Principal Application Security Architect
Job Overview
Build a career that matches all your initiative with an impressive dose of innovation. From cutting-edge resources and a collaborative environment to the freedom to make an impact and more, you’ll find the ingredients you need at LPL Financial to shape your success while helping clients pursue their financial goals.
Responsibilities
- Secure APIs by implementing robust access control mechanisms, OAuth, JWT, and configuring API gateway security to ensure authenticated and authorized access.
- Develop reusable security design patterns addressing common cybersecurity challenges, ensuring consistency and best practices across diverse technology stacks and business domains.
- Craft clear, actionable security standards and policies, aligning them with industry best practices and regulatory requirements while ensuring adaptability to emerging technologies.
- Lead the design and innovation of security architectures, integrating advanced technologies to protect against evolving threats while enabling business agility and growth.
- Collaborate with key stakeholders to align security initiatives with business objectives, ensuring broad support and integration at all levels.
- Expertise in cybersecurity frameworks, network security, cloud security, identity management, and encryption, with proficiency in implementing zero-trust architectures and secure DevOps practices across diverse IT environments.
- Threat modeling, risk assessment, and vulnerability management, coupled with experience in SIEM implementation, log analysis, and incident response in complex enterprise settings.
- Implement and oversee a risk management framework, balancing security investments with business needs to protect assets while supporting growth and innovation.
- Securing machine learning models against adversarial attacks, ensuring data privacy in AI training sets, and implementing ethical AI principles in security applications.
- Develop secure AI/ML pipelines, including model integrity verification, secure feature engineering, and anomaly detection in AI-driven systems.
Requirements
- 3+ years of security architecture and API security, designing secure API gateways and microservices architectures
- 8+ years of experience with information security controls, guidelines, and standards (e.g., ISO27000 series, OWASP, CSA CCM, CIS 20 Critical Security Controls, SOX, and NIST).
Core Competencies
- Self-driven, yet flexible and highly adept at consulting, negotiating, communicating, consensus building, and presenting.
- Ability to remain calm under pressure while managing multiple tasks.
- Demonstrated ability to learn from mistakes and apply constructive feedback to improve performance.
Preferences
- Bachelor's Degree or equivalent years of experience
- Technical knowledge/coding skills in any of the following: Java, C# .Net, Ruby and/or Python
- In-depth knowledge of AWS and its core services, including EC2, S3, IAM, VPC, and security-related services like security groups, ACLs AWS Security Hub, AWS WAF, and Amazon Guard
- Solid experience securing scalable web architectures and distributed systems
- Solid understanding of malware, emerging threats, attacks, and vulnerability management
- CCSP/Other Cloud Specific Certification, CISSP and/or GIAC are a plus
- AI/ML security. Proven record securing ML models and AI pipelines in financial services
- Proficient in ML algorithms, deep learning frameworks, AI ethics
- Experienced in AI/ML security controls
- Expert in OAuth, OpenID Connect, JWT
- Proficient in API threat modeling, automated security testing
Pay Range
Pay Range: $153,470.00 - $255,749.00 Actual base salary varies based on factors, including but not limited to, relevant skill, prior experience, education, base salary of internal peers, demonstrated performance, and geographic location. Additionally, LPL Total Rewards package is highly competitive, designed to support your success at work, at home, and at play – such as 401K matching, health benefits, employee stock options, paid time off, volunteer time off, and more.
About the Role
The right person for this role will have a broad technical cloud security background with a focus on security design, detection, prevention, and response to security threats.