Job Description:

The Role

At Fidelity Asset Management Technology, we are seeking a highly motivated and experienced Application Security Architect to drive strategic security initiatives across our entire technology landscape. In this role, you will work directly with product teams across Asset Management Technology and the enterprise to design secure solutions that meet business priorities and initiatives.

Responsibilities:

• Continuously evaluate security architecture trends and the emerging threat landscape and integrate new technologies and tools to enhance security capabilities.
• Collaborate with architecture communities across Asset Management and in cross business unit working teams at the enterprise level.
• Collaborate with product teams to understand security requirements and deliver effective solutions.
• Design and implement robust, scalable application security architecture solutions that support the Asset Management business.

• Devise the strategic vision and roadmap to define investments that continuously evolving our risk posture.
• Conduct hands-on POCs and provide proven migration paths for product teams to advance our roadmap
• Influence Asset Management Technology and enterprise security strategy and promote changes in process, standards, or technologies when necessary.

• Bachelor's degree in Computer Science, Information Technology, or a related field.
• Depth of knowledge in architecture and an ability to translate business objectives into technology solutions. Experience in a wide array of architecture patterns including architecting highly performant systems, event-driven architectures, APIs, data architecture and security architectures.

• Deep experience in architecting, designing & building highly scalable, low-latency applications

• Organizational savvy and maturity, ability to work effectively across different organizational units and business groups.
• Demonstrated ability in defining new and/or evolving existing strategies, aligning with enterprise direction, collaborating with, and influencing technology partners to adopt and implement accordingly.
• Good interpersonal and communication
• Passion and curiosity to work with others to foster ideas and produce creative solutions to intricate problems while making smart choices balancing design and delivery.
• Passion for staying current on technology trends to shift direction and get results.
• Demonstrated desire and skill to turn concept and theory into pragmatic implementations by performing end-to-end hands-on proofs of concept, providing concrete solutions and clear migration plans to enable adoption.
• Deep understanding of application security frameworks, disciplines and practices, experience with secure application development and application security risk mitigation techniques.
• Deep technical understanding of and experience with security technologies including, but not limited to, Identity and Access Management, cryptography, key management, passwordless authentication, OIDC, OAuth, SAML, Azure AD, SPIFFE, SPIRE
• Experience addressing unique security considerations of cloud computing, especially that of AWS
• Experience architecting and implementing solutions for identity management including single sign-on and federated identity management, authorization and identity provisioning.
• Experience of developing applications with Java & SpringBoot
• Experience with working with API's (Both API Development & API Consumption)
• Experience in designing, developing, and deploying applications on AWS. Practical knowledge of a broad range of AWS services, including compute, containers, databases, analytics, and security.
• Hands-on experience with containers (Docker) and Kubernetes
• Well-grounded knowledge of engineering and continuous delivery practices