Senior Cloud Security Architect - Vice President

Sumitomo Mitsui Banking Corporation
Full_timeβ€’$158k-198k/year (USD)β€’New York, United States

πŸ“ Job Overview

  • Job Title: Senior Cloud Security Architect - Vice President
  • Company: Sumitomo Mitsui Banking Corporation
  • Location: New York, New York, United States
  • Job Type: Hybrid
  • Category: Cybersecurity & Information Security
  • Date Posted: June 30, 2025
  • Experience Level: 10+ years
  • Remote Status: On-site with hybrid work options

πŸš€ Role Summary

  • Lead cloud security architecture efforts to ensure SMBC's cloud infrastructures are secure and compliant with policies and standards.
  • Collaborate with internal teams to implement security controls, test them, and perform gap analysis for continuous improvement.
  • Stay updated on emerging security trends and create policies using automation scripts and standards for adoption within SMBC.
  • Provide guidance and recommendations for a secure security infrastructure and participate in business and information security projects.

πŸ“ Enhancement Note: This role requires a strong understanding of multiple cloud platforms (AWS, Azure, GCP) and hands-on experience with cloud security architecture, implementation, and design. The candidate should be comfortable working in a highly regulated environment and have a proven track record of driving security projects and business applications.

πŸ’» Primary Responsibilities

  • Cloud Security Architecture & Engineering: Design, implement, and maintain secure cloud infrastructures using industry best practices, such as SANS/CIS Top 20, NIST CSF, 800-53, ISO27001, and FFIEC CAT controls.
  • Incident Response & Threat Modeling: Develop and maintain incident response plans and perform threat modeling to determine major threats facing the firm, using NIST, CIS, MITRE ATT&CK, and CIS frameworks.
  • Security Project Management: Define and document projects, create and execute project plans, engage in project cost management, resource management, and perform periodic reporting.
  • Security Roadmap & Vision: Participate in the development of the security roadmap and communicate the technology security vision to senior management and technical departments.
  • Collaboration & Knowledge Sharing: Partner with relevant internal IT teams to ensure security controls are implemented at all significant layers and share knowledge to improve security posture.

πŸ“ Enhancement Note: The candidate should have strong project management skills and be able to work effectively with cross-functional teams to drive security projects to completion. They should also be able to communicate complex security concepts to both technical and non-technical stakeholders.

πŸŽ“ Skills & Qualifications

Education: Bachelor’s degree in information security, computer science, or a related field required.

Experience: 7+ years of hands-on security architecture, implementation, and design experience required.

Required Skills:

  • In-depth understanding of AWS cloud infrastructure and security controls with hands-on configuration and troubleshooting experience.
  • Strong understanding of enterprise information security pillars (Perimeter security, Identity Management and Governance, Privileged Account Management, Compliance, Penetration testing, Encryption, Cloud Security, Incident Response, Vulnerability Management).
  • Experience with Terraform and other scripting languages (Bash, Python, Perl) for infrastructure as code (IaC) and automation.
  • Strong knowledge of DNS, PKI, Encryption, Key Management, CMK, and OWASP Top 10.
  • Understanding of Zero Trust principles and cloud-based application architecture systems within highly regulated environments.

Preferred Skills:

  • Good understanding of Azure and GCP cloud platforms.
  • Experience with incident response frameworks (NIST, CIS, MITRE ATT&CK) and threat modeling.
  • Familiarity with SANS/CIS Top 20, NIST CSF, 800-53, ISO27001, and FFIEC CAT controls.
  • Certifications such as CISSP, CEH, Azure Cloud Security, AWS, or GCP.

πŸ“ Enhancement Note: The ideal candidate will have a strong background in cloud security architecture and a proven track record of driving security projects in a highly regulated environment. They should also be comfortable working with multiple cloud platforms and have experience with incident response and threat modeling.

πŸ“Š Web Portfolio & Project Requirements

Portfolio Essentials:

  • Demonstrate a strong understanding of cloud security architecture and design principles through past projects and case studies.
  • Showcase experience with AWS, Azure, and GCP cloud platforms and their respective security controls.
  • Highlight incident response and threat modeling skills with real-world examples.

