Who We Are Looking ForWe are looking for an Enterprise Integration Security Architect. You will be responsible for designing and governing security architectures for enterprise integrations, APIs, messaging platforms, event-driven architectures, managed file transfer services, and third-party connectivity solutions. You will partner with application development, cloud engineering, infrastructure, data, and cybersecurity teams to ensure secure, resilient, and scalable integration patterns are implemented across the enterprise.
What You Will Be Responsible ForAs an Enterprise Integration Security Architect, you will:
- Design and maintain security architectures, standards, and reference patterns for APIs, messaging platforms, event streaming services, file transfers, and third-party integrations.
- Conduct security architecture reviews for enterprise integration solutions across cloud, SaaS, hybrid, and on-premises environments.
- Define security requirements for API gateways, service-to-service communications, machine identities, partner connectivity, and integration platforms.
- Provide subject matter expertise on authentication, authorization, encryption, tokenization, secrets management, and secure integration design patterns.
- Partner with engineering and architecture teams to embed security controls into enterprise integration platforms and services.
- Assess integration security risks and recommend mitigation strategies aligned with enterprise security standards and regulatory requirements.
- Evaluate emerging integration technologies and industry trends to support future-state architecture and secure technology adoption.
What We ValueThese skills will help you succeed in this role:
- Deep expertise in API security, application integration, messaging security, and service-to-service communications.
- Strong understanding of modern integration architectures including APIs, microservices, event-driven architectures, cloud integrations, and SaaS connectivity.
- Experience with authentication and authorization frameworks including OAuth 2.0, OpenID Connect, SAML, JWT, mTLS, and machine-to-machine authentication.
- Strong analytical, problem-solving, and risk assessment skills with the ability to develop practical, scalable security solutions.
- Strong communication and stakeholder management skills with the ability to collaborate across architecture, engineering, cloud, and business teams.
Education & Preferred Qualifications- Degree in Computer Science, Cybersecurity, Information Technology, Engineering, or a related discipline.
- 14 years or more of experience in security architecture, application security, integration architecture, middleware technologies, or related technology disciplines with at least 8 years of hands-on cybersecurity experience preferred.
- Demonstrated experience designing and securing enterprise integration platforms, APIs, messaging environments, and cloud-native services.
- Deep expertise in API security, OAuth, OpenID Connect, SAML, JWT, mTLS, PKI, secrets management, and machine identity security.
- Experience with enterprise messaging and integration technologies such as IBM MQ, Kafka, Solace, Event Hubs, RabbitMQ, MuleSoft, Apigee, Kong, Azure Integration Services, or equivalent platforms.
- Strong understanding of cloud-native architectures, microservices, containers, Kubernetes, serverless technologies, and modern application architectures.
- Experience conducting security architecture reviews, threat modeling, and risk assessments for integration and data exchange solutions.
- Knowledge of Zero Trust principles, data protection requirements, encryption technologies, and secure communication architectures.
- Professional certifications such as CISSP, CCSP, GIAC, TOGAF, SABSA, AWS Security Specialty, Azure Security Engineer, or equivalent certifications are highly desirable.
- Experience within financial services or other highly regulated industries is preferred.
Additional Requirements- Experience supporting enterprise API programs, cloud transformation initiatives, and third-party connectivity solutions.
- Ability to work effectively with application, cloud, infrastructure, engineering, and cybersecurity teams in a global environment.
- Limited travel may be required based on business needs.
Work RequirementHybrid: Expected to work in accordance with State Street's hybrid work model.
Shift: Standard business hours with flexibility to support global stakeholders across multiple time zones.
Salary Range: $120,000 - $202,500 Annual
The range quoted above applies to the role in the primary location specified. If the candidate would ultimately work outside of the primary location above, the applicable range could differ.
Employees are eligible to participate in State Street's comprehensive benefits program, which includes: our retirement savings plan (401K) with company match; insurance coverage including basic life, medical, dental, vision, long-term disability, and other optional additional coverages; paid-time off including vacation, sick leave, short term disability, and family care responsibilities; access to our Employee Assistance Program; incentive compensation including eligibility for annual performance-based awards (excluding certain sales roles subject to sales incentive plans); and, eligibility for certain tax advantaged savings plans.
For a full overview, visit https://hrportal.ehr.com/statestreet/Home.