Information Security Architect

Concora Credit Inc.

Beaverton, Oregon

JOB DETAILS
SKILLS
Accidental Death and Dismemberment (AD&D), Alliance/Partner Management, Analysis Skills, Applications Security, Architectural Analysis, Automation, Best Practices, CISM - Certified Information Security Manager, CISSP - Certified Information Systems Security Professional, Cloud Architecture, Cloud Computing, Communication Skills, Computer Systems, Consulting, Dental Insurance, Design Patterns Programming Methodologies, DevOps, Diversity, Documentation, Emerging Technology, Enterprise Architecture, Entrepreneurship, Financial Services, Fitness, HIPAA (Health Insurance Portability and Accountability Act), Hybrid Cloud, Identity Data Management, Information Architecture, Information Technology & Information Systems, Information/Data Security (InfoSec), Insurance, Leadership, Machine Tool, Metrics, Multiplatform/Cross-Platform, OAuth, PCI, Presentation/Verbal Skills, Project/Program Management, Regulations, Return on Investment (ROI), Sarbanes-Oxley Act (SOX), Security Analysis, Security Architecture, Security Assertion Markup Language (SAML), Security Infrastructure, Security Policy, Single Sign-On (SSO), Software Development, Standards Development, Team Player, Technical Leadership, Vendor/Supplier Planning, Vision Plan, Writing Skills
LOCATION
Beaverton, Oregon
POSTED
1 day ago
Overview:

As our Information Security Architect, you’ll help drive Concora Credit’s Mission to enable customers to Do More with Credit – every single day.

 

The impact you’ll have at Concora Credit:

You’ll serve as a key consultant and champion across the organization on how to effectively implement and maintain security practices.  This is a technical, hands-on leadership role in which you will have architecture, engineering, and even some operational duties.  You’ll lead the design and development of secure patterns and practices across our technical landscape, including our hosting services, identity capabilities, data estate, and application development.  You’ll work closely with many teams, including Enterprise Architecture, DevOps, Application Developers, Data Specialists, Product Owners, Project Managers, and IT leadership. You’ll help us lean into emerging technologies with eyes open to the potential risks and benefits, and how we can navigate these journeys. You’ll have an opportunity to demonstrate your expertise in designing modern computing environments that operate securely and efficiently and integrate using modern methods. You’ll have the chance to work with good people who are striving to win together. 

 

We hire people, not positions. That's because, at Concora Credit, we put people first, including our customers, partners, and Team Members. Concora Credit is guided by a single purpose: to help non-prime customers do more with credit. Today, we have helped millions of customers access credit. Our industry leadership, resilience, and willingness to adapt ensure we can help our partners responsibly say yes to millions more. As a company grounded in entrepreneurship, we're looking to expand our team and are looking for people who foster innovation, strive to make an impact, and want to Do More! We’re an established company with over 20 years of experience, but now we’re taking things to the next level. We're seeking someone who wants to impact the business and play a pivotal role in leading the charge for change.

Responsibilities:

As our Information Security Architect, you will:

  • Be a trusted advisor for Application Development and Shared Services initiatives by providing objective, practical, and relevant ideas, insights, and advice. 
  • Function with an enterprise lens in applying security practices across the environment.  
  • Establish architecture principles, standards, and best practices for the security of our infrastructure, identity, data, application development, and partner integrations, and integrate these into our Enterprise Architecture practices. 
  • Collaborate closely with developers, architects, and engineers on how to enable effective security solutions for the organization at ‘the ground level’ so solutions can scale effectively.  
  • Perform security assessments and engineering analysis for complex, multi-platform systems and services. 
  • Lead the performance of application security reviews.  
  • Assess the architecture and security designs and capabilities of potential products, strategic partnerships, and vendors. 
  • Develop and present metrics that represent the efficacy of the practices and controls in place. 
  • Maintain a relevant skillset and expertise in information security technologies and practices. 
  • Perform other duties as assigned. 

These duties must be performed with or without reasonable accommodation.

 

We know experience comes in many forms and that many skills are transferable. If your experience is close to what we're looking for, consider applying. Diversity has made us the entrepreneurial and innovative company that we are today.

Qualifications:

Requirements:

  • 5-8 years of broad security experience as a practitioner within IT organizations. 
  • Bachelor’s degree, applicable certification, or equivalent experience.  
  • A future-focused mindset considering where the organization is today, knowing what’s coming in the technology landscape, understanding what that means for security, and building a course to ensure we don’t get there late.   
  • Understand all facets of information technology lifecycles, from scoping to delivery and operations, and the ability to see and communicate the role information security plays in every stage.  
  • Background in bringing a variety of stakeholders together to achieve specific security outcomes.   
  • Broad background working directly with all levels of security controls.  
  • Extensive experience with one or more regulatory frameworks associated with information technology (e.g., PCI, GLBA, HIPAA, SOX, etc).  
  • Strong written and verbal communication skills, including the ability to discuss technical topics with a non-technical audience. 
  • Able to partner with technology subject matter experts (SMEs) to define and formalize security policies and practices in collaboration with the teams most impacted to reach secure and functional outcomes.   
  • Able to develop security architecture standards, frameworks, guidelines, and design patterns spanning all layers of security from host, server, and network to application and data security. 
  • Identify opportunities for security tooling and automation with the goal of translating security standards into policy-as-code and infrastructure-as-code that is secure by default 
  • Experience in evaluating security controls from a value and return on investment perspective.  

Preferred: 

  • Expertise in security architecture for cloud/hybrid systems and application development. 
  • CISSP, CISM , and related security certifications strongly preferred.  
  • Working knowledge of Cloud-based Identity and Access management (IAM), including Single Sign On, MFA, identity providers, and frameworks. (FIDO, SAML, OAuth, OIDC.
  • Excellent conceptualization, analytical, logical, and documentation skills. 
  • Experience in the financial services or servicing operations sectors. 

What’s In It For You:

  • Medical, Dental and Vision insurance for you and your family
  • Relax and recharge with Paid Time Off (PTO)
  • 6 company-observed paid holidays, plus 3 paid floating holidays
  • 401k (after 90 days) plus employer match up to 4%
  • Pet Insurance for your furry family members
  • Wellness perks including onsite fitness equipment at both locations, EAP, and access to the Headspace App
  • We invest in your future through Tuition Reimbursement
  • Save on taxes with Flexible Spending Accounts
  • Peace of mind with Life and AD&D Insurance
  • Protect yourself with company-paid Long-Term Disability and voluntary Short-Term Disability

Concora Credit provides equal employment opportunities to all Team Members and applicants for employment and prohibits discrimination and harassment of any type without regard to race, color, religion, age, sex, national origin, disability status, genetics, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state or local laws.

 

Employment-based visa sponsorship is not available for this role.

 

Concora Credit is an equal opportunity employer (EEO).

 

Please see the Concora Credit Privacy Policy for more information on how Concora Credit processes your personal information during the recruitment process and, if applicable, based on your location, how you can exercise your privacy rights. If you have questions about this privacy notice or need to contact us in connection with your personal data, including any requests to exercise your legal rights referred to at the end of this notice, please contact

caprivacynotice@concoracredit.com

.

About the Company

C

Concora Credit Inc.