VP, Cloud Security Architecture

Job description

Job Description:

**Role Summary/Purpose:**

Synchrony Financial is embarking on a critical, large-scale migration to the cloud.

We are looking for a hands-on, pragmatic VP, Cloud Security Architect to serve as the subject matter expert driving the secure transition and modernization of our financial workloads.

This VP, Cloud Security Architecture role requires deep experience in securing hybrid environments, translating high-level policy into enforceable code, and actively integrating security across our engineering and development teams.

If you are passionate about building secure systems by design in a highly regulated industry, this is your chance to make a substantial impact.

**_Our Way of Working_**

**_We're proud to offer you choice and flexibility.

At Synchrony, our way of working allows you to have the option to work from home, near one of our Hubs or come into one of our offices.

Occasionally you may be required to commute to our nearest office for in person engagement activities such as business or team meetings, training and culture events._**

**Essential Responsibilities:**

+ **Secure Migration Architect (On-Prem to AWS Focus)**
+ Design secure pathways for migrating critical on-premises workloads and sensitive data to the AWS cloud environment.
+ Architect and enforce robust security controls for hybrid cloud networking (e.g., Direct Connect, Transit Gateway) and virtual data center connectivity.
+ Ensure data integrity and confidentiality during transfer by leveraging AWS services like DataSync or Transfer Family and implementing mandatory encryption via AWS KMS.

+ **AWS Native Security Implementation & Governance**
+ Collaborate with Cloud IAM architects to engineer and proliferate stringent policies and roles that strictly enforce the Principle of Least Privilege (PoLP) across all AWS accounts.
+ Use Infrastructure as Code (IaC) tools (e.g., Terraform or CloudFormation) to embed security guardrails and governance policies directly into all cloud infrastructure provisioning.
+ Provide architectural guidance to SecOps for the configuration and integration of core security functions, including continuous monitoring, logging, SIEM ingestion, and automated alerting across the AWS footprint.

+ **Application Security (AppSec) & DevSecOps Partnership**
+ Define and govern the strategy and standards for integrating security testing (SAST, DAST, and SCA) into CI/CD pipelines, advising and supporting AppSec, DevOps, and application development teams on Shift Left best practices.
+ Act as a trusted partner to application owners, infrastructure teams, and oversight functions to translate regulatory requirements (PCI-DSS, GDPR, SOC 2) into clear, actionable technical security designs.
+ Perform security architecture reviews and provide hands-on guidance to developers on vulnerability remediation and secure coding practices.

**Required Qualifications:**

+ Bachelor's degree in computer science, engineering, or related field (or equivalent practical experience); OR in lieu of a degree, 12+ years of experience in related field
+ 4+ years of dedicated, hands-on experience designing, implementing, and securing large-scale production solutions on Amazon Web Services (AWS), Azure, or Google Cloud.
+ Proven expertise in supporting on-premises to cloud migration efforts, specifically securing the data transfer and hybrid connectivity phases.
+ Deep practical mastery of core AWS security services (IAM, KMS, VPC, Security Hub).
+ High proficiency with Infrastructure as Code (IaC) tools such as Terraform or CloudFormation for security automation.
+ Experience operating within a highly regulated industry (e.g., Financial Services) with practical knowledge of compliance frameworks such as PCI DSS, GDPR, or SOC 2.

**Desired Skills & Certifications**

+ AWS Certified Security - Specialty certification (or commitment to achieve within 6 months).
+ Experience with DevSecOps tools such as Checkmarx, Veracode, OWASP ZAP, or Burp Suite.
+ Exceptional communication skills, with the ability to set authoritative security standards while fostering collaboration across cross-functional teams.

**Grade/Level: 14**

The salary range for this position is **170,000.00 - 290,000.00** USD Annual and is eligible for an annual bonus based on individual and company performance.

Actual compensation offered within the posted salary range will be based upon work experience, skill level or knowledge.

Salaries are adjusted according to market in CA, NY Metro and Seattle.

**Eligibility Requirements:**

+ You must be 18 years or older
+ You must have a high school diploma or equivalent
+ You must be willing to take a drug test, submit to a background investigation and submit fingerprints as part of the onboarding process
+ You must be able to satisfy the requirements of Section 19 of the Federal Deposit Insurance Act.
+ New hires (Level 4-7) must have 9 months of continuous service with the company before they are eligible to post on other roles.

Once this new hire time in position requirement is met, the associate will have a minimum 6 months' time in position before they can post for future non-exempt roles.

Employees, level 8 or greater, must have at least 18 months' time in position before they can post.

All internal employees must consistently meet performance expectations and have approval from your manager to post (or the approval of your manager and HR if you don't meet the time in position or performance expectations).

Legal authorization to work in the U.S. is required.

We will not sponsor individuals for employment visas, now or in the future, for this job opening.

All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status.

**Our Commitment:**

When you join us, you'll be part of an inclusive culture where your individual skills, experience, and voice are not only heard - but valued.

Together, we're building a future where we can all belong, connect, and turn ideals into action.

More than 50% of our workforce is engaged in our Employee Resource Groups (ERGs), where community and passion intersect to offer a safe space to learn and grow.

This starts when you choose to apply for a role at Synchrony.

We ensure all qualified applicants will receive consideration for employment without regard to age, race, color, religion, gender, sexual orientation, gender identity, national origin, disability, or veteran status.

We're proud to have an award-winning culture for all.

**Reasonable Accommodation Notice:**

+ Federal law requires employers to provide reasonable accommodation to qualified individuals with disabilities.

Please tell us if you require a reasonable accommodation to apply for a job or to perform your job.

Examples of reasonable accommodation include making a change to the application process or work procedures, providing documents in an alternate format, using a sign language interpreter, or using specialized equipment.
+ If you need special accommodations, please call our Career Support Line so that we can discuss your specific situation.

We can be reached at 1-866-301-5627.

Representatives are available from 8am - 5pm Monday to Friday, Central Standard Time

**Job Family Group:**

Information Technology

Required Skill Profession

Other General