FinOps Security & Compliance Architect
Insight Global
Job Description The FinOps – Security & Compliance Architect is accountable for the end-to-end security architecture, threat modeling, and compliance posture of the Collector Agent Layer, including agent-based telemetry and internal cloud usage metering implementations. This role serves as a mandatory Phase 0 security gate, with formal security sign-off required before any agent or collector is permitted to interact with production environments. The architect establishes and governs cryptographic trust models, secure identity and authentication mechanisms, tamper detection controls, and enterprise secrets management integrations to ensure all agent-based data collection is secure, auditable, and compliant with enterprise and regulatory standards. Key Responsibilities Threat Modeling & Phase 0 Governance Own the Collector Agent Layer Threat Model and serve as a signed Phase 0 blocker for production deployment Define trust boundaries, attack surfaces, and threat vectors for agent-based architectures Ensure threat models are reviewed, approved, version-controlled, and retained prior to any production access Establish and enforce security acceptance criteria required before agents are authorized to operate Secure Identity, Authentication & Trust Design and govern mTLS PKI architecture, including: Certificate issuance Rotation and revocation Trust chain management Define and enforce Kafka authentication and authorization controls using SASL/SCRAM or enterprise-approved equivalents Ensure least-privilege identity binding between agents, brokers, and downstream systems Data Integrity & Tamper Protection Architect HMAC-based integrity and tamper detection controls to ensure message authenticity and non-repudiation across the agent pipeline Define validation, replay protection, and integrity verification patterns for collected telemetry and events Partner with platform teams to embed integrity enforcement into agent runtime and transport layers Secrets Management & Vault Integration Design secure integration patterns with Bank-approved Vault services for secrets, certificates, and cryptographic keys Enforce strict separation between build-time, deploy-time, and runtime secrets Define access controls, rotation policies, and audit requirements for all sensitive agent materials Compliance, Risk & Audit Readiness Ensure collector and agent designs meet internal security standards, regulatory expectations, and audit requirements Produce security artifacts including: Threat models Architecture diagrams Control mappings Act as the security authority for agent-based exceptions, risk acceptances, and remediation plans Architecture Collaboration & Enablement Partner with platform, data, infrastructure, and FinOps architects to embed security-by-design principles Provide authoritative guidance during architecture reviews, design forums, and security assessments Mentor engineering teams on secure agent design patterns and control implementation Architecture & Leadership Capabilities Demonstrated ability to operate as a Phase 0 gatekeeper with authority to block unsafe or non-compliant designs Strong communication skills to influence senior engineers, architects, and risk partners Ability to balance security rigor with platform scalability and delivery velocity Preferred Certification FinOps Certified Practitioner or FinOps Certified Professional We are a company committed to creating diverse and inclusive environments where people can bring their full, authentic selves to work every day. We are an equal opportunity/affirmative action employer that believes everyone matters. Qualified candidates will receive consideration for employment regardless of their race, color, ethnicity, religion, sex (including pregnancy), sexual orientation, gender identity and expression, marital status, national origin, ancestry, genetic factors, age, disability, protected veteran status, military or uniformed service member status, or any other status or characteristic protected by applicable laws, regulations, and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or recruiting process, please send a request to View email address on click.appcast.io learn more about how we collect, keep, and process your private information, please review Insight Global's Workforce Privacy Policy: Skills and Requirements 7+ years of experience in security architecture and threat modeling for distributed and agent-based systems Deep expertise in PKI, X.509 certificates, mutual TLS (mTLS), and cryptographic trust models Hands‑on experience securing Kafka, including SASL/SCRAM authentication and authorization Proven experience designing HMAC-based message integrity and tamper detection mechanisms Enterprise-scale experience integrating with Vault or centralized secrets management platforms Strong understanding of least privilege access, Zero Trust principles, and defense-in-depth Demonstrated ability to operate as a formal security control owner and signatory Experience producing security artifacts for risk, compliance, and audit stakeholders FinOps Certified Practitioner or FinOps Certified Professional (preferred) #J-18808-Ljbffr Insight Global
