The Role
As a member of Enterprise Cybersecurity Architecture, you will be a hands-on solution architect supporting the authorization and security modernization initiatives within the enterprise.
It includes and not limited to:
Providing hands on support to development teams across the enterprise as the solution architect for Modern Authorization aligned to the multi-BU, Core & Common / Modern Authorization initiative. Evaluate architectural options and help determine the best approach to achieve stability, performance, and scale to meet digital requirements
Assist in coordinating multiple development work streams through integration and ensure architecture is scalable and extensible, partnering with security architects supporting Brokerage/Wealth, Workplace Investing, Fidelity Institutional, and other business functions.
Participate in solution architecture design, lead efforts assisting with the integration and initial implementation of solutions (PoC’s).
Develop and produce high quality documentation for strategic security architecture vision, including blueprints, standards and frameworks that are aligned with overall business strategy.
Design and implement modern authorization frameworks and solutions, including Role-Based Access Control (RBAC), Attribute-Based Access Control (ABAC), and Policy-Based Access Control (PBAC).
Collaborate with stakeholders to understand business needs and translate them into technical requirements and authorization policies.
Develop and maintain authorization models, policies, and procedures to ensure secure and efficient access control.
Conduct security assessments and audits to identify and mitigate potential risks and vulnerabilities.
Provide technical leadership and guidance to development teams on best practices for implementing authorization mechanisms.
Stay up-to-date with the latest trends and advancements in authorization technologies and security standards.
Understand and ensure compliance with relevant regulations and standards, such as GDPR, HIPAA, and PCI-DSS.
The Expertise and Skills You Bring
Minimum 7 years of experience developing full stack applications including hands-on experience with Identity & Access Management tools, technologies, & architectures
Bachelor’s or Master’s degree in computer science, Information Technology, Management Information Systems, or equivalent work experience.
Experience with IAM protocols such as OAuth, OIDC and SAML is preferred
Experience in modern authorization standard including RBAC, ABAC, PBAC, ReBAC and technologies such as Open Policy Agent (OPA) and Rego is a plus
Proven experience in Microservices Architecture development with REST and GraphQL (preferably Apollo GraphQL; gRPC is a plus).
Proficient in Cloud Architecture, Services, and Patterns. Hands-on experience with Core AWS services is a must-have.
Ability to playing a key role in resolving technical roadblocks involving multiple technologies and using well-reasoned proposals to influence and resolve complex business problems.
Capacity to quickly understand and incorporate new technologies.
Adept at communicating technical solutions, risks, and business value to peers and leadership in written, spoken, and presentation form.
The Team
The Enterprise Cybersecurity Architecture Team is responsible for the following:
Security Architecture Vision/Innovation
Security Architecture & Strategy Development
Architecture Standardization & Evangelism
The Enterprise Authorization Architect will be a part of a the cross-BU, Core & Common Modern Authorization initiative and will work closely with the business partners, key business stakeholders, engineers, and architects in Brokerage/Wealth, Workplace Investing, Fidelity Institutional, Enterprise Technology, and other groups as required. The Enterprise Authorization Architect will be providing guidance to and taking direction from this team and will be part of Modern Authorization program.
Fidelity spends roughly $3 billion on technology each year. As part of this critical driver for our future growth, our security architects play a critical role and are empowered to lead the enablement and execution of transformational initiatives and strategies.
Certifications: