regulations and guidelines, e.g., data breach state laws, FERPA, HIPAA, NIST, PCI-DSS, DFARS, and GDPR. Preferred Qualifications Master's degree in a related discipline greatly preferred. Physical Demands Typically sitting at a desk/table Location University City - Philadelphia, PA Additional Information This position is classified as Exempt, grade N. Compensation for this grade ranges from $90,430.00 to $135,640. per year. Please note that the offered rate for this position typically aligns with the minimum to midrange of this grade, but it can vary based on the successful candidate's qualifications and experience, department budget, and an internal equity review. Applicants are encouraged to explore the Professional Staff salary structure and Compensation Guidelines & Policies for more details on Drexel's compensation framework. For information about benefits, please review Drexel's Benefits Brochure. Special Instructions to the Applicant Please make sure you upload your CV/resume and cover letter when submitting your application. A review of applicants will begin once a suitable candidate pool is identified.

We're building a relationship-oriented bank for the modern world. We need talented, passionate professionals who are dedicated to doing what's right for our clients. At CIBC, we embrace your strengths and your ambitions, so you are empowered at work. Our team members have what they need to make a meaningful impact and are truly valued for who they are and what they contribute. To learn more about CIBC, please visit CIBC.com What you'll be doing: As the US Region Information Security Director of Regulatory and Controls, you will be responsible for the department's efforts in ensuring compliance with relevant regulations and effectiveness of information security controls. You will monitor relevant laws, regulations, and standards to ensure CIBC US security practices align with regulatory requirements and you will own regulatory compliance programs such as NY-DFS, GLBA and FFIEC. You will serve as primary point of contract for regulatory bodies during audits and be responsible for creation of materials for and participation in exams and quarterly briefings. You will be responsible for Information Security control management and providing oversight of controls that impact the US team. This includes conducting the Risk and Control SelfAssessment (RCSA) for Information Security and provide input into RCSA's for all other lines of business. Work Arrangement: At CIBC we enable the work environment most optimal for you to thrive in your role. You'll have the flexibility to manage your work activities within a hybrid work arrangement where you'll spend 1-3 days per week on-site, while other days will be remote. Key Duties: Regulatory and Reporting: * Monitor relevant laws, regulations and standards to ensure organization's security practices align with regulatory requirements. * Own regulatory compliance programs such as NY-DFS, GLBA and FFIEC assessments. * Serve as primary point of contract for regulatory bodies during audits. * Creation of materials for and participation in regulatory exams and quarterly briefings to regulators as required. * Develop responses and drive resolution of Issues, Deficiencies, Matters Requiring Attention (MRAs), and Supervisory Recommendations (SR's) assigned to US Region Information Security. * Work closely with US TI&I Risk & Controls Team, Regulatory Affairs, Operational Risk Management (ORM) and Internal Audit as required. * Assist with creation of materials for Annual Cyber Security Board Review and Quarterly Board Risk Committee Meetings. * Creation of materials for various reporting committees and forums, including weekly status. * Creation of materials for various reporting committees and forums, including weekly reports, business unit reviews and horizontal review. Control Management: * Conduct Risk and Control Self-Assessment (RCSA) for Information Security and provide input into RCSA for all other lines of business. . * Mapping of controls to industry frameworks (e.g. NIST, PCI, MITRE) • Work closely with controls testing teams. * Drive remediation of ineffective controls owned by the US and provide oversight of control effectiveness for enterprise controls impacting the US. • Act as secretary for the Cyber Security Controls Oversight Council. Leadership and Cross-Functional Relationships: * Recruiting and hiring of Information Security professionals to support target operating model changes. * Provides ongoing advice and direction on a variety of complex conceptual or interpretative issues. * Establishing and leveraging peer's relationships within the US Region and Parent bank organizations. * Will be required to foster relationships with middle to senior management, and senior executives across a range of functions including Risk Management and Technology. Who You Are: * You can demonstrate experience at a financial institution of similar scope and scale with direct experience working with regulators and regulatory compliance programs. * It's an asset if you have advanced knowledge of applicable US laws and regulations as they relate to Information Security and the effective management