Principal Security Architect - Data Protection and Workplace Security - Ally Financial

Key Responsibilities

• Define and drive the overall security architecture roadmap for data protection and workplace security across on‑premise and cloud environments.
• Design, implement, and continuously improve security controls, encryption standards, and data loss prevention mechanisms.
• Collaborate with engineering, product, and compliance teams to embed security by design into all systems and processes.
• Lead threat modeling, risk assessments, and incident response planning for data‑centric assets.
• Provide technical guidance and mentorship to security engineers and architects, fostering best‑practice adoption.

Requirements

• 10+ years of experience in security architecture, with a focus on data protection, cloud security, and workplace safety.
• Deep knowledge of encryption, tokenization, DLP, IAM, and zero‑trust principles.
• Proven experience designing secure solutions on major cloud platforms (e.g., AWS, Azure, GCP).
• Strong analytical skills for risk assessment, threat modeling, and compliance alignment (e.g., PCI‑DSS, GDPR, CCPA).
• Excellent communication and leadership abilities to influence cross‑functional teams and senior stakeholders.