Technical Documentation:

  • Provide documentation showcasing your experience with Terraform and other scripting languages for IaC and automation.
  • Include examples of security policies, standards, and procedures you have developed or implemented.
  • Demonstrate your understanding of enterprise information security pillars through relevant project documentation.

πŸ“ Enhancement Note: The candidate's portfolio should focus on cloud security architecture and design projects, demonstrating their ability to implement secure cloud infrastructures using industry best practices. It should also showcase their incident response and threat modeling skills, as well as their experience with multiple cloud platforms and scripting languages for IaC and automation.

πŸ’΅ Compensation & Benefits

Salary Range: The anticipated salary range for this role is between $158,000.00 and $198,000.00 per year. The specific salary offered to an applicant will be based on their individual qualifications, experiences, and an analysis of the current compensation paid in their geography and the market for similar roles at the time of hire.

Benefits:

  • Competitive portfolio of benefits, including health, dental, and vision insurance.
  • Retirement savings plans with company match.
  • Employee stock purchase plan.
  • Generous time off policies, including vacation, sick leave, and holidays.
  • Employee assistance program and wellness initiatives.
  • Tuition reimbursement and professional development opportunities.

Working Hours: This role follows a standard 40-hour workweek, with the possibility of flexible hours and remote work options as part of the hybrid work arrangement.

πŸ“ Enhancement Note: The salary range for this role is competitive and reflects the high level of experience and expertise required. The benefits package is comprehensive and designed to support the well-being and professional growth of employees.

🎯 Team & Company Context

🏒 Company Culture

Industry: Financial Services

Company Size: Large (80,000+ employees worldwide)

Founded: 1613 (as a trading company, Sumitomo Corporation; Sumitomo Mitsui Financial Group, Inc. was established in 2003)

Team Structure:

  • The Cybersecurity & Information Security team is part of the Global Information Security division, which is responsible for protecting SMBC's information assets and ensuring compliance with relevant regulations and standards.
  • The team consists of security architects, engineers, analysts, and managers, working collaboratively to identify, assess, and mitigate information security risks.
  • The role reports directly to the Head of Cloud Security Architecture.

Development Methodology:

  • SMBC follows a structured, risk-based approach to information security, aligned with industry best practices and relevant standards, such as ISO27001, NIST, and COBIT.
  • The company employs a combination of Agile and waterfall methodologies for project management, depending on the nature and complexity of the project.

Company Website: https://www.smbcgroup.com/

πŸ“ Enhancement Note: SMBC is a large, global financial services organization with a strong focus on information security and risk management. The Cybersecurity & Information Security team works collaboratively to protect the company's information assets and ensure compliance with relevant regulations and standards. The role of Senior Cloud Security Architect - Vice President is part of the Global Information Security division and reports directly to the Head of Cloud Security Architecture.

πŸ“ˆ Career & Growth Analysis

Web Technology Career Level: Senior Cloud Security Architect - Vice President

  • This role is a senior-level position within the Cybersecurity & Information Security team, responsible for driving cloud security architecture and engineering efforts across SMBC's cloud infrastructures.
  • The candidate will have the opportunity to work on complex, high-impact projects and collaborate with various internal teams to implement security controls and improve the overall security posture of the organization.
  • This role offers the potential for career growth within the Cybersecurity & Information Security team or other areas of the organization, such as management or technical leadership positions.

Reporting Structure: The role reports directly to the Head of Cloud Security Architecture within the Global Information Security division.

Technical Impact: The candidate will have a significant impact on SMBC's cloud security posture, working on high-priority projects and driving security initiatives across the organization.

Growth Opportunities:

  • Technical Skill Development: Stay up-to-date with emerging security trends and cloud technologies to continuously enhance your skills and expertise in cloud security architecture and engineering.
  • Technical Leadership: Demonstrate strong leadership skills and the ability to mentor and guide junior team members, as well as collaborate effectively with cross-functional teams.
  • Architecture Decision-Making: Contribute to strategic decision-making processes related to cloud security architecture and engineering, helping to shape the future of SMBC's cloud security posture.

