Sr. Security Architect

<p><span style="color:#000000">Alkami is the digital sales and service platform provider for U.S. banks and credit unions. Our unified Platform integrates onboarding, digital banking, and data and marketing—each solution can stand alone, but together they deliver more—to help institutions onboard, engage, and grow relationships. As the future shifts toward Anticipatory Banking, we help data-informed bankers meet the moment with technology that drives action.</span></p><p><br></p><p><span style="color:#000000">Founded in 2009, we continue to be recognized for our intentional culture and tremendous growth (Best Place to Work in Fintech; Best & Brightest to Work For Nationally; and Comparably’s Best Company Culture, Best Career Growth, Best Engineering Team, and Best Places to Work in Dallas, among others). We’re building a culture where each Alkamist can perform to their highest potential, and we’re always on the lookout for the best and brightest minds. If you’re ready to experience the power of alchemy - transforming the ordinary into the extraordinary - come join one of the fastest growing SaaS companies in the U.S.</span></p><p><br></p><p><span style="color:#1d1c1d"><span>As a remote-first company, most of our positions can be remote in the US, except for key roles, which will be indicated in the Job Title.</span></span></p><p><br><span style="color:#000000">Follow us on </span><a href="https://www.glassdoor.com/Overview/Working-at-Alkami-Technology-EI_IE687537.11,28.htm" target="_blank" rel="noopener noreferrer"><span style="color:#1155cc"><u>Glassdoor</u></span></a><span style="color:#000000"> and </span><a href="https://www.linkedin.com/company/alkamitech/jobs/" target="_blank" rel="noopener noreferrer"><span style="color:#1155cc"><u>LinkedIn</u></span></a><span style="color:#000000">!</span></p><p></p>We're looking for a Sr. Security Architect who believes that great security enables the business — it doesn't block it. In our Enterprise Information Security team, we don't operate as the house of no. We're the house of yes, and here's how: yes to moving fast, yes to bold initiatives, yes to innovation — and we're the team that helps the business understand how to do all of it safely and with clear eyes on risk.<br><br>This is one of the most impactful roles in our security organization. You'll sit at the intersection of business strategy and technical security, helping teams across the company move quickly while making smart, calculated risk decisions. You won't just enforce policy — you'll be a trusted partner who understands what the business is trying to accomplish, negotiates practical paths forward, and finds creative solutions that let the organization take calculated risks confidently.<br><br>You'll move fluidly between deep technical work and high-level strategy — designing cloud security architecture one day, presenting a roadmap to leadership the next. You'll partner closely with SRE and development teams, lead our network penetration testing program, and help the broader organization navigate increasingly complex security challenges, including the emerging frontier of AI and agentic systems.<br><br>This is a remote position with travel required twice a year for team <span style="overflow-wrap: break-word; display: inline; text-decoration: inherit; hyphens: auto;">gatherings. </span><p><b><b>Key Responsibilities & Duties:</b></b></p><p></p><p><b><b>Business Partnership & Risk Enablement</b></b></p><p><span>Act as a genuine business partner, not a gatekeeper. Engage with teams early in the process to understand what they're trying to build and why — then help them get there securely. Translate complex security risks into clear business language so stakeholders can make informed, confident decisions. Negotiate practical solutions that balance business velocity with security best practices, and build a reputation as the team that finds a way forward rather than the team that says no.</span></p><p></p><p><b><b>Security Initiative Lifecycle & Cross-Team Handoff</b></b></p><p><span>Own security initiatives end to end — from gap identification and solution selection through implementation and handoff. Every initiative includes a deliberate transition plan: security engineering takes over ongoing platform operations, and security operations owns downstream alerting and detection. Collaborate with both teams throughout, not just at the finish line.</span></p><p></p><p><b><b>Security Strategy & Innovation</b></b></p><p><span>Own the development and execution of a forward-looking, cloud-first security architecture vision. Identify gaps in our current security posture and research emerging technologies — including AI/agentic security — to keep us ahead of the curve. Build practical tools and agents that reduce friction for internal teams, such as helping users understand permission requirements for new projects.</span></p><p></p><p><b><b>Framework Governance & Standards</b></b></p><p><span>Lead the company's formal adoption of NIST CSF 2.0 and the NIST AI Risk Management Framework. Conduct gap analyses, map current controls, and build cross-functional alignment on a clear adoption plan. Champion standardized security architecture frameworks to continuously mature our security discipline.</span></p><p></p><p><b><b>Cloud Identity & Infrastructure Security</b></b></p><p><span>Define and maintain Terraform-based configuration standards and modern identity management practices. Drive the migration to AWS IAM Identity Center and advance our "secure-by-design" infrastructure posture through Policy-as-Code. Ensure data and application security are foundational — not afterthoughts — in everything we build.</span></p><p></p><p><b><b>Threat Management & Vulnerability Governance</b></b></p><p><span>Formalize and run a threat modeling program that integrates security into the design phase of every new initiative. Support the CI/CD security gating process to ensure only secure container images reach production, and deliver focused, actionable vulnerability reporting that helps remediation teams prioritize what actually matters.