Enterprise Security Architect

At Barings, we are as invested in our associates as we are in our clients. We recognize those who work diligently for us and reward them for personal and professional integrity, communication skills, distinct competencies and expertise in specific strategies, ability to collaborate as a team member and true dedication to the interests of our clients.

We thank you for your interest in joining the Barings team, and invite you to explore our current employment opportunities.

Job Title

Title: Enterprise Security Architect

Department: Global Technology - Enterprise Architecture Center of Excellence

Location: Charlotte, North Carolina

Job Summary

Barings is embarking on an exciting and dramatic evolution as a global asset management company in order to become more client-centric, technologically-enabled, and data-driven. As part of this evolution, we are investing in Enterprise Architecture which will play a pivotal role in the intersection of transformation and innovation of our global organization.

As a critical member of the Enterprise Architecture Center of Excellence (EA CoE), the Enterprise Security Architect (ESA) plays an integral role in ensuring that the Barings Security Strategy and security Architecture are integrated effectively into the wider Enterprise Architecture domains, with strong focus on end-to-end secure application development lifecycle, and DevSecOps practice.

Primary Responsibilities

• Develop strong partnership with CISO and security organization, as trusted strategic advisor, assist in development, documentation and maintenance key strategic security artifacts, including:
  • Security architecture at enterprise level (current and future state), based on EA principles, integrated with other technical domains, and aligned with business and threat drivers.
  • Security strategy plans and roadmaps based on sound enterprise architecture practices, capability model
  • Practices for secure applications/services architecture, data encryption and tokenization in the organization, based on the organization's data classification criteria
• Mature practices in application management, cloud management policies and standards security domains
• Develop secure coding/software development standards, patterns and "shift left" best practice, enable DevSecOps practice, and serve as technical security advisor to value stream teams to ensure secure coding practice and security related non-functional requirement are met.
• Take a multi layered approach to security architecture (on-premises & cloud-native), "connect the dots" in developments and changes in the digitized and threat environments to ensure that they're adequately addressed in security strategy plans and architecture artifacts
• Provide consulting for IT security, application, infrastructure and other reference architectures, to ensure security best practices, enhance security controls and reduce risks, where applicable.
• Facilitate threat modeling of services and applications that tie to the risk and data associated with the service or application
• As part of architectural governance process, review security technologies, tools and services, and makes recommendations to the broader security team for their use, based on security, financial and operational metrics
• Stay abreast of emerging technology and security trends, and drive forward thinking in modernization of security architecture and technology stack.

Qualifications

• Bachelor's degree in computer science, Computer Science, Information Technology or related field, or equivalent experience
• A minimum of 12 years of background in information technology, 7 to 10 years of experience across multiple architecture disciplines (such as Application/solution architecture, Technical/Infrastructure architecture, Security Architecture, Information/Data Architecture & Business Architecture) in an enterprise environment.
• Experience in using architecture methodologies such as SABSA, TOGAF, etc.
• Knowledge of security infrastructure capabilities, e.g., firewalls, intrusion prevention systems (IPSs), web application firewalls (WAFs), endpoint protection, SIEM and log management technology.
• Verifiable experience reviewing application code for security vulnerabilities.
• Experience securing CI/CD pipelines.
• Experience designing the deployment of applications and infrastructure into public cloud services.
• Full-stack knowledge of IT systems:
  • Applications
  • Databases
  • Containers/kubernetes
  • Operating systems - Windows, Unix and Linux
  • Hypervisors
  • IP networks - WAN and LAN
  • Storage networks - Fiber Channel, iSCSI and NAS
  • Backup networks and media
• Direct experience designing IAM, API security and data access technologies for multi-tier application and distributed services, based on SAML, OAuth, OIDC
• Service management and service delivery experience with global companies
• Ability to communicate complex, technical topics to a wide variety of audiences
• Excellent written and verbal communication skills
• Excellent planning and organizational skills
• Ability to communicate, influence and persuade - both business and IT leaders as well as peers
• Ability to understand the long-term ("big picture") and short-term perspectives of situations

#LI-KW1

#LI-Hybrid

Barings is an Equal Employment Opportunity employer; Minority/Female/Age/Sexual Orientation/Gender Identity/Individual with Disability/Protected Veteran. We welcome all persons to apply.

Barings offers a comprehensive benefits package including:

CORE BENEFITS & WELLNESS

• Medical (including Virtual Care), Prescription, Dental, and Vision Coverage
• Fitness Center Reimbursement Program (Including Online Memberships)
• Employee Assistance Program (EAP)
• Fertility Benefits

FINANCIAL WELL-BEING

• 401(k) Plan w/Company Match
• Pension Plan
• Health Savings Account (HSA) with Company Contributions
• Flexible Spending Accounts (FSA) - Health Care & Dependent Care
• Retirement Health Reimbursement Account

LIFE INSURANCE

• Basic and Supplemental Life Insurance
• Spouse and Child Life Insurance

TIME OFF, DISABILITY AND LEAVE OF ABSENCE

• Paid Vacation, Sick Days and Annual Holidays
• Paid Leave of Absences (Maternity Leave, Parental Leave, Caregiver Leave, Bereavement Time)
• Short and Long Term Disability Plans
• Paid Volunteer Time

OTHER BENEFITS

• Education Assistance Program
• Charitable Matching Gifts Program
• Commuter Reimbursement Program
• Adoption and Surrogacy Reimbursement Program