of Information Security Risks. * You are a caring and accountable leader. * You have experience developing and implementing strategic team goals. You have experience coaching employees and inspiring successful team performance. * You know that details matter. You notice things that others don't. Your critical thinking skills help to inform your decision-making. * Values matter to you. You bring your real self to work, and you live our values - trust, teamwork, and accountability This role is Hybrid and requires 2-3 days on-site per week. At CIBC, we offer a competitive total rewards package. This role has an expected salary range of $190,000.00 - $230,000.00 for the Chicago market based on experience, qualifications, and location of the position. The successful candidate may be eligible to participate in the relevant business unit's incentive compensation plan, which may also include a discretionary bonus component. CIBC offers a full range of benefits and programs to meet our employee's needs; including Medical, Dental, Vision, Health Savings Account, Life Insurance, Disability, and Other Insurance Plans, Paid Time Off (including Sick Leave, Parental Leave and Vacation), Holidays and 401(k), in addition to other special perks reserved for our team members. This position does not offer visa sponsorship. #LI-TA What CIBC Offers At CIBC, your goals are a priority. We start with your strengths and ambitions as an employee and strive to create opportunities to tap into your potential. We aspire to give you a career, rather than just a paycheck. * We work to recognize you in meaningful, personalized ways including a competitive salary, incentive pay, banking benefits, a benefits program*, a vacation offering, wellbeing support, and MomentMakers, our social, points-based recognition program. * Our spaces and technological toolkit will make it simple to bring together great minds to create innovative solutions that make a difference for our clients. * We cultivate a culture where you can express your ambition through initiatives like Purpose Day; a paid day off dedicated for you to use to invest in your growth and development. * Subject to plan and program terms and conditions What you need to know * CIBC is committed to creating an inclusive environment where all team members and clients feel like they belong. We seek applicants with a wide range of abilities and we provide an accessible candidate experience. If you need accommodation, please contact ********************************** * You need to be legally eligible to work at the location(s) specified above and, where applicable, must have a valid work or study permit. * We may ask you to complete an attribute-based assessment and other skills tests (such as simulation, coding, MS Office). Our goal for the application process is to get to know more about you, all that you have to offer, and give you the opportunity to learn more about us. Job Location IL-70 W Madison St, 9th Fl Employment Type Regular Weekly Hours 40 Skills Analytical Thinking, Information Management, Information Security, Leadership, Long Term Planning, People Management, Security Risk, Security Trainings

About GoodLeap:GoodLeap is a technology company delivering best-in-class financing and software products for sustainable solutions, from solar panels and batteries to energy-efficient HVAC, heat pumps, roofing, windows, and more. Over 1 million homeowners have benefited from our simple, fast, and frictionless technology that makes the adoption of these products more affordable, accessible, and easier to understand. Thousands of professionals deploying home efficiency and solar solutions rely on GoodLeap's proprietary, AI-powered applications and developer tools to drive more transparent customer communication, deeper business intelligence, and streamlined payment and operations. Our platform has led to more than $30 billion in financing for sustainable solutions since 2018. GoodLeap is also proud to support our award-winning nonprofit, GivePower, which is building and deploying life-saving water and clean electricity systems, changing the lives of more than 1.6 million people across Africa, Asia, and South America. Position Summary The GoodLeap security team is responsible for both business enablement and safeguarding the organization's information assets; it is involved in virtually all aspects of the business, from product safety and resilience, to building security paved roads, customer, partner, and regulatory trust, managing technology governance and compliance, and ensuring the privacy, and safety of GoodLeap's customers, partners, and employees information. The senior security engineer role provides a unique opportunity to shape the security and resilience of GoodLeap systems, services, and operational processes. In this role, you will work closely with product, engineering, IT, and business teams within GoodLeap to design, build, implement, and operate security and fraud monitoring, detection, and response capabilities. Your Oversight Will Encompass Security & Fraud Monitoring, Detection, and Response: Identification of potential misuse and abuse cases, determining corresponding events associated