Job Description:

The Role

As a Security Architect, you will work across complex and critical technology programs paramount to Fidelity Charitable’s digital ecosystem driving strategic security and fraud protection objectives. You’ll work in close collaboration with product and engineering teams within Fidelity Charitable as well as across the enterprise to continually evaluate emerging threats as well as drive impactful security architecture solutions that will promote standard methodologies and enhance the security posture of our capabilities.

In addition, you will provide technical vision and leadership over critical capabilities as part of multi-year programs providing new business capabilities and continually evolving existing platforms. You will be a part of a broader team that defines and maintains our overall technical strategy and coordinated roadmap. This position requires strong technical expertise, strategic thinking, and the ability to foster collaboration across cross-functional teams to ensure Fidelity remains at the forefront of cybersecurity innovation. Key responsibilities include engaging with senior leadership to influence product roadmaps, driving adoption of enterprise security standards, and producing high-quality documentation such as blueprints and frameworks.

The Expertise and Skills You Bring

• Deep understanding of application security frameworks, disciplines and practices, experience with secure application development and application security risk mitigation techniques

• Experience architecting and implementing solutions for identity management including single sign-on and federated identity management, authorization and identity provisioning. Relevant certifications such as CISSP, CISA, CCSP, AWS Security Principles, and AWS Certified Solution Architect preferred.

• Knowledge of Identity and Access Management (IAM), Cryptography / Key Management, Access Controls and Security Protocols, secrets modernization, secrets management e.g., Multi-factor, SAML, OAuth, OIDC etc.

• Experience with firewall, WAF and other edge services and good understanding of DMZ and other network architectures

• Experience managing the unique security challenges of cloud environments, with a strong focus on AWS

• The ability to guide the development and design of security standard methodologies to all layers of the application stack.

• Experience in developing applications with Java and Spring frameworks as well as experience in integration patterns utilizing APIs, streaming, messaging, and file exchange.

• Demonstrated ability to convert theoretical ideas into real-world implementations by building complete proofs of concept and providing tangible solutions along with well‑defined migration plans.

• Proven ability to define new strategies or enhance existing ones, ensuring alignment with enterprise direction while collaborating with and influencing technology partners to drive adoption and execution.

• Ability to communicate clearly and build positive working relationships across teams.

• Driven by curiosity and teamwork to develop sound and effective approaches to intricate problems, making solid tradeoffs that ensure both effective design and high‑quality delivery.

• Solid foundation and experience base in software engineering and continuous delivery practices

• Bachelor’s degree in computer science, Information Technology, or a related field

The Team

Fidelity Charitable is the brand name for the Fidelity® Charitable Gift Fund, an independent public charity, established in 1991 with the mission to further the American tradition of philanthropy by providing programs that make charitable giving simple and effective. Since 1991, Fidelity Charitable has helped donors support over 180,000 nonprofit organizations with more than $18 billion in grants.

The mission of Fidelity Charitable Services (FCS) is to be the premier provider of charitable solutions, offering innovative ways to make giving easy and satisfying for our customers. FCS offers the Fidelity Charitable Gift FundSM, the nation's largest donor-advised fund. Since 1991, the Gift Fund has introduced tens of thousands of donors to the benefits — and increased charitable impact — of using a donor-advised fund to meet their philanthropic goals.

Certifications:

Category:

Information Technology:

Most roles at Fidelity are Hybrid, requiring associates to work onsite every other week (all business days, M-F) in a Fidelity office. This does not apply to Remote or fully Onsite roles. Some roles may have unique onsite requirements. Please consult with your recruiter for the specific expectations for this position.

Please be advised that Fidelity’s business is governed by the provisions of the Securities Exchange Act of 1934, the Investment Advisers Act of 1940, the Investment Company Act of 1940, ERISA, numerous state laws governing securities, investment and retirement-related financial activities and the rules and regulations of numerous self-regulatory organizations, including FINRA, among others. Those laws and regulations may restrict Fidelity from hiring and/or associating with individuals with certain Criminal Histories.