Corebridge Financial
Enterprise Security Architect
Corebridge Financial, Jacksonville, Florida, United States, 32290
Join to apply for the
Enterprise Security Architect
role at
Corebridge Financial
Who We Are
At Corebridge Financial, we believe action is everything. That’s why every day we partner with financial professionals and institutions to make it possible for more people to take action in their financial lives, for today and tomorrow.
We are stronger as one: We collaborate across the enterprise, scale what works and act decisively for our customers and partners.
We deliver on commitments: We are accountable, empower each other and go above and beyond for our stakeholders.
We learn, improve and innovate: We get better each day by challenging the status quo and equipping ourselves for the future.
We are inclusive: We embrace different perspectives, enabling our colleagues to make an impact and bring their whole selves to work.
Who You’ll Work With
The Information Technology organization is the technological foundation of our business and works in collaboration with our partners from across the company. The team drives technology and digital transformation, partners with business leaders to design and execute new strategies through IT and operations services and ensures the necessary IT risk management and security measures are in place and aligned with enterprise architecture standards and principles.
About The Role
The Enterprise Security Architect will help to lead the design, implementation, and oversight of secure systems and architectures across our organization. This role is critical to embedding security into enterprise processes, aligning with industry standards, and building a scalable security foundation. The ideal candidate will bring deep technical expertise, strong communication skills, and the ability to work independently or collaboratively to drive security initiatives and foster a security-first culture.
Responsibilities
Design, document, and maintain secure architecture patterns, diagrams, and reference architectures to guide security implementations across the organization.
Conduct comprehensive security reviews of applications, systems, and networks, identifying vulnerabilities and recommending secure design strategies.
Perform threat modeling and risk assessments to identify potential vulnerabilities and recommend appropriate mitigating controls.
Partner with enterprise and line-of-business architects to integrate security seamlessly into designs and processes.
Translate complex technical security concepts into clear, actionable insights for C-level executives, business leaders, non-technical stakeholders, and technical engineering teams.
Recommend mitigating controls, security tools, and remediation strategies to address security gaps and minimize risk.
Stay current on security threats, vulnerabilities, and technologies to enhance the organization’s security posture.
Promote a security-first culture by mentoring technical teams, educating stakeholders, and embedding security best practices into organizational workflows.
Skills And Qualifications
7+ years of hands-on experience in infrastructure, systems, networks, applications, or cloud security.
Ability to create and review diagrams using tools such as Visio or Lucidchart.
Familiarity with secure architecture patterns, reference architectures, and frameworks.
Expertise in SaaS, PaaS, and IaaS environments, including platforms like AWS, Azure, M365, and Salesforce.
Experience working with various identity and access management (IAM) solutions such as CyberArk, Okta, Ping Identity, Entra ID/Azure AD, and other tools supporting SSO, MFA, and PAM.
Familiarity with tools like Jira, Confluence, and ServiceNow for workflow management and documentation.
Expertise in threat modeling, vulnerability management, and risk assessments.
Working knowledge of regulatory requirements and compliance standards such as NYDFS, CCPA, GLBA, PCI-DSS, HIPAA, SOX, and GDPR.
Relevant certifications such as CISSP, CCSP, or equivalent.
Ability to work independently or collaboratively in a team-oriented environment.
Bachelor’s degree in a relevant field or proven record of experience in Information Technology and Cyber Security roles.
Technical Skills
Familiarity with protocols such as SAML, OAuth, OIDC, FIDO, PKI, JWT, LDAP, and Kerberos.
Strong knowledge of common network protocols, including TCP/IP, HTTP/HTTPS, DNS, SMTP, SNMP, SSH, and VPN technologies.
Expertise in encryption technologies (e.g., TLS, AES, RSA) and key management practices (e.g., KMS, HSM, PKI).
Familiarity with firewalls, IDS/IPS, WAF, VPN, Routers, Switches, Load Balancers, Zero-Trust, microsegmentation, and SD-WAN security solutions, CASB, Proxy, SSE.
Experience with SIEM tools such as Splunk, QRadar, or ArcSight and logging/monitoring best practices.
Knowledge of Docker, Kubernetes, EKS, ECS, and OCP, including their security considerations.
Proficiency in integrating security into DevOps pipelines with tools such as Jenkins, GitHub, Artifactory, Terraform, and Vault.
Common Security and Architecture Frameworks
Security Frameworks: NIST Cybersecurity Framework (CSF), ISO 27001 and 27002, CSA CCM (Cloud Controls Matrix), CIS Controls
Architecture Frameworks: SABSA, TOGAF, AWS Well-Architected Framework
Preferred Certifications
TOGAF
SABSA Foundation or Practitioner
CISSP-ISSAP
Certified Cloud Security Professional (CCSP)
GIAC Security Architecture (GDSA)
AWS Certified Solutions Architect – Associate or Professional
AWS Certified Security – Specialty
Microsoft Certified: Azure Solutions Architect Expert
Soft Skills
Strong analytical and problem-solving abilities.