with manifestation of such scenarios, design of identification and detection solutions -e.g., correlated/iterative event searches across log sources ranging from infrastructure to applications/SaaS platforms, testing, implementation, monitoring, and fine-tuning of these solutions, etc. Toolset design and operations: Design and build the monitoring, detection, and response platform, from tool selection and integration - e.g., SIEM, SOAR, agentic SOC, EDR, to daily operations/management Incident Response: Play a leading role in the definition, refinement, and execution of incident response activities. Overall Security Operations: Management and operation of security platforms/solutions outside monitoring, detection, and response platform. Support Embedded Product Security Team: Design, build, and implement monitoring and detection solutions for GoodLeap products and services. Essential Job Duties & Responsibilities Lead, participate in, and contribute to security and fraud monitoring, detection, and response activities, inclusive of investigations, threat hunting,etc. Create playbooks for specific incident response scenarios. Identify potential misuse and abuse cases in enterprise systems, propose solutions to detect these scenarios, and identify and implement monitoring and detection solutions for such scenarios. Support or develop components of the security analytics platform. Support embedded (product) security team. Support general security operations team with vulnerability management, tools management, and more. Required Skills, Knowledge & Abilities Strong communicator with the ability to lead technical architecture discussions, drive technical decisions, and effectively communicate with non-technical audiences. Expertise in security event management, monitoring, threat hunting, incident response, playbook creation, orchestration/automations, etc. Experience with threat modeling methodologies. Expertise with EDR solutions/platforms, such as CrowdStrike, S1, Palo Alto Cortex EDR, etc. Experience with AWS services, including KMS, SST, Container Registry, ELBs, Lambda, API Gateway, CloudTrail, and IAM (knowledge of GCP and/or Azure is a plus). Proven ability to establish credibility and build trust with business, engineers, and operational staff; confident yet humble. · Experience designing, configuring, and implementing security and fraud monitoring for core enterprise systems, e.g., ERP, HCM, Salesforce, etc. Experience working with and creating solutions based AI and ML toolsets - e.g., creation of AI skills, agents, MCP clients, vibe coding. Strong understanding of both human and non-human identity management and common enterprise and consumer authentication standards and use cases. Practical experience with CI/CD pipelines and DevOps tools, including Infrastructure-as-Code (IaC) tools like Terraform, Pulumi, or CDK; GitHub and GitHub Actions; artifact management; and secrets management tools like Doppler and HashiCorp Vault. Passionate about learning new technologies. While you're not expected to know everything, you should demonstrate a willingness and ability to learn as needed. Prior experience interfacing and supporting teams outside of security - e.g., internal product teams and other cross-functional areas. Proficiency in writing automation scripts in multiple languages and integrating with REST/GraphQL APIs to orchestrate workflows between security tooling and third-party cloud/SaaS platforms, automating detection, response, and operational processes. · Experience engaging with vendors in design partnerships. Experience overseeing vulnerability and threat management at the platform and application levels. Familiarity with penetration testing and red team exercises, including manual verification, exploitation, and lateral movement. Ability to balance a high-level view of security strategy with attention to detail, ensuring thorough and effective execution Additional Information Regarding Job Duties and s: Job duties include additional responsibilities as assigned by one's supervisor or other managers related to the position/department. This job description is meant to describe the general nature and level of work being performed; it is not intended to be construed as an exhaustive list of all responsibilities, duties and other skills required for the position. The Company reserves the right at any time with or without notice to alter or change job responsibilities, reassign or transfer job position or assign additional job responsibilities, subject to applicable law. The Company shall provide reasonable accommodations of known disabilities to enable a qualified applicant or employee to apply for employment, perform the essential functions of the job, or enjoy the benefits and privileges of employment as required by the law. If you are an extraordinary professional who thrives in a collaborative work culture and values a rewarding career, then we want to work with you! Apply today! We are committed to protecting your privacy. To learn more about how we collect, use, and safeguard your personal information during the application process, please review our Employment Privacy Policy and Recruiting Policy on AI.

