Reinsurance Group of America, Incorporated
Trusted Partner. Proven Results.
Staff Cybersecurity Architect – Security Controls
Security EngineerSecurity EngineerFull TimeRemoteTeam 1,001-5,000Since 1973H1B No SponsorCompany SiteLinkedIn
Location
Missouri
Posted
3 days ago
Salary
$150.8K - $224.6K / year
Bachelor Degree8 yrs expEnglishPythonSDLCSplunk
Job Description
• Design, develop, and implement the technical direction for enterprise security control architectures
• Champion secure by default guardrails over gates
• Define processes to enable control threat modeling and risk analyses
• Ensure controls are operationalized and continuously validated
• Author and maintain enterprise control standards and reference architectures
• Partner with various teams to embed controls into SDLC and change management
• Convert business risks into testable technical controls
• Evaluate and standardize strategic platforms for control efficacy
• Define and enforce scalable identity and access guardrails
• Contribute to incident response planning and post incident reviews
• Provide technical leadership and coaching on automation first practices
• Continuously assess and improve control posture through reporting
• Design, implement, and continuously improve telemetry architectures
Job Requirements
- Bachelor's degree in arts/sciences (BA/BS) or equivalent experience - Required
- Active CISSP certification - Preferred
- 8+ years of progressive experience in information technology security/infrastructure engineering/architecture - Required
- 6+ years of security control implementation/architecture experience focused on technical control design, implementation, and validation in enterprise environments - Required
- Deep technical background in endpoint and data security across operating systems - Required
- Hands-on automation skills (PowerShell, Python, Bash, REST APIs, webhooks) and Git-based workflows - Required
- Strong understanding of NIST CSF/800-53, CIS Controls, ISO 27001, PCI-DSS - Required
- Experience designing and operating control validation pipelines, test harnesses (positive/negative/regression), adversary/atomic testing, and continuous control monitoring with drift detection - Required
- Proven ability to build SLIs/SLOs, dashboards, and near real-time control scorecards in Splunk - Required
- Excellent documentation and communication skills - Required
- Ability to map and document complex systems and data flows - Required
- Experience integrating controls into SDLC and change management - Required
- Demonstrated success operationalizing controls on multiple platforms - Required
- Contribution to incident response and post incident hardening/validation - Preferred
- Demonstrated collaboration and influence across matrixed organizations - Preferred
Benefits
- Health insurance
- Retirement plans
- Annual bonus plan
- Long-term equity incentive plan
- Full range of health, retirement, and other employee benefits
Related Guides
Related Categories
Related Job Pages
More Security Engineer Jobs
Security Engineer3 days ago
Full TimeRemoteTeam 10,001+Since 1954H1B Sponsor
Cyber Security Engineer supporting Environmental Protection Agency operations remotely
ServiceNowTCP/IP
Security Engineer3 days ago
Full TimeRemoteTeam 11-50H1B No Sponsor
Cybersecurity Engineer leading security design and threat modeling for a digital engineering firm
AnsibleAWSAzureCloudCyber SecurityDNSFirewallsGoogle Cloud PlatformKubernetesLinuxMacOSPythonSDLCTCP/IPTerraform
Security Engineer3 days ago
Full TimeRemoteTeam 10,001+Since 1931H1B Sponsor
The Cyber Resiliency and Recovery Expert is responsible for ensuring the organization can withstand and recover from major cyber incidents. This includes designing a Recovery Readiness & Assurance Framework and conducting assessments of recovery capabilities.
Security Engineer3 days ago
Full TimeRemoteTeam 10,001+Since 1931H1B Sponsor
The Privacy Technology Apprentice supports the Regulatory Compliance and Privacy team by automating compliance tasks and developing monitoring tools. They will assist with consumer privacy requests and technology changes to meet regulatory requirements.
