Fidelity Investments
Vice President, Privileged Access Management Architect
Fidelity Investments, Roanoke, Texas, United States, 76299
Vice President, Privileged Access Management Architect Join to apply for the
Vice President, Privileged Access Management Architect
role at
Fidelity Investments Vice President, Privileged Access Management Architect Join to apply for the
Vice President, Privileged Access Management Architect
role at
Fidelity Investments Get AI-powered advice on this job and more exclusive features. The Role
All potential applicants are encouraged to scroll through and read the complete job description before applying.
The Privileged Access Management (PAM) Architect will be responsible for designing the PAM architecture strategy for Fidelity’s Enterprise Cybersecurity organization. This role demands deep expertise in workload access controls, secrets management, and a solid grasp of frameworks such as SPIFFE and SPIRE. The ideal candidate will possess extensive experience with PAM tools, including CyberArk, Delinea, HashiCorp Vault, and Microsoft Entra ID, ensuring the security and compliance of the organization's IT infrastructure. Although this is an individual contributor role, strong leadership and influencing skills are crucial to drive initiatives and collaborate effectively across the organization. Develop a comprehensive PAM architecture strategy that aligns with organizational objectives and regulatory requirements. Lead the design and contribute to the development and deployment of PAM solutions, focusing on workload access controls and secrets management. Contribute to the implementation and management of secrets management solutions, ensuring the secure storage, access, and rotation of privileged credentials. Apply frameworks like SPIFFE (Secure Production Identity Framework for Everyone) and SPIRE (SPIFFE Runtime Environment) to establish secure, scalable, and standardized workload identities. Leverage PAM tools such as CyberArk, Delinea Secret Server, HashiCorp Vault, and Microsoft Entra ID to enhance security measures and streamline access management processes. Design PAM policies, standards, and procedures to ensure consistent and secure management of privileged accounts. Ensure PAM practices comply with organizational policies and regulatory requirements. Assess the effectiveness of PAM controls, making data-driven decisions to reduce risk and enhance security posture. Collaborate with technology and business partners to identify and mitigate risks associated with privileged access. Stay current with emerging trends and technologies in PAM and cybersecurity driving enhancements to existing solutions.
Job Description
The Role
The Privileged Access Management (PAM) Architect will be responsible for designing the PAM architecture strategy for Fidelity’s Enterprise Cybersecurity organization. This role demands deep expertise in workload access controls, secrets management, and a solid grasp of frameworks such as SPIFFE and SPIRE. The ideal candidate will possess extensive experience with PAM tools, including CyberArk, Delinea, HashiCorp Vault, and Microsoft Entra ID, ensuring the security and compliance of the organization's IT infrastructure. Although this is an individual contributor role, strong leadership and influencing skills are crucial to drive initiatives and collaborate effectively across the organization.
Develop a comprehensive PAM architecture strategy that aligns with organizational objectives and regulatory requirements. Lead the design and contribute to the development and deployment of PAM solutions, focusing on workload access controls and secrets management. Contribute to the implementation and management of secrets management solutions, ensuring the secure storage, access, and rotation of privileged credentials. Apply frameworks like SPIFFE (Secure Production Identity Framework for Everyone) and SPIRE (SPIFFE Runtime Environment) to establish secure, scalable, and standardized workload identities. Leverage PAM tools such as CyberArk, Delinea Secret Server, HashiCorp Vault, and Microsoft Entra ID to enhance security measures and streamline access management processes. Design PAM policies, standards, and procedures to ensure consistent and secure management of privileged accounts. Ensure PAM practices comply with organizational policies and regulatory requirements. Assess the effectiveness of PAM controls, making data-driven decisions to reduce risk and enhance security posture. Collaborate with technology and business partners to identify and mitigate risks associated with privileged access. Stay current with emerging trends and technologies in PAM and cybersecurity driving enhancements to existing solutions.
The Expertise And Skills You Bring
10+ years of experience in defining and delivering cybersecurity architecture, strategies and solutions with demonstrated experience in the financial services industry or other highly regulated sectors. Bachelor's degree in Information Security, Computer Science, or a related field; a Master's degree is preferred. Strong industry experience in architecting and designing PAM solutions and deployment across the enterprise. Deep technical understanding of PAM capabilities, controls and security technologies in areas related to identity and access management to address privilege-based risk. Familiarity with regulatory requirements related to PAM, such as PCI DSS, HIPAA, or GDPR. Expertise with build vs. buy solution options. Working knowledge and experience with Cloud Architectures and the ability to address the security considerations of secure cloud computing including IAM with enterprise services, SSDLC, data protection, cryptography and key management. Demonstrate leadership and consensus building skills with which you influence decisions and engage across Fidelity and at all levels of the organization Exceptional communication and interpersonal skills, with the ability to effectively communicate complex technical concepts to non-technical stakeholders. Relevant certifications such as Certified Information Systems Security Professional (CISSP) or Certified Information Security Manager (CISM), Certified in Risk and Information Systems Control (CRISC) are highly desirable.