About Us: Piermont Bank is a commercial bank with a mission to serve growth companies. We are entrepreneur-led and tech-forward. We believe in being a partner for enterprising companies, acting as a catalyst for mid-market innovation and growth. Piermont's financial solutions and expertise empower our business community to thrive. At Piermont, we are purpose-driven, practical, and offer fast answers and flexible solutions, creating value for clients in today's fast-changing economy. For more information, visit ********************* The Role: The Information Security Manager is responsible for developing, implementing, and maintaining the bank's information security program to protect sensitive data, systems, and infrastructure. This role ensures compliance with regulatory requirements, manages risk, and leads initiatives to safeguard the bank against cyber threats. The Information Security Manager will collaborate with IT, risk, and business teams to promote a culture of security awareness and drive continuous improvement in security practices. Responsibilities: Design, implement, and manage information security policies, procedures, and controls. Perform initial and annual due diligence on critical vendors and BaaS Third Party vendors. Monitor and respond to security incidents, vulnerabilities, and threats. Conduct risk assessments, security audits, and compliance reviews. Provide strategic risk guidance for IT projects, including the evaluation and recommendation of technical controls.Lead security awareness training and education programs for employees. Collaborate with IT and business units to ensure secure system architecture and data protection. Maintain up-to-date knowledge of regulatory requirements (e.g., FFIEC, GLBA) and ensure ongoing compliance. Prepare reports for senior management on security posture, incidents, and risk mitigation activities. Manage relationships with external vendors, auditors, and regulatory agencies. Qualifications: Bachelor's degree in Information Security, Computer Science, or a related field; relevant certifications (CISSP, CISM, or similar) strongly preferred. Minimum of 7 years' experience in information security, preferably within banking or financial services. Strong knowledge of security frameworks, regulatory requirements, and risk management practices. Experience with security technologies, incident response, and vulnerability management. Excellent analytical, problem-solving, and communication skills. Ability to lead cross-functional teams and manage multiple priorities. High ethical standards and commitment to confidentiality and compliance. The hiring range for this position is $140,000 to $175,000 per year. The base pay actually offered will take into account internal equity and also may vary depending on the candidate's job-related knowledge, skills, and experience, among other factors. A bonus and/or incentives may be provided as part of the compensation package, in addition to the full range of medical, dental, vision, 401k, and other benefits. Piermont Bank is an equal-opportunity employer. We celebrate diversity and are committed to creating an inclusive environment for all employees. We do not discriminate based upon race, religion, color, national origin, political affiliation, gender (including pregnancy, childbirth, or related medical conditions), sexual orientation, gender identity, gender expression, age, status as a protected veteran, status as an individual with a disability or other applicable legally protected characteristics.

