Senior Application Security Architect
Morningstar Credit Ratings, LLCChicago, IL, United States30+ days ago
Job type
- Full-time
Job descriptionThe Team : The Information Security department is responsible for setting enterprise security policies and standards that are designed to protect the confidentiality, integrity, and availability of Morningstar information. The security team offers guidance and technical expertise in areas like application security, infrastructure and cloud security, policies and procedures, disaster recovery and compliance / regulation. We analyze emerging security threats and conduct risk and vulnerability assessments to ensure that our information remains secure. The Role : The Senior Application Security Architect will be part of the central information security team and act as a subject matter expert to all of Morningstar’s product teams by provide security guidance and creating application security standards and patterns. The successful candidate will contribute to maintaining Morningstar’s security posture by performing threat modeling, security architecture reviews of Morningstar products and ensure that major projects receive appropriate architectural security guidance, requirements setting, and review. The Application Security Architect will also partner with the Director of Product Security to define the direction of the application security program as well as on improving security processes and tooling. This position is based in our Chicago office. We follow a hybrid policy of at least 4 days onsite.Morningstar's hybrid work environment gives you the opportunity to collaborate in-person each week as we've found that we're at our best when we're purposely together on a regular basis. In most of our locations, our hybrid work model is four days in-office each week. A range of other benefits are also available to enhance flexibility as needs change. No matter where you are, you'll have tools and resources to engage meaningfully with your global colleagues. Job Responsibilities : Collaborate with development teams across the organization to secure products Contribute to secure reference architectures and patterns for all product teams to leverage Develop, maintain, and communicate future and current product security initiatives Develop and enhance internal security processes, programs, and procedures Conduct risk assessments, threat modeling, and product security reviews on Morningstar systems Work directly with internal business units to communicate risk, provide security remediation advice, and deliver education as needed. Document secure coding guidelines and assist execution by internal development personnel Identify web / mobile / api application security vulnerabilities and offer remediation advice Qualifications : A bachelor’s degree and 5+ years’ experience in a development or software security / penetration testing role, or equivalent experience We are looking for someone who enjoys breaking code, solving puzzles, and diagnosing problems Excellent communication skills and a strong understanding of software development, architecture, and application security An ability to improve system development security across diverse technical teams and technologies Strong understanding of risk management and the real-world impacts of architectural decisions Experience architecting and deploying applications securely in cloud environments Nice to have : Strong understanding of common authentication models and protocols (SAML, OAuth, OpenID, etc.) preferred Prior development experience preferred Vulnerability management experience preferred Compensation and Benefits At Morningstar we believe people are at their best when they are at their healthiest. That’s why we champion your wellness through a wide-range of programs that support all stages of your personal and professional life. Here are some examples of the offerings we provide : Financial Health + 75% 401k match up to 7% + Stock Ownership Potential + Company provided life insurance - 1x salary + commission Physical Health + Comprehensive health benefits (medical / dental / vision) including potential premium discounts and company-provided HSA contributions (up to $500-$2,000 annually) for specific plans and coverages + Additional medical Wellness Incentives - up to $300-$600 annual + Company-provided long- and short-term disability insurance Emotional Health + Trust-Based Time Off + 6-week Paid Sabbatical Program + 6-Week Paid Family Caregiving Leave + Competitive 8-24 Week Paid Parental Bonding Leave + Adoption Assistance + Leadership Coaching & Formal Mentorship Opportunities + Annual Education Stipend + Tuition Reimbursement Social Health + Charitable Matching Gifts program + Dollars for Doers volunteer program + Paid volunteering days + 15+ Employee Resource & Affinity Groups Total Cash Compensation Range $110,775.00 - 188,325.00 USD Annual Inclusive of annual base salary and target incentive Morningstar's hybrid work environment gives you the opportunity to collaborate in-person each week as we've found that we're at our best when we're purposely together on a regular basis. In most of our locations, our