Apply on Employer Site

Truist · 8 hours ago

Cybersecurity Senior Architect - Cloud / AI Security

Raleigh, NC

Full-time

Onsite

Senior Level, Lead/Staff

8+ years exp

Truist is a financial services company seeking a Cybersecurity Senior Architect specializing in Cloud and AI Security. The role involves designing security solutions, developing security specifications, and providing technical expertise to ensure the confidentiality and integrity of organizational functions.

BankingFinanceFinancial Services

H1B Sponsor Likely

Responsibilities

Architecting effective and efficient fit for purpose solutions that meet the Bank’s needs and requirements - includes creation of Cybersecurity Blueprints that will present detailed views of application interaction/integrations between both on prem and cloud-based applications

Applies in-depth and specialized expertise in Identity and Access Management and significant breadth of experience across cyber / information security

May be called upon to contributed to scope and business cases

Participates in the gathering and development of requirements by coaching stakeholders and decomposing business requirements into technical and system requirements

Interpret requirements to determine the best solutions and approaches

Creates architectures and operational documentation with support of engineering and operations staff

Advise, consult, lead, guide and mentor project teams, engineers, analysts, and support staff in the delivery of solutions

Participate in the agile planning processes and delivery methodologies

Build relationships with internal clients

Conducts threat modeling and security gap assessment exercises in concert with other teams

Contributes to the creation of policy, standards, Minimum Security Baselines (MSBs), procedures and guidelines

Bring visibility to and escalates security risks, as well as, technical, execution, deployment, or other risks as applicable

Conducts post-mortem reviews of projects / products to measure design versus implementation differentials

Contribute to the Truist Cyber Architecture Practice by supporting Cyber Enterprise Architecture objectives

Qualification

Cybersecurity ArchitectureIdentityAccess ManagementNetwork SecurityCloud SecurityTOGAFIncident ResponseApplication SecurityData Loss PreventionEncryption TechnologiesConsulting BackgroundFinancial Services ExperienceGenerative AIMaster's DegreeSoft Skills

Required

Bachelor's degree in a technical or business field, or equivalent education and related training

Eight years of demonstrated experience of systems engineering and/or architecture in at least one of the information security areas: network security, access management, end point protection, data loss prevention, vulnerability management, application security, forensics, web security, mainframe, incident response and/or cyber threat management in a medium to large corporation

Highly experienced in network security architecture, including design tools, methods, and techniques and the application of Defense-in-Depth principles; knowledge of network design processes, including understanding of security objectives

Specialized depth and thorough Knowledge of The Open Group Architecture Framework (TOGAF), including infrastructure, data, information security, applications, architectural concepts, and associated disciplines

Deep knowledge of: Mainframe security, including access control, monitoring, integration with non-mainframe technologies, and virtualization; Authentication and authorization technologies including remote access; Application security and the security development lifecycle and ability to apply to client-server and web-based application development environments; Enterprise databases and database security, including database activity monitoring and database access control technologies; Encryption methods and technologies for data-in-transit and data-at-rest scenarios; Incident response processes; Denial of Service prevention mechanisms; Firewall technologies and intrusion prevention methods; Cloud technologies and hosting; Operating system hardening; Virtualization technologies; Mobile technologies; Encryption and key management technologies; Endpoint Protection (includes malware); Data Loss Protection technologies

Experience with peripheral component interconnect and other security audit processes, evidence gathering and development/management of remediation plans used in resolution of finding

Preferred

Subject matter expert with deep specialization or comprehensive knowledge within a discipline which crosses multiple areas of specialization relative to Cloud architectures and security principles, Data Protection, IT Risk, Network Security, Application Security, Security Operations, and IAM. Deep knowledge/experience with securing complex AWS and Azure architectures

Understanding of Security foundations and Standards such as hardening, least privilege, attack surface reduction, NIST SP800-series, NIST Cybersecurity Framework, FIPS 140-2, Common Criteria, FFIEC, FISMA/FedRAMP, ISO 27000, PCI-DSS, CIS Benchmarks, and similar

Applies in-depth and specialized expertise and/or a significant breadth of expertise in own professional discipline and other related disciplines

Interprets internal/external business challenges and recommends best practices to improve products, processes, or services

Works independently, with guidance in only the most complex and unusual situations

Solution expertise (in the following) preferred: AWS / Azure Cloud - application migration, fit for purpose, etc

Large data management architecture and integrations

Multifactor authentication, Risk Based Authentication

Application authentication models

Application Security – OWASP control and evaluation criteria

Cryptographic technology – Transit encryption, storage encryption, Hash, KMS, Digital Signature, etc

Federated Identity Management / Identity Providers / Single Sign On (SSO)

Client authentication approaches for “anti-bot” technologies, signaling, and fraud prevention

Certification: CISSP-ISSAP, AWS, AZURE, SANS or TOGAF certifications

Generative AI / LLM

Consulting or professional services backgrounds are a plus

Financial services industry experience is a major plus

Master's degree in: Computer Science, Information Systems, Security, or other closely related field

Ideal candidate will also have experience in the following areas – Developing patterns, building blocks, target architectures, policies, standards, and guidance for all applicable platforms

Containerization, Micro-services, API, CI/CD

Content Delivery technologies

Benefits

Medical

Dental

Vision

Life insurance

Disability

Accidental death and dismemberment

Tax-preferred savings accounts

401k plan

Vacation

Sick days

Paid holidays

Defined benefit pension plan

Restricted stock units

Deferred compensation plan

Company

Truist

Glassdoor3.3

Truist is the sixth-largest commercial bank in the U.S.

Founded in 2019

Charlotte, North Carolina, USA

10001+ employees

https://www.truist.com

H1B Sponsorship

Truist has a track record of offering H1B sponsorships. Please note that this does not guarantee sponsorship for this specific role. Below presents additional info for your reference. (Data Powered by US Department of Labor)

Distribution of Different Job Fields Receiving Sponsorship

Represents job field similar to this job

Trends of Total Sponsorships

2025 (235)

2024 (248)

2023 (288)

2022 (275)

2021 (278)

2020 (270)

Funding

Current Stage

Late Stage

Total Funding

unknown

2021-01-01Seed

Leadership Team

Michael Maguire

Chief Financial Officer

James Cordovana

SVP of Cloud Security Enterprise Architect

Recent News

MarketScreener

Ramaco Resources Inc. Announces Substantial Increase In Size of Revolving Credit Facility and Extension of Its Term

2025-12-30

PR Newswire

Truist streamlines digital account opening with direct deposit switching

2025-12-18

Investing.com

US overdraft fees jump at big banks amid regulatory, economic shifts

2025-12-16

Company data provided by crunchbase