Financial Resources FCU has been designated one of the Best Places to Work in NJ since 2022! At FRFCU, we are "putting people first" and that starts with our employees! Come see why our team members have voted us for Best Places to Work in NJ for 4 consecutive years! Financial Resources is a not-for-profit federal credit union with locations in Somerset, Hunterdon, Middlesex, Hudson and Union Counties. With a history of serving our members for more than 100 years, we have grown to more than $650 million in assets serving more than 29,000 members with 6 public access branches and a team of 100 employees. We are available Nationwide! Financial Resources Federal Credit Union (FRFCU) is looking for an Azure Cloud Security Architect to join our Information Technology team in making a difference in peoples' lives and helping us achieve our digital transformation goals! THIS POSITION IS LOCATED ON SITE IN BRANCHBURG, NJ. The Azure Cloud Security Architect will lead the design and implementation of secured cloud solutions and data lakes across our financial services cloud infrastructure. This person is critical in deploying solutions on the cloud with ensuring the confidentiality, integrity and availability of sensitive data while maintaining compliance with industry regulations such as FFIEC, PCI-DSS and GLBA. We are looking for someone who exemplifies the following traits: Caring Initiative Ethics Job Knowledge Self-Development Teamwork Results Driven Problem Solving Communication Leadership Some of your essential duties will include, but are not limited to: Design and deploy secure Azure cloud architectures for financial applications and data platforms. Develop and enforce security policies, standards, and procedures aligned with financial regulatory frameworks. Lead risk assessments, threat modeling, and vulnerability management across cloud environments. Integrate Zero Trust principles, identity and access management (IAM), and encryption strategies. Collaborate with IT, network, risk and audit teams to ensure regulatory alignment and compliance. Implement and manage SIEM, SOAR, and cloud-native security tools (e.g., Microsoft Defender for Cloud, Sentinel). Collaborate with IT team to deploy and maintain Azure virtual desktops. Provide oversight for DevSecOps practices, embedding security into CI/CD pipelines. Respond to and investigate security incidents, ensuring rapid containment and remediation. Conduct security awareness training and provide guidance to engineering and operations teams. Collaborate with the credit union's network and IT teams during build out of resources on the cloud Collaborate with the credit union's Data Operations and Automation team to build data resources and pipelines on the cloud What we offer to our team members: Work Life Balance Programs that includes a 4 Day Work Week and Hybrid work environment after satisfactory completion of your training period A competitive salary Generous paid time off Health, dental and vision plans for employees and their families Health Savings and Flex Spending Accounts Paid Parental Leave Programs Short and Long-Term Disability Programs Company provided life insurance and low-cost supplemental insurance plans 401K with 100% employer match, up to 6%, after one year and potential for additional profit-sharing contributions Paid volunteer days Opportunities for career advancement with continuous learning and development Tuition reimbursement We ask that you have: Bachelor's Degree in Cybersecurity, Computer Science, Engineering, related field. MS degree will be a plus, but not required Minimum 4+ years of experience in infrastructure as code (IaC) - such as Terraform, Bicep and ARM 7+ years of experience in cloud architecture and security with 3+ years focused on Azure in financial services We would also be willing to talk to a candidate that is a recent graduate or with less experience but willing to learn and grow with us! Deep coding and scripting experience in Python, SQL, KQL and Powershell Strong knowledge in building and securing CI/CD pipelines for cloud infrastructure and digital platforms Experience in software development lifecycle (SDLC) is preferred Deep knowledge of Azure security services including Azure Firewalls, Bastion, Key Vault, Log Analytics, Route Tables, Network Security Groups, Security Center, Sentinel and Azure Policies Previous experience in deploying and maintaining enterprise grade of Azure virtual desktops (AVD) is preferred Strong understanding of financial compliance standards (e.g., SOX, GLBA, PCI-DSS, FFIEC) Experience with network security, IAM, encryption and secure data architecture Certifications such as AZ-500, CISSP, CCSP OR CISM are preferred Familiarity with hybrid cloud and multi-cloud environments preferred Experience with container security (AKS, Kubernetes) preferred Background in incident response and digital forensics preferred Knowledge of data loss prevention (DLP) and endpoint protection in cloud environments preferred If you want to work in a friendly environment and with an organization that is looking to expand its footprint, please consider applying for this opportunity.