πŸ“ Enhancement Note: This role offers significant opportunities for career growth and development within the Cybersecurity & Information Security team or other areas of the organization. The candidate will have the chance to work on complex, high-impractice projects and collaborate with various internal teams to drive security initiatives and improve the overall security posture of the organization.

🌐 Work Environment

Office Type: Hybrid (a combination of on-site and remote work)

Office Location(s): New York, New York, United States

Workspace Context:

  • SMBC's New York office is located in the heart of the city's financial district, providing easy access to public transportation and various amenities.
  • The workspace is designed to foster collaboration and innovation, with open-plan offices, meeting rooms, and breakout spaces.
  • Employees have access to modern technology and tools to support their work, including high-performance computers, multiple monitors, and specialized software.

Work Schedule: The hybrid work arrangement allows for flexible scheduling, with employees working on-site for a portion of the week and remotely for the remainder. The specific hybrid work schedule will be determined during the interview process.

πŸ“ Enhancement Note: SMBC's hybrid work environment offers employees the flexibility to balance their work and personal lives while maintaining a strong connection to the organization and its culture. The modern workspace is designed to foster collaboration and innovation, with access to state-of-the-art technology and tools to support employees' work.

πŸ“„ Application & Technical Interview Process

Interview Process:

  1. Phone Screen: A brief phone call to discuss your qualifications, experience, and interest in the role.
  2. Technical Deep Dive: A detailed technical conversation focusing on your cloud security architecture and engineering experience, as well as your understanding of relevant security controls, standards, and best practices.
  3. Behavioral & Cultural Fit: An in-depth discussion to assess your cultural fit with SMBC and the Cybersecurity & Information Security team, as well as your problem-solving skills, communication, and collaboration abilities.
  4. Final Decision: A final review of your application materials and interview performance to make a hiring decision.

Portfolio Review Tips:

  • Highlight your experience with cloud security architecture and engineering, focusing on your ability to design, implement, and maintain secure cloud infrastructures using industry best practices.
  • Include examples of your incident response and threat modeling skills, demonstrating your ability to identify and mitigate security risks in a cloud environment.
  • Showcase your experience with multiple cloud platforms (AWS, Azure, GCP) and scripting languages (Terraform, Bash, Python, Perl) for infrastructure as code (IaC) and automation.
  • Include any relevant certifications (CISSP, CEH, Azure Cloud Security, AWS, GCP) and highlight your understanding of enterprise information security pillars.

Technical Challenge Preparation:

  • Brush up on your knowledge of cloud security architecture and engineering best practices, as well as relevant security controls, standards, and frameworks (SANS/CIS Top 20, NIST CSF, 800-53, ISO27001, FFIEC CAT, OWASP Top 10, Zero Trust).
  • Familiarize yourself with SMBC's cloud infrastructure and security posture, as well as the company's approach to information security and risk management.
  • Prepare for behavioral and situational interview questions that assess your problem-solving skills, communication, and collaboration abilities, as well as your cultural fit with SMBC and the Cybersecurity & Information Security team.

πŸ“ Enhancement Note: The interview process for this role is designed to assess the candidate's technical expertise in cloud security architecture and engineering, as well as their cultural fit with SMBC and the Cybersecurity & Information Security team. The portfolio review and technical challenge preparation tips provided are intended to help candidates demonstrate their qualifications and showcase their skills and experience in the most effective way possible.

