As a Principal Cybersecurity Architect, you will design and implement comprehensive cybersecurity strategies within the Identity & Access Management domain. Acting as a bridge between FactSet Cybersecurity, Technology teams, and Strategic Business Units, you will advise on security architectures and compliance and align initiatives with the company's risk appetite. You will also represent FactSet's Cybersecurity team with clients and suppliers and support
external security audits.
Responsibilities:
Stay updated on new security threats and assess system defenses.
Research disruptive solutions and advise security leadership.
Enhance Identity and Access Management to secure products and services.
Coordinate central cybersecurity services for business partners.
Provide metrics-driven scorecards for executive leadership on cybersecurity health.
Collaborate with IT to enhance security strategy and posture.
Research, validate, and deploy security solutions that meet business needs.
Develop and formalize security team standards, policies, and procedures.
Influence incident response planning and postmortem exercises with measurable benchmarks.
Incorporate a DevOps approach in technology, security architecture, automation, and distribution.
Improve security efficiencies, enabling advanced task focus.
Lead, mentor and coach cybersecurity engineering, development, and business teams.
Conduct performance testing on security solutions without hindering business operations.
Perform additional duties as assigned.
Minimum Requirements:
7+ yearsβ experience in cybersecurity, compliance, and risk management, and/or systems engineering.
5+ years of a proven deep background (preferred 5+ years) in Identity and Access Management.
Critical Skills:
Deep experience in cloud computing (SaaS, IaaS, PaaS) across public, private, and hybrid environments.
Extensive knowledge of security controls: PKI, IAM/IGA, PAM, security automation, deception technologies, and application controls.
Proficient in articulating business risks from cybersecurity issues to non-security stakeholders.
A proven deep background in technology design, implementation, and delivery.
Preferred Experience and Skills:
Experience with Amazon Web Services (AWS) and Microsoft Azure.
Experience with one or more of the following: ISO 27001, NIST, Sarbanes-Oxley Act (SOX) the General Data Protection Regulation (GDPR), Center for Internet Security (CIS) standards or Service Organization Controls (SOC) 2.
Broad and diverse experience across cybersecurity strategy, operations, security architecture, cloud security, and identity and access management.
Demonstrated technical proficiency in applying cybersecurity controls.
Ability to oversee and execute highly complex, cross-organizational initiatives.
Ability to engage executive level stakeholders on complex matters with limited oversight and guidance.
Ability to think strategically and tactically, with effective decision-making skills.
Relevant Cybersecurity Certification(s) (CISSP, CISA, CIAM, etc.)
Highly trustworthy; leads by example.
1. Excellent in delivering presentations and storytelling to gain support across the organization.
2. Proven ability to enhance monitoring and response capabilities at scale. 3.Demonstrated integrity, pride in work, curiosity, adaptability, and effective communication.
Education:
Bachelorβs degree in computer science or equivalent work experience.