CLS is the trusted party at the centre of the global FX ecosystem. Utilized by thousands of counterparties, CLS makes FX safer, smoother and more cost effective. Trillions of dollars' worth of currency flows through our systems each day. Created by the market for the market, our unrivalled global settlement infrastructure reduces systemic risk and provides standardization for participants in many of the world's most actively traded currencies. We deliver huge efficiencies and savings for our clients: in fact, our approach to multilateral netting shrinks funding requirements by over 96% on average, so clients can put their capital and resources to better use. CLS products are designed to enable clients to manage risk most effectively across the full FX lifecycle - whether through more efficient processing tools or market intelligence derived from the largest single source of FX executed data available to the market. Our ambition to make a positive difference starts with our people. Our values underpin everything that we do at CLS and define our working environment: Pivotal purpose Trusted guardian Targeted innovation Facilitate connections Delivering excellence Inclusive culture Job information: Functional title - Vice President, Information Security Risk Manager Department - Risk Management Corporate level - VP Report to - Director, Cyber and Information Risk Lead Location - New Jersey Expected full-time salary range between $ 125K - $160K + variable compensation + 401(k) match + benefits. Note: Disclosure as required by NY/NJ Pay Transparency Law of the expected salary compensation range for this role. Job purpose The Cyber and Information Risk Independent Risk Review Manager is responsible for independent reviews of the efficacy of CLS' Information Security and Data Management programs, including review and challenge of large-scale risk remediation efforts. The successful candidate will provide review and credible challenge of the effectiveness of information security and data management processes and controls in mitigating key risks to the firm. This position is highly engaged with the firm-wide Information Security and Data Management teams who provide security and data management solutions as well as corporate departments that own information security and data management risks. Essential Function / major duties and responsibilities of the job Independent Reviews - Execute horizontal reviews of top information security risks, identifying gaps in control coverage and recommending control improvements to address identified gaps. Complete thematic reviews of information security and data management operational risk events and associated proposed actions to propose control enhancements that reduce risk of recurrence. Work with the Information Security and Data Management teams to review control capabilities against industry standards and lead efforts to strengthen the control environment in line with the evolving threat landscape. Review and challenge actions to address gaps, monitor progress of actions, and validate sufficiency of closure evidence. Prepare status reports as needed and present to Technology Leadership, Audit, and regulatory bodies as required. Risk Remediation Oversight - Review and challenge the sufficiency of planned actions to address identified problems, provide stated benefits, and meet regulatory expectations. Review and monitor the progress of actions and validate sufficiency of closure evidence. Prepare status reports as needed and present to Technology Leadership, Audit, and regulatory bodies as required. Governance - Actively present to various committees and forums to keep management educated on status of independent reviews, challenges to risk remediation efforts, and progress on control improvements. Relationship Management - Be a respected point of contact to stakeholders across the business and technology functions in providing credible operational risk coverage for information security and data management risk. Policy & Procedures - Review and challenge relevant policies, standards, and procedures related to CLS information security and data management processes. Leadership Mentorship - Provide guidance and support to junior members of the team. Ability to influence and gain credibility with the business Experience / essential and desired for successful job performance · 5+ years of experience specifically related to information security and data management risk governance, operations, and risk management functions. · Broad-based technology experience at substantial scale and complexity in a global, highly regulated, high-volume transaction environment. Experience must include time operating within transaction services environments characterized by the need for continuous availability and the highest levels of security. · Experienced working in a complex matrixed organization, ideally in a global firm with a dynamic and rapidly changing environment. · Experienced operating within a highly regulated environment, with a preference for experience at the international and federal levels. · Deep knowledge of information security and data management risk and control frameworks and a strong understanding of related policies, procedures, guidelines, and structure. · Functional expertise, with operational knowledge of and exposure to various current and emerging information security and data management areas such as: v Cyber resilience v Identity & privileged access management v Secure coding practices v Cloud security configuration and control frameworks v Network security v Third-party risk management v Incident response v