πŸ›  Technology Stack & Web Infrastructure

Cloud Platforms:

  • Amazon Web Services (AWS)
  • Microsoft Azure (Azure)
  • Google Cloud Platform (GCP)

Cloud Security Tools & Frameworks:

  • Terraform (Infrastructure as Code)
  • Bash, Python, Perl (Scripting Languages)
  • DNS, PKI, Encryption, Key Management, CMK
  • SANS/CIS Top 20, NIST CSF, 800-53, ISO27001, FFIEC CAT, OWASP Top 10, Zero Trust
  • Incident Response Frameworks (NIST, CIS, MITRE ATT&CK)
  • Cloud Security Posture Management (CSPM) tools (e.g., Prisma Cloud, Cloud Security Alliance's Cloud Security Alliance Security Configuration)

Collaboration & Project Management Tools:

  • Atlassian Suite (Jira, Confluence, Bitbucket)
  • Microsoft Office Suite (Word, Excel, PowerPoint)
  • Google Workspace (Gmail, Google Drive, Google Docs)
  • Slack (Team Communication)

πŸ“ Enhancement Note: The technology stack for this role is centered around cloud security architecture and engineering, with a focus on AWS, Azure, and GCP cloud platforms. The candidate should have strong experience with infrastructure as code (IaC) using Terraform and other scripting languages, as well as a deep understanding of relevant security controls, standards, and frameworks.

πŸ‘₯ Team Culture & Values

Security Culture:

  • SMBC's Cybersecurity & Information Security team is committed to fostering a culture of security awareness, collaboration, and continuous improvement.
  • The team works together to identify, assess, and mitigate information security risks, ensuring that SMBC's information assets are protected and that the organization complies with relevant regulations and standards.
  • The team values open communication, knowledge sharing, and a strong commitment to professional development.

Collaboration Style:

  • The Cybersecurity & Information Security team follows a collaborative approach to information security, working closely with internal teams to implement security controls and improve the overall security posture of the organization.
  • The team encourages open communication and knowledge sharing, with regular meetings and workshops to discuss emerging security trends, best practices, and lessons learned.
  • The team values a strong commitment to professional development, with opportunities for training, certifications, and mentoring to help employees grow in their careers.

πŸ“ Enhancement Note: SMBC's Cybersecurity & Information Security team is committed to fostering a culture of security awareness, collaboration, and continuous improvement. The team values open communication, knowledge sharing, and a strong commitment to professional development, with opportunities for training, certifications, and mentoring to help employees grow in their careers.

⚑ Challenges & Growth Opportunities

Technical Challenges:

  • Staying up-to-date with emerging security trends and cloud technologies, as well as relevant security controls, standards, and best practices.
  • Designing, implementing, and maintaining secure cloud infrastructures that meet SMBC's business needs and comply with relevant regulations and standards.
  • Collaborating effectively with cross-functional teams to implement security controls and improve the overall security posture of the organization.
  • Developing and maintaining incident response plans and performing threat modeling to identify and mitigate security risks in a cloud environment.

Learning & Development Opportunities:

  • Technical Skill Development: Stay up-to-date with emerging security trends and cloud technologies to continuously enhance your skills and expertise in cloud security architecture and engineering.
  • Technical Leadership: Demonstrate strong leadership skills and the ability to mentor and guide junior team members, as well as collaborate effectively with cross-functional teams.
  • Architecture Decision-Making: Contribute to strategic decision-making processes related to cloud security architecture and engineering, helping to shape the future of SMBC's cloud security posture.
  • Certifications & Training: Pursue relevant certifications (CISSP, CEH, Azure Cloud Security, AWS, GCP) and participate in training and development opportunities to enhance your skills and knowledge in cloud security architecture and engineering.

πŸ“ Enhancement Note: The technical challenges and learning opportunities for this role are focused on cloud security architecture and engineering, with a strong emphasis on staying up-to-date with emerging security trends and cloud technologies. The candidate should be committed to continuous learning and professional development to enhance their skills and expertise in cloud security architecture and engineering.

πŸ’‘ Interview Preparation

Technical Questions:

  • Cloud Security Architecture & Engineering: Can you describe your experience with cloud security architecture and engineering, including your ability to design, implement, and maintain secure cloud infrastructures using industry best practices? Can you provide examples of your incident response and threat modeling skills, as well as your experience with multiple cloud platforms (AWS, Azure, GCP) and scripting languages (Terraform, Bash, Python, Perl) for infrastructure as code (IaC) and automation?
  • Security Controls & Standards: Can you discuss your understanding of relevant security controls, standards, and best practices, such as SANS/CIS Top 20, NIST CSF, 800-53, ISO27001, FFIEC CAT, OWASP Top 10, and Zero Trust? Can you provide examples of how you have applied these controls and standards in your previous roles?
  • Incident Response & Threat Modeling: Can you describe your experience with incident response and threat modeling, including your ability to identify and mitigate security risks in a cloud environment? Can you provide examples of how you have developed and maintained incident response plans and performed threat modeling in your previous roles?