The Team
The Enterprise Cybersecurity (ECS) organization sets Fidelity’s cybersecurity strategy, policy and standards and is responsible for delivering effective security solutions to ensure customer and enterprise data and assets are protected in a constantly evolving cyber-threat landscape. We focus on Cyber threat reduction, vulnerability elimination, deterrence, incident response, resiliency, and recovery policies and activities. You will work directly with the product management and engineering teams to develop solutions to critical projects and provide strategic roadmaps mentorship to both partner teams within ECS as well as for our business units and Enterprise Infrastructure.
Certifications
Category:
Information Technology
Fidelity’s hybrid working model blends the best of both onsite and offsite work experiences. Working onsite is important for our business strategy and our culture. We also value the benefits that working offsite offers associates. Most hybrid roles require associates to work onsite every other week (all business days, M-F) in a Fidelity office.Seniority level
Seniority levelExecutive Employment type
Employment typeFull-time Job function
Job functionBusiness Development and Sales Referrals increase your chances of interviewing at Fidelity Investments by 2x Get notified about new Vice President Management jobs in
Roanoke, TX . Arlington, TX $105,000 - $120,000 1 month ago SVP Capital Planning Review Officer (Hybrid)SVP Managing Director- 401K Relationship ManagerVice President of Sales – Wealth Management Irving, TX $96,400.00 - $144,600.00 4 days ago Risk Appetite Strategy and Tech Lead Analyst - VP (hybrid) Irving, TX $125,760.00 - $188,640.00 1 week ago Global KYC Policy, Regulatory & Execution, Vice President Irving, TX $126,000.00 - $164,000.00 2 months ago Global Enhanced Due Diligence - Senior Expansion & Optimization Strategy, Vice President Irving, TX $126,000.00 - $164,000.00 1 week ago Irving, TX $252,480.00 - $378,600.00 1 week ago Dallas-Fort Worth Metroplex $150,000.00 - $200,000.00 2 weeks ago Vice President, Operations (Single-Family Rental Community)Vice President of Operations - Southeast RegionSenior Vice President, Decision SciencesSenior Regional Director, Property OperationsArea Vice President, Operations (Hospice)Vice President of Enterprise Risk ManagementVice President of Contracting – Mental HealthVice President of Revenue Cycle ManagementAssociate Vice President - Strategic RelationsVice President, Revenue Cycle Management We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.
#J-18808-Ljbffr
Vice President, Privileged Access Management Architect
role at
Fidelity Investments Vice President, Privileged Access Management Architect Join to apply for the
Vice President, Privileged Access Management Architect
role at
Fidelity Investments Get AI-powered advice on this job and more exclusive features. The Role
All potential applicants are encouraged to scroll through and read the complete job description before applying.
The Privileged Access Management (PAM) Architect will be responsible for designing the PAM architecture strategy for Fidelity’s Enterprise Cybersecurity organization. This role demands deep expertise in workload access controls, secrets management, and a solid grasp of frameworks such as SPIFFE and SPIRE. The ideal candidate will possess extensive experience with PAM tools, including CyberArk, Delinea, HashiCorp Vault, and Microsoft Entra ID, ensuring the security and compliance of the organization's IT infrastructure. Although this is an individual contributor role, strong leadership and influencing skills are crucial to drive initiatives and collaborate effectively across the organization. Develop a comprehensive PAM architecture strategy that aligns with organizational objectives and regulatory requirements. Lead the design and contribute to the development and deployment of PAM solutions, focusing on workload access controls and secrets management. Contribute to the implementation and management of secrets management solutions, ensuring the secure storage, access, and rotation of privileged credentials. Apply frameworks like SPIFFE (Secure Production Identity Framework for Everyone) and SPIRE (SPIFFE Runtime Environment) to establish secure, scalable, and standardized workload identities. Leverage PAM tools such as CyberArk, Delinea Secret Server, HashiCorp Vault, and Microsoft Entra ID to enhance security measures and streamline access management processes. Design PAM policies, standards, and procedures to ensure consistent and secure management of privileged accounts. Ensure PAM practices comply with organizational policies and regulatory requirements. Assess the effectiveness of PAM controls, making data-driven decisions to reduce risk and enhance security posture. Collaborate with technology and business partners to identify and mitigate risks associated with privileged access. Stay current with emerging trends and technologies in PAM and cybersecurity driving enhancements to existing solutions.
Job Description
The Role
The Privileged Access Management (PAM) Architect will be responsible for designing the PAM architecture strategy for Fidelity’s Enterprise Cybersecurity organization. This role demands deep expertise in workload access controls, secrets management, and a solid grasp of frameworks such as SPIFFE and SPIRE. The ideal candidate will possess extensive experience with PAM tools, including CyberArk, Delinea, HashiCorp Vault, and Microsoft Entra ID, ensuring the security and compliance of the organization's IT infrastructure. Although this is an individual contributor role, strong leadership and influencing skills are crucial to drive initiatives and collaborate effectively across the organization.