hybrid work model is four days in-office each week. A range of other benefits are also available to enhance flexibility as needs change. No matter where you are, you'll have tools and resources to engage meaningfully with your global colleagues.100\_MstarResCanad Morningstar Research, Inc. (Canada) Legal Entity How to Apply for a Job at Morningstar Step 1 When you find a position you're interested in, click the 'Apply' button. Please fill out this form completely, attaching your resume and cover letter in the approved format. Read the job requirements carefully and make sure to attach writing or design samples as required. Applicants must submit their resume and other information through our corporate website to be considered for a job at Morningstar. No phone calls, please. Step 2 You will receive an email notification to confirm that we've received your application. Step 3 If you are called in for an interview, a representative from Morningstar will contact you to set up a date, time, and location. Be prepared for a rigorous interview process. To make sure you're a good fit for Morningstar and we're a good fit for you, we'll schedule time for you to meet with multiple staff members at all levels of the company. Expect to return for multiple interviews as part of the process. A representative from Morningstar will contact you with the results of your interview—either with a job offer or to let you know our plans for the position. Applicants With Disabilities Who Need Accommodation Morningstar is committed to working with and providing reasonable accommodation to individuals with disabilities. If, because of a medical condition or disability, you need a reasonable accommodation for any part of the employment process, please call +1 312 384-3900 or email AskHR@morningstar.com and let us know the nature of your request and your contact information.Please note : We only accept calls from applicants who need accommodation related to a disability. Please, no calls with unrelated questions or requests. Please be sure to include the title and location of the open position you’re interested in when you leave a message. US Applicants : Morningstar is an E-Verify program participant. Learn more : Morningstar is strongly committed to creating and preserving equal opportunity for all employees and applicants. We make all employment decisions—including recruitment, hiring, compensation, training, promotion, transfer, discipline, termination, and other personnel matters—without regard to race, color, ancestry, religion, sex, national origin, age, disability, protected veteran status, marital status, sexual orientation, genetic information, citizenship, gender identity and expression, parental status, or other legally protected characteristics or conduct.
#J-18808-Ljbffr
Create a job alert for this search
Senior Security Architect • Chicago, IL, United States
Related jobs
The Security Architect will design and oversee implementation of secure information technology architectures under direct supervision.
Helps to identify and define the organizations cyber security r...Show moreLast updated: 30+ days ago
Global Solutions Security Architect IV, Google Cloud.The Global Solutions team is responsible for constructing all of the sales plays as part of the overall Go‑To‑Market (GTM) strategy within Googl...Show moreLast updated: 6 days ago
Applications Architect – On-Prem Applications Focus.Chicago, IL – 2 days onsite, 3 days WFH.The Applications Architect is responsible for working directly with department heads over various package...Show moreLast updated: 30+ days ago
The Information Security department is responsible for setting enterprise security policies and standards to protect the confidentiality, integrity, and availability of Morningstar information.The ...Show moreLast updated: 30+ days ago
Infrastructure & Network Services.Under general direction, the Senior System Administrator is responsible for reviewing the design, installation, maintenance, training, and support of Windows serve...Show moreLast updated: 30+ days ago
IT implementation experience including : .Application Development (multi-tier, Web, and / or Mobile).Database / Information Management.
Application Platforms and Integration.In-depth experience in Compone...Show moreLast updated: 6 days ago
Earn at least $2765 driving with Uber when you complete your first 218 trips in 30 days.Driving is an easy way to boost your income while maintaining the flexibility your schedule requires (gig, pa...Show moreLast updated: 1 day ago
Customs and Border Protection Officer (CBPO).Customs and Border Protection (CBP) offers those interested in a career in law enforcement an exceptional opportunity to work with an elite team of high...Show moreLast updated: 30+ days ago
Federal Reserve Bank of Boston Federal Reserve Financial Services (FRFS) delivers a suite of payments services to financial institutions via FedLine Solutions, FedNowSM, Fedwire, National Settlemen...Show moreLast updated: 2 days ago
Define and enforce enterprise-wide AI security architecture patterns across : .First-party AI / LLM deployments.Microsoft Copilot and GitHub Copilot.