Behavioral & Cultural Fit Questions:

  • Problem-Solving Skills: Can you describe a challenging security situation you faced in a previous role and how you used your problem-solving skills to address it? What was the outcome, and what did you learn from the experience?
  • Communication & Collaboration: Can you discuss your experience working with cross-functional teams to implement security controls and improve the overall security posture of an organization? How have you ensured that your security recommendations were understood and acted upon by non-technical stakeholders?
  • Cultural Fit: Can you describe what you value in a work environment and how you have contributed to a positive and collaborative culture in your previous roles? How do you think you would fit in with SMBC's Cybersecurity & Information Security team and the company's overall culture?

Portfolio Presentation Strategy:

  • Cloud Security Architecture & Engineering: Highlight your experience with cloud security architecture and engineering, focusing on your ability to design, implement, and maintain secure cloud infrastructures using industry best practices. Include examples of your incident response and threat modeling skills, as well as your experience with multiple cloud platforms (AWS, Azure, GCP) and scripting languages (Terraform, Bash, Python, Perl) for infrastructure as code (IaC) and automation.
  • Security Controls & Standards: Demonstrate your understanding of relevant security controls, standards, and best practices, such as SANS/CIS Top 20, NIST CSF, 800-53, ISO27001, FFIEC CAT, OWASP Top 10, and Zero Trust. Include examples of how you have applied these controls and standards in your previous roles.
  • Incident Response & Threat Modeling: Showcase your experience with incident response and threat modeling, including your ability to identify and mitigate security risks in a cloud environment. Provide examples of how you have developed and maintained incident response plans and performed threat modeling in your previous roles.

πŸ“ Enhancement Note: The interview preparation tips and strategies provided are designed to help candidates demonstrate their qualifications and showcase their skills and experience in the most effective way possible. The technical questions focus on cloud security architecture and engineering, while the behavioral and cultural fit questions assess the candidate's problem-solving skills, communication, and collaboration abilities, as well as their cultural fit with SMBC and the Cybersecurity & Information Security team.

πŸ“Œ Application Steps

To apply for this Senior Cloud Security Architect - Vice President role at Sumitomo Mitsui Banking Corporation, follow these steps:

  1. Review the Job Description: Carefully read the job description to ensure that you meet the required qualifications and experience for the role.
  2. Tailor Your Resume: Customize your resume to highlight your relevant cloud security architecture and engineering experience, as well as your skills and certifications in cloud security, incident response, and threat modeling.
  3. Prepare Your Portfolio: Showcase your experience with cloud security architecture and engineering, incident response, and threat modeling through a portfolio of projects and case studies. Include examples of your work with multiple cloud platforms (AWS, Azure, GCP) and scripting languages (Terraform, Bash, Python, Perl) for infrastructure as code (IaC) and automation.
  4. Research SMBC: Familiarize yourself with SMBC's cloud infrastructure, security posture, and approach to information security and risk management. Understand the company's culture and values, and be prepared to discuss how you would contribute to the team and organization.
  5. Prepare for the Interview: Review the interview preparation tips and strategies provided, and practice your responses to technical and behavioral questions. Be ready to discuss your portfolio and demonstrate your skills and experience in cloud security architecture and engineering.

⚠️ Important Notice: This enhanced job description includes AI-generated insights and web development/server administration industry-standard assumptions. All details should be verified directly with the hiring organization before making application decisions.

Application Requirements

Candidates should have 7+ years of hands-on security architecture experience and in-depth knowledge of AWS cloud infrastructure and security controls. A Bachelor’s degree in information security or a related field and a relevant certification such as CISSP or equivalent are required.