FedNow Senior DevSecOps Security Architect-266021 Federal Reserve Bank of Boston Primary Location MA-Boston Full-time / Part-time Full-time Employee Status Regular Overtime Status Exempt Job Type Experienced Travel Yes, 5 % of the Time Shift Day Job Job Sensitivity Tier II CC@Hire/No CC@Rescreen FedNow Senior Security Architect The Federal Reserve is developing a new interbank 24x7x365 real-time gross settlement (RTGS) service with integrated clearing functionality, called the FedNow service. This service will help enable financial institutions provide their customers with the ability to send and receive payments any time, any day, and have full access to those funds within seconds. This position is a unique opportunity to be part of a new mission-critical Federal Reserve initiative that will be transformative to the payments landscape in the United States. Position Contributions This position is responsible for providing information security guidance and contributing technical expertise for all phases of analysis, design, development, and implementation for the FedNow application, environment, and supporting ecosystem. This individual is expected to evaluate various technical solutions, make recommendations, and assist with the development and implementation of solutions that meet the security needs for FedNow. What’s Expected 1. Work with the FedNow application development, infrastructure, and product teams to ensure security requirements are incorporated into plans, designs, and implementations. 2. Develop and maintain security architecture blueprints for FedNow and supporting services. 3. Support and implement security architecture needs for the FedNow program including conducting regular threat models, design reviews, maturity assessments, and code reviews. 4. Establish and maintain the Secure SDLC framework and security requirements for DevSecOps practices for FedNow development 5. Partner with the risk and operations teams to ensure a holistic security service is provided for the FedNow application and ecosystem. 6. Evaluate vendor products, services, and capabilities that may benefit FedNow and make recommendations on adoption where appropriate. 7. Recognize new developments and trends in cybersecurity and ensure FedNow is keeping pace with industry developments. Expertise You Will Bring • Bachelor’s degree with advanced degree highly preferred. • Minimum of 4-6 years professional experience designing and supporting security solutions. • An understanding of systemic security challenges for platform and infrastructure-as-a-service offerings along with some cloud infrastructure experience. • Experience with threat modeling, security design reviews, and security architecture. • Experience partnering with cross-functional teams to deliver widely impactful security initiatives. • Strong communication skills and ability to translate security objective to engineering teams. • Ability to present and communicate both business and technical concepts. • Ability to design security solutions that align with desired business outcomes. • Ability to think critically and solve problems. • Experience working in an agile delivery model. • Strong analytical skills, highly organized and excellent interpersonal skills. • This position also requires a CISSP, CCSP, or equivalent certification and the ability to obtain a security clearance. • Ability to work with CI/CD pipelines like Gitlab or Jenkins. • Ability to review code written in Java, Python, JavaScript, or Go. • Experience with Hashicorp Terraform, Vault, Nomad, and Consul • Ability to apply their understanding of cryptography primitive to development of information systems Travel & Logistics • May include remote working arrangements and some required travel, which will vary during project phases. • Frequent travel within the U.S. may be required • Ability to obtain a US Security Clearance |