Azure OpenAI and plugin architectures.Third-party m...Show moreLast updated: 2 hours ago
Global Cybersecurity Senior Solution Architect.The Global Cybersecurity (GCS) Senior Cyber Security Solution Architect defines, communicates and enforces cybersecurity requirements and overall arch...Show moreLast updated: 30+ days ago
We are seeking a Senior Application Security Engineer who will work with our development team to manage security and risk on our internally developed applications.
The engineer will make risk-based ...Show moreLast updated: 6 days ago
A major airline in Chicago is seeking an experienced Enterprise Architect responsible for guiding technology solutions and ensuring compliance with industry standards.
Applicants should have a Bache...Show moreLast updated: 8 hours ago A leading technology firm is seeking a Global Solutions Security Architect III to develop and document security solution architectures.
This role involves cross-functional collaboration, driving sol...Show moreLast updated: 3 days ago 
Chicago, IL - WFH 2 days / week, onsite 3 days in the loop.The IT Security Architect sits on our Security Operations team, to support global IT Security.
There will be an emphasis on Network Security,...Show moreLast updated: 30+ days ago
The Senior Solution Architect will support the Risk Controls Enhancements (RCE) program, a large-scale enterprise initiative aimed at modernizing and consolidating Governance, Risk, and Controls (G...Show moreLast updated: 1 day ago
This position requires you to be located and frequently travel to customer sites in the Midwest territory.Must be located within the Midwest territory.
Howard Technology Solutions stands at the fore...Show moreLast updated: 30+ days ago
By clicking the “Apply” button, I understand that my employment application process with Takeda will commence and that the information I provide in my application will be processed in line with Tak...Show moreLast updated: 8 hours ago
- Promoted
Senior Cyber Security Architect II (IL, WA or VA)
WalgreensDeerfield, IL, United StatesFull-time
- Promoted
Global Solutions Security Architect IV, Google Cloud
GoogleChicago, IL, United StatesFull-time
- Promoted
Applications Architect – On-Prem Applications Focus
1872 ConsultingChicago, IL, United StatesFull-time
- Promoted
Senior Application Security Architect
Morningstar, Inc.Chicago, IL, United StatesFull-time
- Promoted
Senior System Administrator
InsideHigherEdPalos Hills, Illinois, United StatesFull-time
- Promoted
Enterprise Architect
Scout ETChicago, IL, United StatesTemporary
- Promoted
Part-time gig : Earn at least $2765 in your first 218 trips.
UberHighwood, IL, USFull-time +1
- Promoted
Customs and Border Protection Officer - Experienced
U.S. Customs and Border ProtectionHighland Park, IL, United StatesFull-time
- Promoted
FedNow Senior Cyber Security Architect
Federal ReserveChicago, IL, United StatesFull-time +1
- Promoted
- New!
Sr Principal AI Security Architect
ExecutivePlacements.comChicago, IL, United StatesFull-time
- Promoted
Global Cybersecurity Senior Solution Architect
McDonald'sChicago, IL, United StatesFull-time
- Promoted
Senior Application Security Engineer (Hybrid - US)
Energy Solutions - USAChicago, IL, United StatesFull-time
- Promoted
- New!
Enterprise Architect — Cloud, Security & Observability
United AirlinesChicago, IL, United StatesFull-time
- Promoted
Global Security Architect III — Multi-Cloud Threat Defense
GoogleChicago, IL, United StatesFull-time
- Promoted
IT Security Architect
1872 ConsultingChicago, IL, United StatesFull-time
- Promoted
Senior Solution Architect
Compunnel, Inc.Chicago, IL, United StatesFull-time
- Promoted
Physical Security Solutions Architect
Howard Technology SolutionsChicago, IL, United StatesFull-time
- Promoted
- New!
Senior Business Analyst (Remote)
Biolife Plasma ServicesBRIDGEVIEW, IL, USRemote
Full-time