Threat/vulnerability management v Security architecture v Data governance v Data quality v Data architecture/lineage Qualifications / certifications · B.S. in a technology discipline (Computer Science, Information Management, Computer Engineering, Cybersecurity or equivalent). M.S. desired. · Relevant certification is desirable, e.g., CISSP, CISM, CISA. · Working knowledge of information security and data management life cycles based on an established framework: CRI, NIST CSF, NIST SP 800-53, ORX, ISO 27001, SANS, CERT, ENISA, CSA, OACA, ISACA, DAMA-DMBOK. · Proficiency in MS PowerPoint and Excel. · Experience in broader MS Office suite, including Project and Visio is a plus · Experience with enterprise GRC tools, e.g. Archer is a plus Knowledge, skills, and abilities / competencies required for successful job performance To carry out the duties of the position effectively, the individual will need to possess the following attributes: · Judgement and decision making · Communication & Influence · Teamwork & Professionalism · Able to work independently, as required Success factors / ‘How'. Personal characteristics contributing to an individual's ability to excel in the position · Possess strong technical, analytical, and problem-solving skills. · Provide thought leadership while willing and able to individually contribute to finding solutions. · Self-motivated to exceed management expectations and objectives. · Clearly communicate complex technical issues to both business and technical staff at all levels. · Able to keep organized and detailed documentation. · Confidence to effectively challenge points of view regardless of seniority or corporate title. · Professionalism to seek out and embrace diversity of thought and experience. · Strong collaboration skills to tackle complex security challenges that may span across multiple internal and external departments and groups. · Able to effectively cope with change and comfortably handle risk and ambiguity. · Tenacious resolve and positive attitude in challenging situations. Our commitment to employees: At CLS, we celebrate inclusion and consider this to be one of our strongest assets. We are committed to fostering an environment in which everyone feels comfortable to be who they are, and inclusion is valued. All employees have access to our inclusive benefits, including: Holiday - UK/Asia: 25 holiday days and 3 ‘life days' (in addition to bank holidays). US: 23 holiday days. 2 paid volunteer days so that you can actively support causes within your community that are important to you. Generous parental leave policies to ensure you can enjoy valuable time with your family. Parental transition coaching programmes and support services. Wellbeing and mental health support resources to ensure you are looking after yourself, and able to support others. Employee Networks (including our Women's Forum, Black Employee Network and Pride Network) in support of our organisational commitment to embrace and always be learning more about inclusivity. Hybrid working to promote a healthy work/life balance, enabling employees to work collaboratively in the office when needed and work from home when they don't. Active support of flexible working for all employees where possible. Monthly ‘Heads Down Days' with no meetings across the whole company. Generous non-contributory pension provision for UK/Asia employees, and 401K match from CLS for US employees. Private medical insurance and dental coverage. Social events that give you opportunities to meet new people and broaden your network across the organisation. Annual flu vaccinations. Discounts and savings and cashback across a wide range of categories including health and retail for UK employees. Discounted Gym membership - Complete Body Gym Discount/Sweat equity program for US employees. All employees have access to Discover - our comprehensive learning platform with 1000+ courses from LinkedIn Learning. Access to frequent development sessions on a number of topics to help you be successful and develop your career at CLS.

About GoodLeap:GoodLeap is a technology company delivering best-in-class financing and software products for sustainable solutions, from solar panels and batteries to energy-efficient HVAC, heat pumps, roofing, windows, and more. Over 1 million homeowners have benefited from our simple, fast, and frictionless technology that makes the adoption of these products more affordable, accessible, and easier to understand. Thousands of professionals deploying home efficiency and solar solutions rely on GoodLeap's proprietary, AI-powered applications and developer tools to drive more transparent customer communication, deeper business intelligence, and streamlined payment and operations. Our platform has led to more than $30 billion in financing for sustainable solutions since 2018. GoodLeap is also proud to support our award-winning nonprofit, GivePower, which is building and deploying life-saving water and clean electricity systems, changing the lives of more than 1.6 million people across Africa, Asia, and South America. Position Summary The GoodLeap security team is responsible for both business enablement and safeguarding the organization's information assets; it is involved in virtually all aspects of the business, from product safety and resilience, to building security paved roads, customer, partner, and regulatory trust, managing technology governance and compliance, and ensuring the privacy, and safety of GoodLeap's customers, partners, and employees information. The senior security engineer role provides a unique opportunity to shape the security and resilience of