Build Your Career in Cybersecurity -
YOUR WAY

Position Summary

​

As a senior member of the professional staff, contributes expertise in a discipline (e.g. Accounting, Finance, Human Resources, Information Resources, Operations Planning & Support, Sales & Marketing) area to support function and/or discipline objectives.

​

Works with a high degree of independence, developing short-term goals for own department(s) and monitoring the flow of work between own department and others in alignment with broader business objectives, selecting, and developing effective managers and work teams, and managing own organization through reliable systems and processes. Is a recognized authority in area of specialty, often serving as discipline interface with other areas.

​

Specific Job Summary

​

The Information Security Architect II will partner with application development and infrastructure teams to develop and support implementation of secure architectures for cloud and on-premise solutions. This role will maintain an awareness of business solutions particularly around digital and big data privacy and security risks.

​

The position leads designing, specifying, and selecting business application information security solutions, considering functionality, data, security, privacy, interoperability, scalability, and performance for the most advanced IT architectures. This position will directly contribute to the overall global enterprise cloud architecture and lead the security vision and strategy around cloud-based application and information security.

• Develops operating plans and workable business processes for own department in alignment with function strategy.
• Manages larger business processes and/or projects, setting priorities and measurable objectives, monitoring and reporting on the process, progress and results. Typically influences work of cross-functional or extended teams.
• Responds to, solves, and makes decisions on business requests that have broader department impact and/or moderate risk. Presents alternative solutions to business issues by leveraging the broader organization.
• Works to enhance the organization’s capabilities through effective staffing and development of others by:
• anticipating staffing requirements by comparing business needs with strengths and weaknesses of existing staff.
• using appropriate MVW interviewing tools to hire the best managers available from inside or outside.
• setting and maintaining high standards for team and individual performance.
• providing timely coaching and feedback.
• making and rewarding distinctions in performance.
• Assists more senior associates in achieving business results by:
• acting in a consultative fashion to implement programs impacting the broader organization.
• assisting in the development and communication of broader organizational goals.
• achieving results against budget within scope of responsibility.
• taking calculated risks to move the department or team forward.
• developing and using systems to organize and keep track of information.
• balancing the interests of own group with the interests of the organization.
• working with others to identify and remove barriers to success.
• Readily critiques own behavior to acknowledge mistakes and improve future leadership performance and acts independently to improve and increase skills and knowledge.
• Performs other duties as appropriate.
• Participate on significant application development projects to design secure architectures and ensure developed systems align with MVW security strategy and policy.
• Maintain security architecture documentation, including architecture frameworks, design patterns, logical and physical diagrams, and standards.
• Ensure security tools and processes are fully integrated with digital and service delivery platforms.
• Work collaboratively with application project teams to identify, define, develop, and implement techniques to improve security posture and minimize security risk.
• Integrate with cloud teams to ensure cloud configurations are secure and meet minimum security standards.
• Work closely with application teams utilizing cloud services to implement their applications in a secure manner, sign off on designs and validate configuration settings.
• Provide recommendations to cloud teams to remediate vulnerabilities in cloud environments.
• Stay current on modern application platforms and security concepts such as cloud, micro-service architectures, and zero trust.
• Enhance Security team capabilities by mentoring more junior team members.

Required Qualifications

​

• Typically a senior position requiring significant knowledge and experience in one or more disciplines as well as associate and/or organizational management experience.

​

• College degree or equivalent work experience required.

​

• Bachelor’s degree in Computer Science, Information Technology, or related discipline or equivalent work experience.

​

• Ten years of progressive experience in Information Technology discipline.

​

• Ten years of experience in information security.

​

• Four years of experience in a security engineering or architecture role.

​

• Experience implementing and utilizing cloud security compliance tools.

​

• Hands-on experience with modern DevOps and DevSecOps processes.

​

​

Preferred Qualifications

​

• Master’s degree in information security or related discipline preferred.

​

• Certification in cloud security is a plus (e.g. Azure Security Engineer Associate, AWS Cloud Security Architect).

​

• Experience supporting large-scale digital platforms preferred.

Relocation Assistance Available

​

Marriott Vacations Worldwide is an equal opportunity employer committed to hiring a diverse workforce and sustaining an inclusive culture.

OVERVIEW:

Designs standards, templates and themes for dashboards/reports through an iterative design process and apply to descriptive, diagnostics, and predictive visuals that enable the business to make data informed decisions. Mentors less experienced visualization team members.