Excellent interpersonal and collaboration skills.
Strong organizational and time management skills.
Adaptability and a commitment to continuous learning of new technologies and methodologies.
Attention to detail and dedication to delivering high-quality results.
High level of integrity and ethical conduct.
Industry-Specific Experience
Experience in financial services, insurance, or other regulated environments.
Proven ability to design and implement security controls that align with industry regulations and standards.
Experience conducting security assessments and audits in regulated industries.
Familiarity with industry-specific threats and vulnerabilities to tailor security solutions.
Compensation
The anticipated salary range for this position is $140,000 to $165,000 at the commencement of employment. Not all candidates will be eligible for the upper end of the salary range. The actual compensation offered will depend on factors including geographic location, skills, experience and other qualifications. The position is eligible for a discretionary bonus in accordance with the applicable incentive plan. Corebridge also offers a range of competitive benefits as part of the total compensation package.
Work Location
This position is based in Corebridge Financial’s Jersey City, NC, Houston, TX, or Durham, NC office and is subject to our hybrid working policy, which allows working both in an office and remotely.
Benefits Overview
Health and Wellness: medical, dental and vision insurance plans, mental health support and wellness initiatives.
Retirement Savings: 401(k) plan with Company matching up to 6% and a Company contribution of 3% (vests immediately).
Employee Assistance Program: Confidential counseling services.
Matching charitable donations: 1:1 match up to $5,000.
Volunteer Time Off: Up to 16 hours annually.
Paid Time Off: At least 24 PTO days to start.
Eligibility for and participation in employer-sponsored benefit plans and Company programs will be subject to applicable law, governing Plan document(s) and Company policy.
Equal Opportunity Employer
Corebridge Financial is committed to being an equal opportunity employer and we comply with all applicable federal, state, and local fair employment laws. All applicants will be considered based on job-related qualifications without regard to protected characteristics. Reasonable accommodations are available for applicants with disabilities or sincerely held religious beliefs. If you need an accommodation, please email TalentandInclusion@corebridgefinancial.com. Qualified applicants with criminal histories will be considered in a manner consistent with applicable laws. For more information, visit www.corebridgefinancial.com.
Functional Area
IT - Information Technology
Estimated Travel Percentage
Up to 25%
Relocation Provided
No
American General Life Insurance Company
#J-18808-Ljbffr
Enterprise Security Architect
role at
Corebridge Financial
Who We Are
At Corebridge Financial, we believe action is everything. That’s why every day we partner with financial professionals and institutions to make it possible for more people to take action in their financial lives, for today and tomorrow.
We are stronger as one: We collaborate across the enterprise, scale what works and act decisively for our customers and partners.
We deliver on commitments: We are accountable, empower each other and go above and beyond for our stakeholders.
We learn, improve and innovate: We get better each day by challenging the status quo and equipping ourselves for the future.
We are inclusive: We embrace different perspectives, enabling our colleagues to make an impact and bring their whole selves to work.
Who You’ll Work With
The Information Technology organization is the technological foundation of our business and works in collaboration with our partners from across the company. The team drives technology and digital transformation, partners with business leaders to design and execute new strategies through IT and operations services and ensures the necessary IT risk management and security measures are in place and aligned with enterprise architecture standards and principles.
About The Role
The Enterprise Security Architect will help to lead the design, implementation, and oversight of secure systems and architectures across our organization. This role is critical to embedding security into enterprise processes, aligning with industry standards, and building a scalable security foundation. The ideal candidate will bring deep technical expertise, strong communication skills, and the ability to work independently or collaboratively to drive security initiatives and foster a security-first culture.
Responsibilities
Design, document, and maintain secure architecture patterns, diagrams, and reference architectures to guide security implementations across the organization.
Conduct comprehensive security reviews of applications, systems, and networks, identifying vulnerabilities and recommending secure design strategies.
Perform threat modeling and risk assessments to identify potential vulnerabilities and recommend appropriate mitigating controls.
Partner with enterprise and line-of-business architects to integrate security seamlessly into designs and processes.
Translate complex technical security concepts into clear, actionable insights for C-level executives, business leaders, non-technical stakeholders, and technical engineering teams.
Recommend mitigating controls, security tools, and remediation strategies to address security gaps and minimize risk.
Stay current on security threats, vulnerabilities, and technologies to enhance the organization’s security posture.
Promote a security-first culture by mentoring technical teams, educating stakeholders, and embedding security best practices into organizational workflows.
Skills And Qualifications
7+ years of hands-on experience in infrastructure, systems, networks, applications, or cloud security.
Ability to create and review diagrams using tools such as Visio or Lucidchart.
Familiarity with secure architecture patterns, reference architectures, and frameworks.