GoodLeap systems, services, and operational processes. In this role, you will work closely with product, engineering, IT, and business teams within GoodLeap to design, build, implement, and operate security and fraud monitoring, detection, and response capabilities. Your Oversight Will Encompass Security & Fraud Monitoring, Detection, and Response: Identification of potential misuse and abuse cases, determining corresponding events associated with manifestation of such scenarios, design of identification and detection solutions -e.g., correlated/iterative event searches across log sources ranging from infrastructure to applications/SaaS platforms, testing, implementation, monitoring, and fine-tuning of these solutions, etc. Toolset design and operations: Design and build the monitoring, detection, and response platform, from tool selection and integration - e.g., SIEM, SOAR, agentic SOC, EDR, to daily operations/management Incident Response: Play a leading role in the definition, refinement, and execution of incident response activities. Overall Security Operations: Management and operation of security platforms/solutions outside monitoring, detection, and response platform. Support Embedded Product Security Team: Design, build, and implement monitoring and detection solutions for GoodLeap products and services. Essential Job Duties & Responsibilities Lead, participate in, and contribute to security and fraud monitoring, detection, and response activities, inclusive of investigations, threat hunting,etc. Create playbooks for specific incident response scenarios. Identify potential misuse and abuse cases in enterprise systems, propose solutions to detect these scenarios, and identify and implement monitoring and detection solutions for such scenarios. Support or develop components of the security analytics platform. Support embedded (product) security team. Support general security operations team with vulnerability management, tools management, and more. Required Skills, Knowledge & Abilities Strong communicator with the ability to lead technical architecture discussions, drive technical decisions, and effectively communicate with non-technical audiences. Expertise in security event management, monitoring, threat hunting, incident response, playbook creation, orchestration/automations, etc. Experience with threat modeling methodologies. Expertise with EDR solutions/platforms, such as CrowdStrike, S1, Palo Alto Cortex EDR, etc. Experience with AWS services, including KMS, SST, Container Registry, ELBs, Lambda, API Gateway, CloudTrail, and IAM (knowledge of GCP and/or Azure is a plus). Proven ability to establish credibility and build trust with business, engineers, and operational staff; confident yet humble. · Experience designing, configuring, and implementing security and fraud monitoring for core enterprise systems, e.g., ERP, HCM, Salesforce, etc. Experience working with and creating solutions based AI and ML toolsets - e.g., creation of AI skills, agents, MCP clients, vibe coding. Strong understanding of both human and non-human identity management and common enterprise and consumer authentication standards and use cases. Practical experience with CI/CD pipelines and DevOps tools, including Infrastructure-as-Code (IaC) tools like Terraform, Pulumi, or CDK; GitHub and GitHub Actions; artifact management; and secrets management tools like Doppler and HashiCorp Vault. Passionate about learning new technologies. While you're not expected to know everything, you should demonstrate a willingness and ability to learn as needed. Prior experience interfacing and supporting teams outside of security - e.g., internal product teams and other cross-functional areas. Proficiency in writing automation scripts in multiple languages and integrating with REST/GraphQL APIs to orchestrate workflows between security tooling and third-party cloud/SaaS platforms, automating detection, response, and operational processes. · Experience engaging with vendors in design partnerships. Experience overseeing vulnerability and threat management at the platform and application levels. Familiarity with penetration testing and red team exercises, including manual verification, exploitation, and lateral movement. Ability to balance a high-level view of security strategy with attention to detail, ensuring thorough and effective execution Additional Information Regarding Job Duties and s: Job duties include additional responsibilities as assigned by one's supervisor or other managers related to the position/department. This job description is meant to describe the general nature and level of work being performed; it is not intended to be construed as an exhaustive list of all responsibilities, duties and other skills required for the position. The Company reserves the right at any time with or without notice to alter or change job responsibilities, reassign or transfer job position or assign additional job responsibilities, subject to applicable law. The Company shall provide reasonable accommodations of known disabilities to enable a qualified applicant or employee to apply for employment, perform the essential functions of the job, or enjoy the benefits and privileges of employment as required by the law. If you are an extraordinary professional who thrives in a collaborative work culture and values a rewarding career, then we want to work with you! Apply today! We are committed to protecting your privacy. To learn more about how we collect, use, and safeguard your personal information during the application process, please review our Employment Privacy Policy and Recruiting Policy on AI.