Original listing text, shown exactly as published by the company.
About the Role
SteerBridge Strategies is seeking an experienced Security Architect to support our Payments and Aviation FinTech initiatives. This role is critical in designing and implementing secure, compliant, and scalable architectures supporting regulated financial systems and high-visibility enterprise platforms.
The Security Architect will lead security design, compliance alignment, and risk mitigation efforts across cloud and hybrid environments. This role requires deep expertise in FinTech security standards and federal cybersecurity frameworks, along with the ability to operate in a collaborative, high-trust engineering culture.
Key Responsibilities
- Architect secure cloud and hybrid solutions supporting FinTech data systems.
- Develop, maintain, and own System Security Plans (SSPs) and all supporting compliance artifacts.
- Lead all phases of the security compliance and architecture process, from system creation through continuous monitoring.
- Apply and interpret NIST SP 800-53 controls across system and data environments.
- Conduct security risk assessments, gap analyses, and vulnerability remediation planning.
- Collaborate with engineering, infrastructure, and compliance teams to enforce secure-by-design principles.
- Manage security documentation, policies, procedures, and control evidence.
- Support security audits, penetration testing coordination, and incident response planning.
- Serve as a subject matter expert for data protection, encryption, and identity and access management (IAM).
- Safeguard sensitive information and adhere to all organizational security and privacy policies, ensuring proper handling and confidentiality of data at all times.
Professional Experience & Qualifications
- Must be a US Citizen (for security clearance purposes).
- 10+ years of cybersecurity architecture experience in federal or large enterprise environments.
- Deep expertise in FinTech security and compliance requirements, including GLBA, CCPA, FinCEN reporting, PCI-DSS, GDPR, SOC 2, and ISO frameworks.
- Proven experience documenting and implementing compliance requirements and developing secure architecture in regulated environments.
- Strong knowledge of system hardening, network security, encryption protocols, and secure SDLC practices.
- Experience securing cloud platforms such as AWS, Azure, and/or GCP in regulated environments.
Preferred Qualifications
- One or more of the following certifications: CAP, CASP, CISM, CISSP, or GSLC.
- Experience with FinTech-specific security requirements and IT systems.
- Experience with federal security requirements, including FISMA, FedRAMP, and NIST SP 800-53.
- Strong written and verbal communication skills with the ability to produce audit-ready documentation.
- Experience coordinating with Security Engineers, Developers, and System Administrators.
