Principle Enterprise Security Architect - Director
Hybrid · Charlotte, North Carolina, United States
Job Summary
Principal Enterprise Security Architect drives the global ESA strategy and roadmaps, focusing on cloud-native resilience, AI/agentic system security, and regulatory alignment. The role acts as a senior advisor to security leadership, governs enterprise security architecture across regions, and leads governance, risk management, and secure innovation in AI/ML deployments. Travel up to 10% domestically/internationally. Mentors future security architects and collaborates with AI/ML, data science, and enterprise architecture teams to ensure secure innovation in AI adoption. The position emphasizes defining guardrails, patterns, and controls for scalable, resilient security architecture and embedding AI risk management frameworks (NIST AI RMF, EU AI Act) into security strategy.
Required Qualifications
- Bachelor’s or Master’s degree in Computer Science, Information Security, or related field (or equivalent experience)
- 12+ years of progressive cybersecurity experience
- Experience developing and executing enterprise security strategies and roadmaps in a global, regulated financial services environment
- Expertise across cloud security (Azure, AWS, GCP), data protection, network architecture, application security, IAM, zero trust
- Experience with API security, DevSecOps, container/Kubernetes security
- Knowledge of TOGAF, SABSA, NIST CSF, CIS, ISO 27001; regulatory obligations (NYDFS 23 NYCRR 500, FFIEC, GDPR, etc.)
- Strong communication and influencing skills
- Preferred certifications: CISSP, CISM, CISA, CRISC, SABSA, TOGAF, CCSP, and cloud security certifications
- Hybrid work model and commuting requirements as specified by SMBC
Apply with one swipe on Sorce. We auto-fill applications and apply on your behalf — no cover letters, no 40-minute forms.
Hiring someone like this?
Get your role in front of qualified candidates on Sorce.