</span></p><p></p><p><b><b>Penetration Testing Program Management</b></b></p><p><span>Manage our network penetration testing program, coordinating approximately five third-party engagements per year. Ensure tests are well-scoped, run on schedule, and that findings are translated into clear, prioritized remediation readouts delivered to the right technology owners.</span></p><p></p><p><b><b>Technical Leadership & Mentorship</b></b></p><p><span>Design cybersecurity solutions that align with enterprise policy while being practical enough for teams to actually implement. Coach and mentor technical staff across the company in cybersecurity disciplines. Provide hands-on consulting to development and SRE teams on critical projects, and help rally InfoSec partners to ensure security requirements stay prioritized in cross-functional work.</span></p><p></p><p><b><b>Security Awareness & Policy</b></b></p><p><span>Raise the security awareness bar across the enterprise through ongoing education and communication. Contribute meaningful input to policies and security control configurations, and develop technical solutions and tooling that automate repeatable tasks and reduce vulnerability exposure.</span></p><p></p><p><b><b>Qualifications:</b></b></p><ul><li><p><span>8+ years of proven experience as a security architect</span></p></li><li><p><span>Deep expertise in cloud platforms, specifically AWS and/or GCP</span></p></li><li><p><span>Proficiency with security tools and technologies including Wiz and Cloudflare</span></p></li><li><p><span>Strong command of security architecture frameworks such as NIST CSF 2.0 and NIST AI RMF</span></p></li><li><p><span>Experience building and maintaining security systems with a focus on data and application security</span></p></li><li><p><span>Hands-on background with firewalls, intrusion detection systems, authentication systems, log management, anti-virus, and content filtering</span></p></li><li><p><span>Solid knowledge of network configurations, devices, and security monitoring tools</span></p></li><li><p><span>Up-to-date understanding of the latest security principles, techniques, and protocols</span></p></li><li><p><span>Familiarity with web technologies, web services, and service-oriented architectures and their associated protocols</span></p></li><li><p><span>Proven ability to negotiate and influence — you can push back when needed, find creative middle ground, and bring stakeholders along without creating friction</span></p></li><li><p><span>Strong business acumen — you understand how companies operate, what drives decision-making, and how to frame security in terms of business risk and opportunity</span></p></li><li><p><span>Strong leadership presence — you can influence and drive cultural change toward security-first thinking</span></p></li><li><p><span>Exceptional communicator, equally comfortable presenting technical concepts to engineers and translating risk for business leaders</span></p></li><li><p><span>BS in Computer Science or a related field, or an additional 3 years of equivalent experience</span></p></li></ul><p></p><p><b><b>Desired Skills:</b></b></p><ul><li><p><span>Experience in financial services, with an understanding of the sector's unique regulatory and security landscape</span></p></li><li><p><span>CISSP, CCSP, or CISM certification</span></p></li><li><p><span>Hands-on experience integrating security into CI/CD pipelines and automating continuous security validation</span></p></li><li><p><span>Advanced knowledge of data protection, encryption methods, and privacy regulations such as GDPR and CCPA</span></p></li><li><p><span>Proficiency in risk identification, assessment, and mitigation strategy development</span></p></li><li><p><span>Familiarity with Zero Trust architecture and the application of AI/ML in cybersecurity contexts</span></p></li><li><p><span>Track record of effective collaboration across development, operations, legal, and executive leadership — including a history of finding yes when others defaulted to no</span></p></li></ul>The salary range for this position is: $128,000 - $160,000 + Bonus<p></p><h1><b>Cool Things to Know</b></h1><p></p><p><b>Not Just Any Company</b>: Alkami has an awesome diverse and inclusive environment. We have a FUN culture and offer great benefits, including remote-first environment, unlimited paid time off, 401(k) with employer match, and more.</p><p></p><p><b>Work Authorization</b>: We cannot offer employment sponsorship at this time. Candidates must be eligible to work in the US for full-time employment.</p><p></p><p><b>Recruiters</b>: We are not looking for outside recruiting firms to help us in this search. Thank you for understanding.</p><p></p><p><b>Pay Transparency: </b>As of January 1, 2023, new states and locales have enacted pay equity laws that require more pay transparency by employers in the following states: California, Colorado (effective January 1, 2021), Connecticut, Maryland, Nevada, New Jersey, New York, Ohio, Rhode Island and Washington. </p><h2></h2><p></p><h1><b>The Important Stuff</b></h1><p></p><p><b>Alkami Technology is an Equal Opportunity Employer and Prohibits Discrimination and Harassment of Any Kind: </b>Alkami is committed to the principle of equal employment opportunity for all employees and to providing employees with a work environment free of discrimination and harassment. All employment decisions at Alkami are based on business needs, job requirements and individual qualifications, without regard to race, color, religion or belief, national, social or ethnic origin, sex (including pregnancy), age, physical, mental or sensory disability, HIV Status, sexual orientation, gender identity and/or expression, marital, civil union or domestic partnership status, past or present military service, family medical history or genetic information, family or parental status, or any other status protected by the laws or regulations in the locations where we operate. Alkami will not tolerate discrimination or harassment based on any of these characteristics. Alkami encourages applicants of all ages.</p><p></p><p><b>#LI-REMOTE</b></p><p><br></p>