• Leverage expert Business Intelligence (BI) platform skills on one or more platforms to incorporate advanced calculations, develop more advanced data flows and assemble complex consolidated dashboards/reports for presentations.
• Apply standards, templates and themes to create uniform sets of visuals for a given audience. Use knowledge of the principles of visual perception to provide refinement to dashboards/reports, providing rich information in a dynamic and understandable way.
• Create templates for data dashboards/reports for use by data visualization team to support consistency and clarity across data visualizations.
• Implement identified best practices in navigating and publishing BI reports, providing access, managing permissions, and monitoring visualization usage by data users.
• Use knowledge of programming languages to work with data teams to query, structure and model data, as needed, for use in dashboards/reports.
• Use expert knowledge of business and technical metadata, data quality, and issue remediation to create accurate data models within BI tool(s).
• Drive business insights through the development of descriptive, diagnostic, and predictive reporting by selecting appropriate advanced visuals that identify trends and outliers.
• Mentor less experienced team members in the use of dashboard/report templates, data visualization best practices and facilitate learning opportunities.
• Work with business partners to conduct dashboard/report testing and recommend refinements.
• Participate in gathering visualization requirements from business stakeholders.
• Understand and adhere to the Company’s risk and regulatory standards, policies and controls in accordance with the Company’s Risk Appetite. Identify risk-related issues needing escalation to management.
• Design, implement, maintain and enhance internal controls to mitigate risk on an ongoing basis. Identify risk-related issues needing escalation to management.
• Promote an environment that supports diversity and reflects the M&T Bank brand.
• Maintain M&T internal control standards, including timely implementation of internal and external audit points together with any issues raised by external regulators as applicable.
• Complete other related duties as assigned.

MINIMUM QUALIFICATIONS REQUIRED:

• Bachelor’s degree and a minimum of 5 years of related experience, or in lieu of a degree, a combined minimum of 9 years higher education and/ or work experience, including a minimum of 5 years related experience
• Tactical experience with a minimum of one data visualization tool
• Experience designing and developing advanced dashboards/reports and data visualizations
• Expert knowledge of data visualization approaches
• Experience incorporating data storytelling into visualizations
• Experience using Structured Query Language (SQL) to analyze, extract, and transform data

​

IDEAL QUALIFICATIONS PREFERRED:

• Tactical experience with multiple data visualization tools
• Knowledge of data management concepts and terminology
• Certification in data storytelling and/or data visualization tools
• Cybersecurity background with working knowledge of related Metrics

This role offers a hybrid work schedule; offering the flexibility to work remotely two days a week, while providing the opportunity for in-person collaboration at our Buffalo, NY Tech Hub.

​

M&T Bank is committed to fair, competitive, and market-informed pay for our employees. The pay range for this position is $97,869.52 - $163,115.87 Annual (USD). The successful candidate’s particular combination of knowledge, skills, and experience will inform their specific compensation.

​

Location:

Buffalo, New York, United States of America

Join one of the world's most influential companies and leverage your skills in cybersecurity to have a real impact on the financial industry.

​

As a Cybersecurity Architect at JPMorgan Chase within the Cybersecurity and Technology Controls organization, you are an integral part of a team that works to develop & implement high-quality, repeatable and scalable cybersecurity solutions for recently acquired businesses. As a technical contributor you will be expected to grow your expertise in cybersecurity engineering, application and architecture domains working on complex projects and initiatives, understand problem spaces, quantify risk and contribute to solution approaches.

• Support technology and cyber security evaluations for potential target acquisitions, external vendor products and existing line of business products & services.
• Build relationships with a range of technology stakeholders & grow a professional network within the firm.
• Assist in delivering detailed cyber reports, presentations, or other appropriate methods to convey the cybersecurity posture, technical complexities, and surface regulatory & compliance risks.
• Co-Design security solutions to help manage risk at newly acquired businesses.
• Develop relationships with acquired company teams, fostering trust and driving cultural alignment with JPMorgan Chase.
• Collaborate to build threat models to identify potential security risks and develop mitigation strategies.
• Identify opportunities to automate remediation of recurring security issues to enhance the overall cybersecurity posture of software applications and systems.
• Foster a team culture of diversity, equity, inclusion, and respect.

Required Qualifications, Capabilities, and Skills:

• Formal training or certification on cybersecurity architecture concepts and 3+ years applied experience.
• Formal training, academic background, or certification in Cybersecurity or related concepts. (e.g. CISSP, CISM, GIAC, CCSP, OSCP)
• Experience in one or more of the large public cloud providers. (e.g. AWS, Azure, Google Cloud) Certifications advantageous.
• Experience in design, operations and/or security of cloud-native and hybrid architectures.
• Understanding of agile methodologies, including continuous integration and delivery, application resiliency, and security.
• Experience communicating with senior stakeholders.

​

Preferred Qualifications, Capabilities, and Skills:

• Knowledge of, or experience working in organisations subject to, global financial regulations (e.g. FFIEC, GDPR, SOC2 etc ).
• Experience in Application Security & Software Development Life Cycle.
• Proficiency with configuration and management of Cloud Security Posture Management (CSPM) tools and issue resolution.
• Experience of threat modelling.
• Proficiency in one or more programming languages.
• Prior experience with Mergers & Acquisition integration activities

NA