At the Federal Home Loan Bank of Chicago, employees come first - that's why we offer a highly competitive compensation and bonus package, and access to a comprehensive benefits program designed to meet the needs of our employees.
* Medical, dental and vision insurance * Retirement program (401k and Pension) * Generous PTO plan * 10 paid holidays per year * Work from home options * Casual dress code
The DevSecOps Security Architect provides accountability for the security of the technical solutions from the Modern Engineering Center of Excellence to ensure that the new technology, processes, and ways of working within IT align with IT strategy, increase the FHLBC security posture, and drive higher quality products. Modern Engineering is FHLBC's adoption of DevSecOps processes and tools. The DevSecOps Security Architect is responsible for the technical thought leadership surrounding security considerations of modern product development technology and supporting processes across FHLBC. Primary responsibilities include developing security architecture, code and designs for Modern Engineering solutions (including SAST, DAST, RASP, CI/CD, IaC, immutability, and automated testing), consulting across the FHLBC organization on implementation of security solutions, and training IT to adopt continuous security principles. The ability to build collaborative stakeholder relationships is a must.
Serve as security authority for IT on the Modern Engineering solutions; responsible for developing "security first" strategy and evangelizing cloud and application security best practices
Serve as subject matter expert for security and tooling landscape; stay current on market trends and research
Design and implement architecture of security solutions in accordance with IT strategy and leading practices from industry including AWS Well-Architected Framework
Work directly with business and IT technology owners to understand security requirements, complexities, and implementation strategies
Define, develop, and validate RBAC security configurations when applicable to Modern Engineering platforms and environments
Consult with all levels of the organization, including executive leadership, to provide direction for security practices and controls; this includes areas of application security, cloud security, DevOps, compliance, and organizational strategy
Engage and consult with other FHLBC Security leadership including Information Security, Security Advisory & Analytics, and IT Risk & Compliance to define Security Standards and Procedures and integrate security considerations within the software development lifecycle
Define, review, and implement Modern Engineering cloud-specific Security Standards, Procedures, and Guidelines
Engage and consult with the CoE and IT Delivery Teams to review their architecture and security checkpoints, perform gap analyses, implement proof-of-concepts, present findings and recommendations, and automate implementation
Consult on application development projects to assess security requirements and controls, and to ensure that security controls are implemented as planned
Evaluate the benefits and risks of a solution's security posture and identify implementation strategies to enhance security posture
Review and approve Modern Engineering architecture and designs for security posture; to enforce security requirements and address identified risks
Provide oversight and management of audit finding remediation, including generating requirements for full remediation, providing feedback and suggestions on managerial responses to findings, tracking progress, and providing status and updates to the enterprise Risk team for reporting purposes
Participate in evaluating security requirements of third-party tools or SaaS Solutions
Consult on and evangelize the behavior change and mindset shifts required of people resources to implement new architecture and processes
Partner with other CoE members and HR to account for effort associated with culture change as part of implementation strategies
Model desired culture including open knowledge sharing, proactive cross-functional collaboration, and adaptive learning via continuous improvement
Educate stakeholders from the business and IT on security solutions and how to best leverage the Modern Engineering solutions and processes to enhance the FHLBC security posture
Develop project case studies, training materials and technical guidance on how to "shift left" on security implementation for teams within FHLBC
Assist with estimating work efforts required for each phase of a project
Lead and coordinate technical reviews (architectural, security, compliance, etc.)
Implement key performance indicators (KPI) to monitor process health and service metrics
Bachelor's Degree or equivalent experience required. Computer Science, Computer Information Systems or related field preferred
Certification from leading vulnerability management frameworks (e.g., SANS, CISSP, OSCP) preferred
10+ years of security experience including implementation of security controls for applications, cloud, and/or DevOps
5+ years of software engineering experience required
Audit, compliance, and governance experience preferred
Knowledge of and experience in developing and documenting security architecture and plans, including strategic, tactical and project plans
Knowledge of common information security management frameworks, such as ITIL and COBIT frameworks
In-depth knowledge of risk assessment methods and technologies
In-depth knowledge and understanding of information risk concepts and principles, as a means of relating business needs to security controls
Skilled in performing risk, business impact, control, and vulnerability assessments
Knowledge, Skills, Abilities and Behaviors:
Proven experience with AWS cloud security best practices (e.g., IAM, WAF, KMS)
Subject matter expertise in security domains, with knowledge pertaining to the majority of these topics: AppSec (OWASP Top10, SANS Top 25), Defense-in-depth, Risk assessment and management, Network topology and security, Network Infrastructure - securing network devices, Network protocols, Virtualization, Intrusion Detection, Intrusion Prevention, Logging, SIEM, Social Engineering, Security policy related to business continuity planning and contingency planning, Incident handling process, Opsec, Data classification, DRM, Pentesting, Vulnerability Analysis, Secure communications including encryption and cipher suites, Linux and Windows security
Strong analytical skills to analyze security requirements and relate them to appropriate security controls
Experience in performing web application and infrastructure penetration security test and threat modeling
Experience collaborating across multiple functional/technical teams to deliver a project
Ability to communicate with customers on a business level and translate their needs into a technical solution
Ability to adapt to organizational change and advocate for the required culture change within the organization
Strong emotional intelligence to identify the behavioral and cultural indicators to team effectiveness
Consultative, collaborative approach to solving complex problems, with customer service skills
Passionate about developing the skills of team members through technical and professional mentoring
Capable of leading by role or influence, as well as working independently
Strong communications skills, both oral and written, appropriate for a broad range including business stakeholders and end users, executive leadership, and third-party vendors
Demonstrated growth mindset, enthusiastic about learning new technologies quickly and applying the gained knowledge to address business problems
Self-starter; ability to proactively define work and deliver results
FHLBank Chicago Maintains a Safe Work Environment With A Mandatory Vaccination Policy For All Employees.
We are committed to providing a safe work environment for all our employees. The FHLBank Chicago requires all employees, except those who may require accommodations under federal or state civil rights laws, to be fully vaccinated.
Internal Number: R2100013
About Federal Home Loan Bank of Chicago
The Federal Home Loan Bank of Chicago is a $100 billion wholesale bank and one of 11 district banks chartered in 1932 by the U.S. Congress to support mortgage lending and community investment. Each FHLBank operates as an independent organization and is governed by a board of directors elected by its member institutions. As a cooperative, we provide reliable liquidity to our member banks, credit unions, insurance companies, and community development financial institutions located in Illinois and Wisconsin, focusing on the distinct needs of their individual businesses and communities.
We offer products and services to help our members fund loans and investments held in portfolio, manage liquidity, fund mortgages into the secondary market, secure third party agreements, and achieve asset liability management goals. Through our Community Investment and Affordable Housing programs, we also help our members to provide affordable housing and economic development in the communities they serve.
FHLBank Chicago is a place, where everyone can make a difference—both for our organization and for the communities we serve through our member financial institutions. We aim to create a diverse... and inclusive environment where employees are fully engaged and positioned to do their best work. Teamwork is valued, and even entry-level hires may find themselves working side-by-side with senior-level executives.
BACK TO TOP
ISACA Career Centre is Just One of the Benefits.
Discover what else ISACA has to offer!
The job you are trying to reach from was originally posted at ISACA Career Centre.