Chief Information Security Officer
Daxko
AWSAzureCloudCyber SecurityGoogle Cloud PlatformSDLC
VP, Information Security Architecture
Synchrony
full-time
Posted on:
Origin: • 🇺🇸 United States • California
Visit company websiteSalary
💰 $170,000 - $290,000 per year
Job Level
Senior
Tech Stack
AWSAzureCloudCyber SecurityGoogle Cloud Platform
About the role
- Lead the design, development, and execution of enterprise-wide information security architecture strategy aligned to business objectives, regulatory requirements, and evolving threats.
- Influence technology decisions and drive secure innovation across cloud security, threat modeling, IAM architecture, AI security, and security technologies.
- Define, implement, and enforce security architecture standards, policies, and frameworks (NIST CSF, CRI, CIS Controls) and conduct advanced threat modeling and risk assessments.
- Evaluate, select, integrate, and manage lifecycle of advanced security technologies (zero trust, AI-driven detection, automated response) and collaborate with IT and business units to embed security controls.
- Partner with senior leadership across IT, Risk, Compliance, and Business Units to embed security architecture into technology roadmaps and digital transformation efforts.
- Build, mentor, and lead a high-performing team of security architects and engineers; support audits and ensure compliance with FFIEC, SOX, GDPR, PCI-DSS.
- Collaborate with AI and ML teams to embed secure design principles for AI model integrity, data privacy, access controls, and adversarial threat protection.
Requirements
- Bachelor’s or Master’s degree in Computer Science, Information Technology, Cybersecurity, or related field; in lieu of a degree, 15+ years of related experience.
- Advanced degrees and professional certifications preferred (CISSP, CISM, CISA, SABSA, TOGAF, CCSK, or equivalent).
- 10+ years of progressive experience in information security (minimum), with at least 5 years in a leadership role focused on security architecture in financial services or highly regulated industries.
- Deep expertise in cloud security (AWS, Azure, GCP), identity and access management (IAM), zero trust, network security, encryption, and data protection.
- Demonstrated experience in security technology evaluation, selection, integration, and driving innovation (AI-driven threat detection, automation, advanced analytics).
- In-depth knowledge of financial services regulations and compliance frameworks (FFIEC, SOX, GDPR, PCI-DSS, CRI) and audit preparedness.
- Proven ability to develop security architecture frameworks, influence enterprise IT strategy, and enforce standards (NIST CSF, CRI, CIS Controls).
- Strong experience in threat modeling, risk assessment, and translating threat intelligence into architectural improvements.
- Demonstrated leadership in building, mentoring, and managing high-performing security architecture teams.
- Exceptional communication and interpersonal skills; ability to engage executive leadership and cross-functional stakeholders.
- Legal authorization to work in the U.S.; willingness to submit to drug test, background investigation, and fingerprints as part of onboarding.