Expertise in SaaS, PaaS, and IaaS environments, including platforms like AWS, Azure, M365, and Salesforce.
Experience working with various identity and access management (IAM) solutions such as CyberArk, Okta, Ping Identity, Entra ID/Azure AD, and other tools supporting SSO, MFA, and PAM.
Familiarity with tools like Jira, Confluence, and ServiceNow for workflow management and documentation.
Expertise in threat modeling, vulnerability management, and risk assessments.
Working knowledge of regulatory requirements and compliance standards such as NYDFS, CCPA, GLBA, PCI-DSS, HIPAA, SOX, and GDPR.
Relevant certifications such as CISSP, CCSP, or equivalent.
Ability to work independently or collaboratively in a team-oriented environment.
Bachelor’s degree in a relevant field or proven record of experience in Information Technology and Cyber Security roles.
Technical Skills
Familiarity with protocols such as SAML, OAuth, OIDC, FIDO, PKI, JWT, LDAP, and Kerberos.
Strong knowledge of common network protocols, including TCP/IP, HTTP/HTTPS, DNS, SMTP, SNMP, SSH, and VPN technologies.
Expertise in encryption technologies (e.g., TLS, AES, RSA) and key management practices (e.g., KMS, HSM, PKI).
Familiarity with firewalls, IDS/IPS, WAF, VPN, Routers, Switches, Load Balancers, Zero-Trust, microsegmentation, and SD-WAN security solutions, CASB, Proxy, SSE.
Experience with SIEM tools such as Splunk, QRadar, or ArcSight and logging/monitoring best practices.
Knowledge of Docker, Kubernetes, EKS, ECS, and OCP, including their security considerations.
Proficiency in integrating security into DevOps pipelines with tools such as Jenkins, GitHub, Artifactory, Terraform, and Vault.
Common Security and Architecture Frameworks
Security Frameworks: NIST Cybersecurity Framework (CSF), ISO 27001 and 27002, CSA CCM (Cloud Controls Matrix), CIS Controls
Architecture Frameworks: SABSA, TOGAF, AWS Well-Architected Framework
Preferred Certifications
TOGAF
SABSA Foundation or Practitioner
CISSP-ISSAP
Certified Cloud Security Professional (CCSP)
GIAC Security Architecture (GDSA)
AWS Certified Solutions Architect – Associate or Professional
AWS Certified Security – Specialty
Microsoft Certified: Azure Solutions Architect Expert
Soft Skills
Strong analytical and problem-solving abilities.
Excellent interpersonal and collaboration skills.
Strong organizational and time management skills.
Adaptability and a commitment to continuous learning of new technologies and methodologies.
Attention to detail and dedication to delivering high-quality results.
High level of integrity and ethical conduct.
Industry-Specific Experience
Experience in financial services, insurance, or other regulated environments.
Proven ability to design and implement security controls that align with industry regulations and standards.
Experience conducting security assessments and audits in regulated industries.
Familiarity with industry-specific threats and vulnerabilities to tailor security solutions.
Compensation
The anticipated salary range for this position is $140,000 to $165,000 at the commencement of employment. Not all candidates will be eligible for the upper end of the salary range. The actual compensation offered will depend on factors including geographic location, skills, experience and other qualifications. The position is eligible for a discretionary bonus in accordance with the applicable incentive plan. Corebridge also offers a range of competitive benefits as part of the total compensation package.
Work Location
This position is based in Corebridge Financial’s Jersey City, NC, Houston, TX, or Durham, NC office and is subject to our hybrid working policy, which allows working both in an office and remotely.
Benefits Overview
Health and Wellness: medical, dental and vision insurance plans, mental health support and wellness initiatives.
Retirement Savings: 401(k) plan with Company matching up to 6% and a Company contribution of 3% (vests immediately).
Employee Assistance Program: Confidential counseling services.
Matching charitable donations: 1:1 match up to $5,000.
Volunteer Time Off: Up to 16 hours annually.
Paid Time Off: At least 24 PTO days to start.
Eligibility for and participation in employer-sponsored benefit plans and Company programs will be subject to applicable law, governing Plan document(s) and Company policy.
Equal Opportunity Employer
Corebridge Financial is committed to being an equal opportunity employer and we comply with all applicable federal, state, and local fair employment laws. All applicants will be considered based on job-related qualifications without regard to protected characteristics. Reasonable accommodations are available for applicants with disabilities or sincerely held religious beliefs. If you need an accommodation, please email TalentandInclusion@corebridgefinancial.com. Qualified applicants with criminal histories will be considered in a manner consistent with applicable laws. For more information, visit www.corebridgefinancial.com.
Functional Area
IT - Information Technology
Estimated Travel Percentage
Up to 25%
Relocation Provided
No
American General Life Insurance Company
#J-18808-Ljbffr