Information Security Officer, Vice President

State Street

. Provide senior-level cyber risk oversight for enterprise infrastructure platforms, including compute, storage, network, virtualization, identity, and cloud services.

Posted 4/28/2026full-timeQuincy • Massachusetts • 🇺🇸 United StatesLead💰 $120,000 - $217,500 per yearWebsite

Tech Stack

Tools & technologies

AWSAzureCloudCyber SecurityOracle

About the role

Key responsibilities & impact

Provide senior-level cyber risk oversight for enterprise infrastructure platforms, including compute, storage, network, virtualization, identity, and cloud services.
Act as the primary cybersecurity risk partner to infrastructure and platform executives, advising on design decisions, material change initiatives, and risk acceptance.
Drive consistent application of security-by-design and resilience principles across infrastructure strategy, architecture, and lifecycle processes.
Lead infrastructure cyber risk assessments, control gap analysis, and risk prioritization aligned to enterprise risk appetite and regulatory expectations.
Oversee execution and tracking of material risk remediation efforts across infrastructure domains, ensuring transparency and escalation where required.
Provide leadership during infrastructure-related cyber incidents, including decision support, impact assessment, and post-incident improvements.
Partner with global cybersecurity functions to influence standards, patterns, and tooling related to infrastructure security (e.g., vulnerability management, IAM, logging, cloud security).
Present infrastructure cyber risk, trends, and material issues to senior management and governance forums in clear business-relevant terms.

Requirements

What you’ll need

Significant experience in infrastructure cybersecurity or technology risk leadership within large, complex enterprises, preferably in regulated financial services environments.
Strong understanding of enterprise infrastructure architectures and associated security risks across on-prem, cloud, and hybrid models.
Proven ability to lead risk-based decision-making, including control design, remediation prioritization, and risk acceptance discussions at senior levels.
Demonstrated success influencing senior infrastructure and technology stakeholders without direct line authority.
Strong communication skills, with experience translating technical infrastructure risk into business and regulatory impact.
Senior-level experience with public cloud security (AWS, Azure, and Oracle) and cloud governance models.
Familiarity with infrastructure automation and DevOps/IaC from a security and control perspective.
Experience operating within regulatory or industry frameworks (e.g., NIST, ISO, DORA, FFIEC).
Background supporting large-scale infrastructure transformation initiatives (e.g., data center exit, cloud migration, resilience uplift programs).
Fluency in English required, Mandarin proficiency highly desireable.

Benefits

Comp & perks

our retirement savings plan (401K) with company match
insurance coverage including basic life, medical, dental, vision, long-term disability, and other optional additional coverages
paid-time off including vacation, sick leave, short term disability, and family care responsibilities
access to our Employee Assistance Program
incentive compensation including eligibility for annual performance-based awards (excluding certain sales roles subject to sales incentive plans)
eligibility for certain tax advantaged savings plans

ATS Keywords

✓ Tailor your resume

Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard Skills & Tools

cyber risk oversightinfrastructure cybersecurityrisk-based decision-makingcontrol designremediation prioritizationpublic cloud securityinfrastructure automationDevOpsIaCcloud governance

Soft Skills

leadershipcommunicationinfluencing stakeholderstranslating technical riskdecision supportimpact assessmentpost-incident improvementstransparencyescalationcollaboration