- Insight Global in Chandler, Arizona, is seeking a FinOps - Security & Compliance Architect responsible for the end-to-end security architecture of the Collector Agent Layer. This role includes threat modeling, establishing governance for security protocols, and conducting...Suggested
- ...This role involves designing and implementing network access control solutions while collaborating across teams to drive policy and security measures. The ideal candidate should have over 10 years of experience in infrastructure, deep expertise in AAA architectures, and...Suggested
- ...is seeking a qualified professional to manage and support the security environments of IBM z/OS with a strong emphasis on RACF, ACF2,... ...security logs. The position is ideal for candidates experienced in compliance and security within financial services or regulated...Suggested
- ...Principal Cloud Security Architect – Gen AI Client is seeking a highly skilled and experienced Application Security Architect with expertise... ..., while adhering to industry best practices and compliance standards. Key Responsibilities: Develop and implement...Suggested
- ...Information Security Engineer This position provides coverage on a weekend shift schedule (Friday Monday, 10:30am 8:30pm AZ Time)... ...Provide information security consultation to improve awareness and compliance with enterprise information security policies, processes, and...SuggestedWork experience placementWork at officeRemote workShift workWeekend work
- Bank of America is seeking a Senior Architect for Cloud & SaaS to lead network security architecture and ensure secure utilization of cloud services. This role requires 10+ years in IT with 7+ in architecture and 5+ in cloud architecture. The successful candidate will develop...Flexible hours
- Cyod is seeking an experienced Cloud Security Consultant to design and implement security frameworks across Azure and AWS environments. The role involves ensuring compliance with industry standards, managing cloud security risks, and collaborating with cross-functional...
- ...Principal Enterprise Architect Location: Chandler, Arizona (Hybrid) Employment Type: Contract Contract Duration: 12 Months... ...communicate non-functional requirements to ensure solutions are secure, resilient, scalable, and compliant. Support and lead design...Contract workFlexible hours
$150.16k
.... Job Description CDM Smith is seeking a Lead Enterprise Architect to join our Corporate Business Technology team. In this role, you... ...with business and technology stakeholders to deliver scalable, secure, and integrated solutions across the enterprise application...H1bRemote work- Apex Systems seeks a Principal Enterprise Architect to define architectural vision for AI and automation projects in Chandler, Arizona. This contract position will shape architectures for large, complex systems and ensure they align with enterprise strategy and governance...Contract work
- ...Security Engineer Location: Chandler, AZ Hybrid 2+ years of Windows Administration experience 2+ years of hands on CrowdStrike or EDR Tools experience 2+ years of Powershell or Python experience 2+ years of SDLC experience 1+ year of Splunk experience...
- ...and delivery of Application Delivery infrastructure Create designs based on industry best practices, engineering standards and security principles Ensure security controls are implemented and operating effectively as part of solutions delivery Lifecycle...Work experience placement
- ...Security Engineer - Application Security Locations: Charlotte NC, Chandler AZ, Westlake TX (Hybrid), (3 days onsite/2 WFH) Duration: 12+ Months Contract US Citizen, Greencard Holder, EAD, H4-EAD ($65-70hr. on W2) Required Qualifications: ~5+ years of Application...Contract workWork experience placementWork from home
- Sequoia is seeking an Application Security Engineer in Tempe, AZ to provide application security expertise throughout the Software Development... ...(SDLC). You'll validate and test web applications to ensure compliance with industry best practices while conducting penetration...
- Bank of America is seeking a skilled individual for a cybersecurity role focused on external network security. Responsibilities include executing assessments, compliance management, and collaboration with technical teams to enhance security measures. The ideal candidate...
- ManpowerGroup Global, Inc. is seeking a Database Security Engineer (DB2/IMS z/OS) in Chandler, AZ. This role involves supporting and maintaining mainframe database environments, managing security controls, and collaborating with various teams. Candidates should have expertise...Flexible hours
- ...group management. Experience administering dataset and subsystem security. Experience conducting security audits and access reviews.... ...understanding of z/OS security architecture, access control models, and compliance practices. Excellent troubleshooting and analytical skills....
