BNY is seeking a Vice President, Information Security to provide hands-on technical leadership for our Identity Access and Management team. This executive role is responsible for architecting, coding, and leading the delivery of enterprise-scale IAM platforms and services, owning end-to-end solutions across authentication, authorization, identity lifecycle, and security posture.
What You'll Do
- Lead full-stack delivery of secure, resilient IAM capabilities across enterprise applications.
- Set technical direction for Java/Spring-based services and web apps; enforce standards for reliability, performance, and security.
- Raise the bar on security (MFA, OAuth2/OIDC, LDAP/AD integrations) and operational excellence.
- Reduce incidents via robust observability, disciplined incident management, and root-cause remediation.
- Accelerate delivery through Git-based CI/CD, automated testing, and repeatable release processes.
- Mentor and grow engineering talent, foster ownership, and drive continuous improvement.
- Communicate architecture and trade-offs to senior leadership; align investments to measurable outcomes.
- Own critical decisions, operational readiness, and measurable reliability/security outcomes.
What We're Looking For
- Bachelor’s in computer engineering or equivalent.
- 7+ years of experience in enterprise software.
- 3+ years leading teams or serving as a technical lead.
- Proven ability to design scalable, secure, highly available systems.
- Expertise in Java/J2EE, Spring (Boot/Core), Spring Security.
- Experience with Angular/TypeScript for front-end development, including migration from legacy JSP.
- Strong REST API design, versioning, testing, and governance.
- Proficiency with LDAP, SiteMinder, Active Directory; authentication/authorization models; MFA design; SSO and federation fundamentals.
- Deep knowledge of web app security, API security, OAuth2/OpenID Connect, token flows, and secure coding practices.
- Experience with Oracle or similar DBMS; schema design, SQL optimization, and performance tuning.
- Hands-on experience with Git-based CI/CD pipelines, automated testing, and release processes.
- Strong troubleshooting, incident management, and root-cause analysis skills.
- Demonstrated ownership, stakeholder management, clear communication, and mentoring abilities.
Nice to Have
- Experience with enterprise web app security reviews and threat modeling.
- Familiarity with authorization frameworks (RBAC/ABAC) and policy-as-code.
- Exposure to SSO, identity federation, and integrating with enterprise identity providers.
Technical Stack
- Java, J2EE, Spring Boot, Spring Core, Spring Security
- Angular, TypeScript
- REST API
- LDAP, SiteMinder, Active Directory
- OAuth2, OpenID Connect
- Oracle
- Git, CI/CD
Team & Environment
You will be leading the Identity Access and Management team, providing hands-on technical leadership and architectural guidance.
Benefits & Compensation
- Highly competitive compensation, benefits, and wellbeing programs.
- Access to flexible global resources and tools.
- Generous paid leaves, including paid volunteer time.
Work Mode
This role is based locally in Pittsburgh, PA or Lake Mary, FL.
BNY is an equal opportunity employer.