Develop a comprehensive PAM architecture strategy that aligns with organizational objectives and regulatory requirements. Lead the design and contribute to the development and deployment of PAM solutions, focusing on workload access controls and secrets management. Contribute to the implementation and management of secrets management solutions, ensuring the secure storage, access, and rotation of privileged credentials. Apply frameworks like SPIFFE (Secure Production Identity Framework for Everyone) and SPIRE (SPIFFE Runtime Environment) to establish secure, scalable, and standardized workload identities. Leverage PAM tools such as CyberArk, Delinea Secret Server, HashiCorp Vault, and Microsoft Entra ID to enhance security measures and streamline access management processes. Design PAM policies, standards, and procedures to ensure consistent and secure management of privileged accounts. Ensure PAM practices comply with organizational policies and regulatory requirements. Assess the effectiveness of PAM controls, making data-driven decisions to reduce risk and enhance security posture. Collaborate with technology and business partners to identify and mitigate risks associated with privileged access. Stay current with emerging trends and technologies in PAM and cybersecurity driving enhancements to existing solutions.
The Expertise And Skills You Bring
10+ years of experience in defining and delivering cybersecurity architecture, strategies and solutions with demonstrated experience in the financial services industry or other highly regulated sectors. Bachelor's degree in Information Security, Computer Science, or a related field; a Master's degree is preferred. Strong industry experience in architecting and designing PAM solutions and deployment across the enterprise. Deep technical understanding of PAM capabilities, controls and security technologies in areas related to identity and access management to address privilege-based risk. Familiarity with regulatory requirements related to PAM, such as PCI DSS, HIPAA, or GDPR. Expertise with build vs. buy solution options. Working knowledge and experience with Cloud Architectures and the ability to address the security considerations of secure cloud computing including IAM with enterprise services, SSDLC, data protection, cryptography and key management. Demonstrate leadership and consensus building skills with which you influence decisions and engage across Fidelity and at all levels of the organization Exceptional communication and interpersonal skills, with the ability to effectively communicate complex technical concepts to non-technical stakeholders. Relevant certifications such as Certified Information Systems Security Professional (CISSP) or Certified Information Security Manager (CISM), Certified in Risk and Information Systems Control (CRISC) are highly desirable.
The Team
The Enterprise Cybersecurity (ECS) organization sets Fidelity’s cybersecurity strategy, policy and standards and is responsible for delivering effective security solutions to ensure customer and enterprise data and assets are protected in a constantly evolving cyber-threat landscape. We focus on Cyber threat reduction, vulnerability elimination, deterrence, incident response, resiliency, and recovery policies and activities. You will work directly with the product management and engineering teams to develop solutions to critical projects and provide strategic roadmaps mentorship to both partner teams within ECS as well as for our business units and Enterprise Infrastructure.
Certifications
Category:
Information Technology
Fidelity’s hybrid working model blends the best of both onsite and offsite work experiences. Working onsite is important for our business strategy and our culture. We also value the benefits that working offsite offers associates. Most hybrid roles require associates to work onsite every other week (all business days, M-F) in a Fidelity office.Seniority level
Seniority levelExecutive Employment type
Employment typeFull-time Job function
Job functionBusiness Development and Sales Referrals increase your chances of interviewing at Fidelity Investments by 2x Get notified about new Vice President Management jobs in
Roanoke, TX . Arlington, TX $105,000 - $120,000 1 month ago SVP Capital Planning Review Officer (Hybrid)SVP Managing Director- 401K Relationship ManagerVice President of Sales – Wealth Management Irving, TX $96,400.00 - $144,600.00 4 days ago Risk Appetite Strategy and Tech Lead Analyst - VP (hybrid) Irving, TX $125,760.00 - $188,640.00 1 week ago Global KYC Policy, Regulatory & Execution, Vice President Irving, TX $126,000.00 - $164,000.00 2 months ago Global Enhanced Due Diligence - Senior Expansion & Optimization Strategy, Vice President Irving, TX $126,000.00 - $164,000.00 1 week ago Irving, TX $252,480.00 - $378,600.00 1 week ago Dallas-Fort Worth Metroplex $150,000.00 - $200,000.00 2 weeks ago Vice President, Operations (Single-Family Rental Community)Vice President of Operations - Southeast RegionSenior Vice President, Decision SciencesSenior Regional Director, Property OperationsArea Vice President, Operations (Hospice)Vice President of Enterprise Risk ManagementVice President of Contracting – Mental HealthVice President of Revenue Cycle ManagementAssociate Vice President - Strategic RelationsVice President, Revenue Cycle Management We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.
#J-18808-Ljbffr