Corebridge Financial
Enterprise Security Architect
Corebridge Financial, Nashville, Tennessee, United States, 37247
Overview
Join to apply for the
Enterprise Security Architect
role at
Corebridge Financial . Who We Are: At Corebridge Financial, we believe action is everything. Thats why every day we partner with financial professionals and institutions to make it possible for more people to take action in their financial lives, for today and tomorrow. We align to a set of values that define our culture and help bring our brand purpose to life. We are stronger as one: We collaborate across the enterprise, scale what works and act decisively for our customers and partners. We deliver on commitments: We are accountable, empower each other and go above and beyond for our stakeholders. We learn, improve and innovate: We get better each day by challenging the status quo and equipping ourselves for the future. We are inclusive: We embrace different perspectives, enabling our colleagues to make an impact and bring their whole selves to work. About The Role
The
Enterprise Security Architect
will help to lead the design, implementation, and oversight of secure systems and architectures across our organization. This role is critical to embedding security into enterprise processes, aligning with industry standards, and building a scalable security foundation. The ideal candidate will bring deep technical expertise, strong communication skills, and the ability to work independently or collaboratively to drive security initiatives and foster a security-first culture. Responsibilities
Design, document, and maintain secure architecture patterns, diagrams, and reference architectures to guide security implementations across the organization. Conduct comprehensive security reviews of applications, systems, and networks, identifying vulnerabilities and recommending secure design strategies. Perform threat modeling and risk assessments to identify potential vulnerabilities and recommend appropriate mitigating controls. Partner with enterprise and line-of-business architects to integrate security seamlessly into designs and processes. Translate complex technical security concepts into clear, actionable insights for C-level executives, business leaders, non-technical stakeholders, and technical engineering teams. Recommend mitigating controls, security tools, and remediation strategies to address security gaps and minimize risk. Stay current on security threats, vulnerabilities, and technologies to enhance the organizations security posture. Promote a security-first culture by mentoring technical teams, educating stakeholders, and embedding security best practices into organizational workflows. Skills And Qualifications
7+ years of hands-on experience in infrastructure, systems, networks, applications, or cloud security. Ability to create and review diagrams using tools such as Visio or Lucidchart. Familiarity with secure architecture patterns, reference architectures, and frameworks. Expertise in SaaS, PaaS, and IaaS environments, including AWS, Azure, M365, and Salesforce. Experience with IAM solutions such as CyberArk, Okta, Ping Identity, Entra ID/Azure AD, and other tools supporting SSO, MFA, and PAM. Familiarity with Jira, Confluence, and ServiceNow for workflow management and documentation. Expertise in threat modeling, vulnerability management, and risk assessments. Working knowledge of regulatory requirements and standards such as NYDFS, CCPA, GLBA, PCI-DSS, HIPAA, SOX, and GDPR. Relevant certifications such as CISSP, CCSP, or equivalent. Ability to work independently or collaboratively in a team-oriented environment. Bachelors degree in a relevant field or proven experience in Information Technology and Cyber Security roles. Technical Skills
Familiarity with protocols such as SAML, OAuth, OIDC, FIDO, PKI, JWT, LDAP, and Kerberos. Strong knowledge of TCP/IP, HTTP/HTTPS, DNS, SMTP, SNMP, SSH, and VPN technologies. Experience with encryption technologies (TLS, AES, RSA) and key management (KMS, HSM, PKI). Knowledge of firewalls, IDS/IPS, WAF, VPN, routers, switches, load balancers, Zero-Trust, microsegmentation, SD-WAN security, CASB, Proxy, SSE. Experience with SIEM tools (Splunk, QRadar, ArcSight) and logging/monitoring best practices. Knowledge of Docker, Kubernetes, EKS, ECS, and OCP, including security considerations. Proficiency in integrating security into DevOps pipelines with Jenkins, GitHub, Artifactory, Terraform, and Vault. Common Security and Architecture Frameworks
NIST CSF ISO 27001/27002 CSA CCM CIS Controls SABSA TOGAF AWS Well-Architected Framework Certifications
TOGAF SABSA Foundation or Practitioner CISSP-ISSAP CCSP GIAC GDSA AWS Certified Solutions Architect Associate or Professional AWS Certified Security Specialty Microsoft Certified: Azure Solutions Architect Expert Soft Skills
Strong analytical and problem-solving abilities. Excellent interpersonal and collaboration skills. Strong organizational and time management skills. Adaptability and commitment to continuous learning of new technologies. Attention to detail and dedication to high-quality results. Integrity and ethical conduct. Industry Experience
Experience in financial services, insurance, or other regulated environments. Ability to design and implement security controls aligned with industry regulations and standards. Experience conducting security assessments and audits in regulated industries. Familiarity with industry-specific threats and vulnerabilities to tailor security solutions. Compensation
The anticipated salary range is $140,000 to $165,000 at the start of employment. Actual compensation depends on location, skills, experience, and qualifications. A discretionary bonus is also available according to the applicable incentive plan. Competitive benefits are provided as part of the total compensation package. Work Location
This position is based in Corebridge Financials Jersey City, NC, Houston, TX, or Durham, NC offices and follows a hybrid work policy. Equal Opportunity
Corebridge Financial is an equal opportunity employer. All applicants will be considered based on job-related qualifications and without regard to race, color, religion, sex, gender, gender identity or expression, sexual orientation, national origin, disability, neurodivergence, age, veteran status, or any other protected characteristic. Reasonable accommodations are available. If you need accommodation, email TalentandInclusion@corebridgefinancial.com. We will consider applicants with criminal histories as allowed by law. For more information, visit: www.corebridgefinancial.com #J-18808-Ljbffr
