Lead Information Security Architect

The Lead Information Security Architect reviews information security architecture, while ensuring consistent and effective information security administration procedures and processes. Working under limited supervision, this job oversees security configuration and the installation of various servers, along with helping to design security models and craft the overall information technology (IT) vision within the organization.Key Responsibilities And DutiesReviews the design and development of security models, along with establishing the procedures and guidelines for hardware, software and network security that support information security policies.Overseeing security awareness programs; educating and communicating to staff about information security polices, procedures, and practices.Crafts the organizational technology vision and information security principles and standards to ensure that the information security needs of the business are met.Reviews and implements the design for security solutions and champions them through the architectural portions of the software development life cycle process.Advises the selection decisions of security tools for use by various security teams and in the architecture review as the voice of security in the governance of the software development process as it relates to architectural elements.Serves as an internal information security consultant on the standards, complex issues and best practices to the organization.Coaches and delegates work to lower-level professionals to ensure high-quality and timely completion of projects while managing select projects and processes.Minimum Qualifications5 years of experience leading security architecture initiatives for an enterprise organizationPrior experience designing, implementing, and managing security architecture standards to ensure compliance and to reduce risk to the bankPreferred Qualifications7+ years of experience leading security architecture for a mid-large sized financial institutionAdvanced knowledge and understanding of cloud security concepts - Azure, AWS, GCP, etc.One or more of the following certifications - CISSP, CCSP, TOGAFEducational RequirementsUniversity (Degree) PreferredPhysical RequirementsPhysical Requirements: Sedentary WorkCareer Level8IC$121,600 - $164,600 ,EverBank, N.A. is a nationwide specialty bank providing high-value products and services to consumer and commercial clients nationwide. As a pioneer in online banking, we offer convenient digital access for clients 24/7, in addition to phone banking services and a network of financial centers.The Company's commitment is to deliver to our clients high-performing, high-yield solutions backed by exceptional service, always giving them the advantage they expect, to make the most of their money.VEVRAA Federal ContractorMember FDICNotice to Job SeekersQualificationsEverBank, N.A. is committed to the well-being of its associates. That's why we offer a comprehensive Total Rewards package commensurate with the position and job-related qualifications, skills and knowledge. The Company's comprehensive Total Rewards package provides choice and flexibility and respects differences. The following benefits are available through the Company:Medical, dental, vision & HSA/FSA 401(k) savingsPaid holidays & generous PTOAdditional wellness & voluntary benefitsAdditional Company-provided Benefit Options (subject To Plan Terms)Tuition reimbursementCommuter BenefitsLife and Disability InsuranceAdditional ResponsibilitiesOwn and lead security architecture as a 1st Line of Defense function, accountable for proactive risk identification, control design, and secure technology enablementDefine, implement, and maintain enterprise security architecture across applications, infrastructure, cloud, data, identity, and third‑party integrationsEstablish and enforce security architecture standards, patterns, and guardrails to ensure compliance with FFIEC, GLBA, SOX, and internal risk appetitePartner directly with engineering, product, and infrastructure teams to embed security-by-design and DevSecOps practices throughout the SDLCServe as the authoritative approver for security architecture reviews, threat models, and risk assessments for new initiatives and material changesDrive adoption of Zero Trust principles, IAM, network segmentation, encryption, key management, and data protection architecturesTranslate regulatory, risk, and business requirements into pragmatic, scalable security solutions that enable business outcomesProvide architectural oversight for cloud migrations, fintech integrations, and vendor solutions, ensuring secure onboarding and ongoing risk managementActively support incident response, vulnerability prioritization, and security event remediation by addressing systemic and architectural weaknessesMentor and technically lead security engineers, acting as a force multiplier for security maturity across the organizationCollaborate with 2nd Line (Risk/GRC) and Audit teams while retaining ownership for control implementation and effectivenessPosting end date - 4/30/26