- ...partner supporting mission‑critical programs across national security, defense, and public service delivery. Our work focuses on sustaining... ...and assisting with containment, vulnerability management, and compliance activities. The role works under senior guidance to execute...Minimum wageFull timeContract workTemporary workWork experience placementRemote work
$52 - $57 per hour
...Location: Chandler, AZ Salary: $52.00 USD Hourly - $57.00 USD Hourly Description: Information Security Engineer (Contract) We are not accepting C2C or 1099 arrangements. Location: Chandler, AZ (Preferred) or Las Colinas, TX Employment Type: Contract-to-Hire About the...Hourly payFull timeContract work- ...Information Security Engineer 3 Location: Irving, TX / Charlotte, NC / Chandler, AZ (Hybrid) Duration: 18+ Months Consultant Type: W2 only (OPT not eligible) Must-Haves / Core Skillset Micro-Segmentation & Zero Trust Hands-on experience with workload...
$142.24k
A renowned coffee brand in Tempe, Arizona, is looking for a Corporate Architect to lead AI-driven business transformation. The ideal candidate will have extensive experience in AI, software development, and enterprise architecture. Responsibilities include designing scalable...Work at office- ADP, Inc. is hiring a Senior Client Success Manager in Tempe, Arizona. This role is crucial for maintaining long-term relationships with enterprise clients and driving measurable outcomes by acting as a strategic partner from onboarding through renewal. The ideal candidate...Work at officeFlexible hours
- Sierra Ventures is looking for a Senior Enterprise Infrastructure Engineer to lead the technical initiatives for their infrastructure team in Tempe, AZ. The ideal candidate will leverage DevOps methodologies to enhance system performance and reliability. This role involves...
$135k - $202.6k
...in Chandler, AZ. This role involves defining and governing the security posture of complex missile weapon systems. Responsibilities... ...leading security architecture, mentoring staff, and ensuring compliance with DoD policies. Candidates should have extensive experience...$100k - $120k
...automotive transportation. About the Role: The Offensive Security Engineer is a hybrid role combining hands-on penetration... ...assessment coordination, and security tooling selection. Support compliance efforts (SOC 2, PCI DSS) by providing evidence and attestation...Temporary workWork at officeLocal areaWork from homeHome office3 days per week$84.63k - $112.84k
...our expansive fiber network and connected ecosystem. We enable secure, high‑performance connectivity across cloud, edge, and AI workloads... .... Consult as security subject matter expert with network architects, engineers, and others on solutions to security problems....Full timeTemporary workRemote work$100k - $172.5k
...Learn more at Job Function: Technology Enterprise Strategy & Security Job Sub Function: Solution Architecture Job Category:... .... If you are eager to leverage your security risk and compliance skills to make a difference and directly impact patient lives,...Full timeTemporary workWork at officeLocal areaImmediate startRemote work3 days per week- ...services industry, is seeking a dedicated and skilled Database Security Engineer (DB2/IMS z/OS) (chandler) to join their dynamic team.... ...support teams to plan and execute security controls, ensuring compliance with bank policies, standards, and procedures. Collect...Weekly payTemporary workFlexible hours
- ...Principal Security Engineer - Temporary We are seeking a visionary Principal Security Engineer - Temporary to architect the next generation of Identity at Achieve. In the evolving Fintech... ...environments where speed and compliance must coexist. ~5+ years focused on...Temporary workRemote workWork from home
- ...A leading tech employer in Tempe, Arizona is seeking a Physical Security Support Engineer to provide support and troubleshoot for physical security system infrastructures. Candidates should have experience in scripting languages, knowledge of networking, and project management...Flexible hoursNight shift
Do you want to receive more vacancies?
Subscribe and receive similar vacancies to FinOps Security & Compliance Architect. Be the first to apply!
- regulatory compliance specialist Chandler, AZ
- ethics compliance Chandler, AZ
- vendor compliance Chandler, AZ
- regulatory compliance remote Chandler, AZ
- regulatory compliance associate Chandler, AZ
- regulatory affairs Chandler, AZ
- compliance lead Chandler, AZ
- compliance auditor Chandler, AZ
- regulatory compliance Chandler, AZ
- director quality assurance regulatory affairs Chandler, AZ