Join to apply for the
Enterprise Security Architect
role at
Corebridge Financial . Who We Are: At Corebridge Financial, we believe action is everything. Thats why every day we partner with financial professionals and institutions to make it possible for more people to take action in their financial lives, for today and tomorrow. We align to a set of values that define our culture and help bring our brand purpose to life. We are stronger as one: We collaborate across the enterprise, scale what works and act decisively for our customers and partners. We deliver on commitments: We are accountable, empower each other and go above and beyond for our stakeholders. We learn, improve and innovate: We get better each day by challenging the status quo and equipping ourselves for the future. We are inclusive: We embrace different perspectives, enabling our colleagues to make an impact and bring their whole selves to work. About The Role
The
Enterprise Security Architect
will help to lead the design, implementation, and oversight of secure systems and architectures across our organization. This role is critical to embedding security into enterprise processes, aligning with industry standards, and building a scalable security foundation. The ideal candidate will bring deep technical expertise, strong communication skills, and the ability to work independently or collaboratively to drive security initiatives and foster a security-first culture. Responsibilities
Design, document, and maintain secure architecture patterns, diagrams, and reference architectures to guide security implementations across the organization. Conduct comprehensive security reviews of applications, systems, and networks, identifying vulnerabilities and recommending secure design strategies. Perform threat modeling and risk assessments to identify potential vulnerabilities and recommend appropriate mitigating controls. Partner with enterprise and line-of-business architects to integrate security seamlessly into designs and processes. Translate complex technical security concepts into clear, actionable insights for C-level executives, business leaders, non-technical stakeholders, and technical engineering teams. Recommend mitigating controls, security tools, and remediation strategies to address security gaps and minimize risk. Stay current on security threats, vulnerabilities, and technologies to enhance the organizations security posture. Promote a security-first culture by mentoring technical teams, educating stakeholders, and embedding security best practices into organizational workflows. Skills And Qualifications
7+ years of hands-on experience in infrastructure, systems, networks, applications, or cloud security. Ability to create and review diagrams using tools such as Visio or Lucidchart. Familiarity with secure architecture patterns, reference architectures, and frameworks. Expertise in SaaS, PaaS, and IaaS environments, including AWS, Azure, M365, and Salesforce. Experience with IAM solutions such as CyberArk, Okta, Ping Identity, Entra ID/Azure AD, and other tools supporting SSO, MFA, and PAM. Familiarity with Jira, Confluence, and ServiceNow for workflow management and documentation. Expertise in threat modeling, vulnerability management, and risk assessments. Working knowledge of regulatory requirements and standards such as NYDFS, CCPA, GLBA, PCI-DSS, HIPAA, SOX, and GDPR. Relevant certifications such as CISSP, CCSP, or equivalent. Ability to work independently or collaboratively in a team-oriented environment. Bachelors degree in a relevant field or proven experience in Information Technology and Cyber Security roles. Technical Skills
Familiarity with protocols such as SAML, OAuth, OIDC, FIDO, PKI, JWT, LDAP, and Kerberos. Strong knowledge of TCP/IP, HTTP/HTTPS, DNS, SMTP, SNMP, SSH, and VPN technologies. Experience with encryption technologies (TLS, AES, RSA) and key management (KMS, HSM, PKI). Knowledge of firewalls, IDS/IPS, WAF, VPN, routers, switches, load balancers, Zero-Trust, microsegmentation, SD-WAN security, CASB, Proxy, SSE. Experience with SIEM tools (Splunk, QRadar, ArcSight) and logging/monitoring best practices. Knowledge of Docker, Kubernetes, EKS, ECS, and OCP, including security considerations. Proficiency in integrating security into DevOps pipelines with Jenkins, GitHub, Artifactory, Terraform, and Vault. Common Security and Architecture Frameworks
NIST CSF ISO 27001/27002 CSA CCM CIS Controls SABSA TOGAF AWS Well-Architected Framework Certifications
TOGAF SABSA Foundation or Practitioner CISSP-ISSAP CCSP GIAC GDSA AWS Certified Solutions Architect Associate or Professional AWS Certified Security Specialty Microsoft Certified: Azure Solutions Architect Expert Soft Skills
Strong analytical and problem-solving abilities. Excellent interpersonal and collaboration skills. Strong organizational and time management skills. Adaptability and commitment to continuous learning of new technologies. Attention to detail and dedication to high-quality results. Integrity and ethical conduct. Industry Experience
Experience in financial services, insurance, or other regulated environments. Ability to design and implement security controls aligned with industry regulations and standards. Experience conducting security assessments and audits in regulated industries. Familiarity with industry-specific threats and vulnerabilities to tailor security solutions. Compensation
The anticipated salary range is $140,000 to $165,000 at the start of employment. Actual compensation depends on location, skills, experience, and qualifications. A discretionary bonus is also available according to the applicable incentive plan. Competitive benefits are provided as part of the total compensation package. Work Location
This position is based in Corebridge Financials Jersey City, NC, Houston, TX, or Durham, NC offices and follows a hybrid work policy. Equal Opportunity
Corebridge Financial is an equal opportunity employer. All applicants will be considered based on job-related qualifications and without regard to race, color, religion, sex, gender, gender identity or expression, sexual orientation, national origin, disability, neurodivergence, age, veteran status, or any other protected characteristic. Reasonable accommodations are available. If you need accommodation, email TalentandInclusion@corebridgefinancial.com. We will consider applicants with criminal histories as allowed by law. For more information, visit: www.corebridgefinancial.com #J-18808-Ljbffr