Security Hub Architect

Location: Charlotte NC(Onsite)(Hybrid)

Client: Intellyk

 90/W2 , any independent visa or H1B T are good to accept

Job Description

Synechron

Position Summary

The Security Hub Architect will serve as the technical lead responsible for the architecture, design, and implementation of a purpose-built Security Hub supporting Wells Fargo's Data Private Cloud (DPC) initiative. The role will define the overall solution architecture, security control framework, integration strategy, detection capabilities, and operational model while ensuring alignment with enterprise security, governance, and OpenShift standards.

The Security Hub Architect will work closely with platform engineering, security engineering, SRE, integration teams, and business stakeholders to establish Security Hub as the authoritative system of record for security findings and enable centralized visibility, control enforcement, automated remediation, and audit-ready compliance reporting.

Key Responsibilities

Security Hub Architecture & Design

• Define the end-to-end Security Hub architecture aligned with enterprise security and DPC requirements.
• Design a control-driven security framework supporting approximately 60 controls across multiple security domains.
• Establish Security Hub as the centralized system of record for security findings, governance, and reporting.
• Define high availability, resiliency, scalability, and disaster recovery requirements.
• Develop logical, physical, and integration architecture artifacts.

Security Controls & Detection

• Design and implement triple-mode detection capabilities utilizing:
  • Real-time security events
  • Observability metrics
  • Periodic compliance and security scans
• Translate enterprise security controls into enforceable technical controls.
• Define control validation, compliance monitoring, and evidence-generation requirements.
• Establish control traceability and audit-readiness processes.

Integration Architecture

• Define an integration-first architecture supporting event-driven security operations.
• Design integrations with:
  • Keycloak
  • Ranger
  • OpenShift APIs
  • Kafka
  • LGTM
  • StorageGRID
  • DataHub
  • Vault/Venafi
  • ServiceNow
  • Enterprise observability platforms
• Define telemetry ingestion, normalization, correlation, and workflow orchestration patterns.

Automation & AI Enablement

• Design automated remediation workflows and approval-gated enforcement processes.
• Define AI-assisted triage, root-cause analysis, prioritization, and recommendation capabilities.
• Leverage accelerator frameworks and reusable implementation patterns to accelerate delivery.
• Ensure AI-enabled capabilities align with enterprise governance and architecture standards.

Governance & Operational Readiness

• Participate in architecture governance, design reviews, and stakeholder workshops.
• Support development of operational processes, runbooks, and support models.
• Ensure alignment with compliance, risk, audit, and regulatory requirements.
• Support knowledge transfer and transition to steady-state operations.

Required Skills & Experience

Experience

• 15+ years of cybersecurity, cloud security, or security architecture experience.
• 5+ years designing and implementing enterprise security platforms.
• Experience leading large-scale security transformation initiatives within highly regulated environments.
• Experience establishing centralized security operations, governance, and compliance platforms.

Technical Skills

• Security Architecture
• OpenShift / Kubernetes
• Cloud Security (AWS, Azure, Google Cloud Platform)
• SIEM / SOAR Platforms
• Security Operations (SecOps)
• Vulnerability Management
• Identity & Access Management (IAM)
• Event-Driven Architecture
• Kafka
• API Integration
• ServiceNow
• Observability Platforms
•