Back to blog

Common Interview Questions And Answers

1. HOW DO YOU PLAN YOUR DAY?

This is what this question poses: When do you focus and start working seriously? What are the hours you work optimally? Are you a night owl? A morning bird? Remote teams can be made up of people working on different shifts and around the world, so you won't necessarily be stuck in the 9-5 schedule if it's not for you...

2. HOW DO YOU USE THE DIFFERENT COMMUNICATION TOOLS IN DIFFERENT SITUATIONS?

When you're working on a remote team, there's no way to chat in the hallway between meetings or catch up on the latest project during an office carpool. Therefore, virtual communication will be absolutely essential to get your work done...

3. WHAT IS "WORKING REMOTE" REALLY FOR YOU?

Many people want to work remotely because of the flexibility it allows. You can work anywhere and at any time of the day...

4. WHAT DO YOU NEED IN YOUR PHYSICAL WORKSPACE TO SUCCEED IN YOUR WORK?

With this question, companies are looking to see what equipment they may need to provide you with and to verify how aware you are of what remote working could mean for you physically and logistically...

5. HOW DO YOU PROCESS INFORMATION?

Several years ago, I was working in a team to plan a big event. My supervisor made us all work as a team before the big day. One of our activities has been to find out how each of us processes information...

6. HOW DO YOU MANAGE THE CALENDAR AND THE PROGRAM? WHICH APPLICATIONS / SYSTEM DO YOU USE?

Or you may receive even more specific questions, such as: What's on your calendar? Do you plan blocks of time to do certain types of work? Do you have an open calendar that everyone can see?...

7. HOW DO YOU ORGANIZE FILES, LINKS, AND TABS ON YOUR COMPUTER?

Just like your schedule, how you track files and other information is very important. After all, everything is digital!...

8. HOW TO PRIORITIZE WORK?

The day I watched Marie Forleo's film separating the important from the urgent, my life changed. Not all remote jobs start fast, but most of them are...

9. HOW DO YOU PREPARE FOR A MEETING AND PREPARE A MEETING? WHAT DO YOU SEE HAPPENING DURING THE MEETING?

Just as communication is essential when working remotely, so is organization. Because you won't have those opportunities in the elevator or a casual conversation in the lunchroom, you should take advantage of the little time you have in a video or phone conference...

10. HOW DO YOU USE TECHNOLOGY ON A DAILY BASIS, IN YOUR WORK AND FOR YOUR PLEASURE?

This is a great question because it shows your comfort level with technology, which is very important for a remote worker because you will be working with technology over time...