VP, Security Architecture

Job Description:Note: Fidelity will not provide immigration sponsorship for this positionThe RoleFidelity Workplace Investment is seeking a Vice President of Security Architecture to define and drive secure, end-to-end technology strategies that protect customer interactions across workplace products and platforms. This role partners closely with architecture governance, product, engineering, and cybersecurity teams to enhance the security posture, address emerging threats, and deliver scalable, standards-based solutions across identity, authentication, authorization, fraud mitigation, and data privacy. The position provides technical vision and leadership for complex, multi-year initiatives, influencing product roadmaps, guiding the secure integration of APIs and digital experiences, and aligning with enterprise security blueprints. It requires deep expertise in cloud, web, APIs, and modern architecture, along with strong strategic thinking and cross-functional collaboration to advance Fidelity’s cybersecurity innovation, reduce complexity, and strengthen customer protection. The Expertise and Skills You Bring Deep expertise in application security frameworks, secure development practices, and risk mitigation techniquesStrong knowledge of Identity and Access Management (IAM), including SSO, federation, authentication, authorization, and identity provisioningHands-on experience with security protocols and technologies such as OAuth, OIDC, SAML, cryptography, key management, PKI, and secrets managementSolid understanding of network and edge security (e.g., firewalls, WAF, DMZ architectures)Proven track record of designing and architecting secure, scalable, and low-latency systems across modern architectures (APIs, event-driven, data, and distributed systems)Experience in securing cloud environments, with a strong emphasis on AWS and/or Azure and their ecosystems (compute, containers, databases, analytics, and security services)Experience securely integrating customer-facing products with value-added third-party solutionsExpertise in application and API development using Java, Spring Boot, Node.js, and integration patterns (APIs, streaming, messaging, file exchange)Ability to translate business objectives into cohesive technical and security architectures aligned with enterprise standardsDemonstrated success in building proofs of concept and delivering pragmatic, end-to-end solutions with clear adoption and migration plansProven leadership in defining and evolving security strategies while influencing cross-functional teams and driving enterprise adoptionExperience leading security architecture efforts, guiding engineering teams, and ensuring the implementation of security best practicesStrong foundation in software engineering and continuous delivery practices, with excellent communication, collaboration, and problem-solving skillsRelevant certifications such as CISSP, CISA, CCSP, AWS Security Specialty, or AWS Certified Solutions Architect preferredMinimum of 10 years of industry experience in architecting distributed systems and applications The TeamWI Security Architecture operates within Fidelity Architecture and Engineering and is responsible for laying a solid foundation for Workplace Investments (WI) to secure customer and associate interactions. The team supports the WI Customer Protection Center of Excellence, as well as teams within WI and across Fidelity, to collaboratively define the security architecture for customer identity, authentication, authorization, fraud mitigation, cloud security, and data privacy.Certifications:Category:Information TechnologyPlease be advised that Fidelity’s business is governed by the provisions of the Securities Exchange Act of 1934, the Investment Advisers Act of 1940, the Investment Company Act of 1940, ERISA, numerous state laws governing securities, investment and retirement-related financial activities and the rules and regulations of numerous self-regulatory organizations, including FINRA, among others. Those laws and regulations may restrict Fidelity from hiring and/or associating with individuals with certain Criminal Histories.