STEM OPT Security Architect Jobs
Security Architect roles qualify for the 24-month STEM OPT extension if your degree falls under an eligible CIP code in computer science, information security, or a related engineering field. Your employer must be enrolled in E-Verify, and you'll need a signed I-983 training plan before your extension begins.
Find STEM OPT Security Architect JobsOverview
Showing 5 of 13+ Security Architect jobs
See all Security Architect Jobs
Sign up for free to unlock all listings, filter by visa type, and get alerts for new Security Architect roles.
Get Access To All JobsWho are we?
At Finastra, we’re a global leader in financial services software, dedicated to expanding access to financial services and shaping what’s next for the industry. Our technology powers mission‑critical solutions across Lending, Payments and Universal Banking, supporting over 7,000 customers, including 80% of the world’s top 50 banks, in more than 110 countries.
We are seeking a principal-level AI Security Architect to define our enterprise AI/ML security architecture across data, model, and infrastructure layers. The individual will partner with AI COE, product, engineering, compliance, and operations to ensure safe, resilient, and compliant AI solutions. This role requires both strategic leadership and hands-on technical depth in AI security architecture, adversarial ML defenses, DevSecOps, and incident response.
Key Responsibilities
Strategic Architecture & Roadmap
- Primary AI Security SME for the CISO organization.
- AI Security SME supporting AI COE, providing expert guidance on AI security architecture, policies, and standards.
- Establish reference architectures (e.g. RAG, MCP, agents, tenancy/orchestration), with standardized patterns for identity, access, data protection, and plugin safety.
- Integrate AI security controls and requirements into enterprise architecture patterns and overlays, ensuring secure-by-design principles are applied.
- Lead the evaluation, selection, and implementation of AI security tools, working collaboratively with internal stakeholders and external partners.
- Stay current with advancements in AI/ML security, threat landscapes, and emerging technologies; proactively adapt frameworks and controls accordingly.
- Stay ahead of evolving AI threats and recommend cutting-edge security solutions by conducting research and innovation.
Governance, Compliance & Risk
- Converts AI risks into actionable controls, KPIs, and board-level narratives.
- Participate in and support audits, compliance reviews, and incident response as it relates to AI systems.
- Partner to develop and enforce AI security policies, including compliance with emerging standards (e.g., NIST AI RMF).
Threat Modeling & Controls
- Perform AI threat modeling and risk assessments to identify, prioritize, and mitigate security risks related to AI/ML initiatives.
DevSecOps for AI
- Ensure alignment of AI security practices with organizational strategy and regulatory requirements.
- Integrated security controls into AI/ML lifecycle (data collection, model training, deployment).
- Embed security automation into AI CI/CD and ensure continuous validation for drift, bias, and robustness.
Incident Response & Resilience
- Create playbooks for AI-specific incident response (e.g., model compromise, data exfil via prompts, malicious fine-tuning).
- Drive red-team/blue-team exercises for AI systems and coordinate independent architecture reviews across product lines.
Required Qualifications Use your skills to make an impact
- Bachelor’s or master’s degree in computer science, Information Security, Engineering, or related field.
- Proven progressive experience in information security, with focus on AI/ML security.
- Deep expertise in AI/ML architecture, model security, AI threat modeling, and AI risk assessment methodologies.
- Proven experience in AI security tool evaluation, selection, and integration.
- Demonstrated understanding of enterprise security frameworks, secure software development lifecycle, and regulatory compliance requirements for regulated global FinTech company.
- Strong ability to communicate complex technical concepts to technical and non-technical stakeholders.
- Relevant security certifications (e.g., CISSP, CCSP, Certified AI Security Professional) preferred.
- Experience developing and delivering code using modern CI/CD delivery methodologies.
Desired Skills
- Experience with Azure ML, Azure OpenAI, Microsoft/GitHub Copilot security patterns; integration with Microsoft 365, Entra ID, Defender, Purview for data protection and governance.
- Completed independent architecture reviews and red-team exercises for flagship AI features, closed priority findings within SLA.
We are proud to offer a range of incentives to our employees worldwide. These benefits are available to everyone, regardless of grade, and reflect the values we stand for:
Flexibility: Enjoy unlimited vacation, subject to local regulations and business priorities. Benefit from hybrid working arrangements and inclusive policies such as paid time off for voting, bereavement, and sick leave.
Well-being: Access confidential one-to-one support through our Employee Assistance Program, connect with our network of Wellbeing Champions and Gather Groups, and take part in monthly events and initiatives designed to help you thrive—inside and outside of work.
Health & Financial Security: Medical, life and disability insurance, retirement plans, lifestyle, and other benefits.*
Sustainability: Paid time off for volunteering and donation-matching opportunities to support causes that matter to you.
Inclusion: Get involved in our inclusion communities, such as Count Me In, Culture@Finastra, Proud@Finastra, Disabilities@Finastra, and Women@Finastra—open to everyone who wants to participate and contribute.
Career Development: Access online learning and accredited courses through our Skills & Career Navigator tool.
Recognition: Take part in our global recognition program, Finastra Celebrates, and share your voice through regular employee surveys that help shape our culture and ways of working.
- Specific benefits may vary by location.
At Finastra, each individual is unique—bringing their own ideas, perspectives, cultural backgrounds, and experiences. We learn from one another, value what makes us different, and create an environment where everyone feels included, supported, and able to be their authentic selves.
Be unique. Be exceptional. Help us make a difference at Finastra.
Applicants for this position need to be located in posted location or their immediate surrounding areas. Due to the requirements of this position, this job posting is not available for, and Finastra will not be considering any applicants who currently reside in New York City or California.
Who are we?
At Finastra, we’re a global leader in financial services software, dedicated to expanding access to financial services and shaping what’s next for the industry. Our technology powers mission‑critical solutions across Lending, Payments and Universal Banking, supporting over 7,000 customers, including 80% of the world’s top 50 banks, in more than 110 countries.
We are seeking a principal-level AI Security Architect to define our enterprise AI/ML security architecture across data, model, and infrastructure layers. The individual will partner with AI COE, product, engineering, compliance, and operations to ensure safe, resilient, and compliant AI solutions. This role requires both strategic leadership and hands-on technical depth in AI security architecture, adversarial ML defenses, DevSecOps, and incident response.
Key Responsibilities
Strategic Architecture & Roadmap
- Primary AI Security SME for the CISO organization.
- AI Security SME supporting AI COE, providing expert guidance on AI security architecture, policies, and standards.
- Establish reference architectures (e.g. RAG, MCP, agents, tenancy/orchestration), with standardized patterns for identity, access, data protection, and plugin safety.
- Integrate AI security controls and requirements into enterprise architecture patterns and overlays, ensuring secure-by-design principles are applied.
- Lead the evaluation, selection, and implementation of AI security tools, working collaboratively with internal stakeholders and external partners.
- Stay current with advancements in AI/ML security, threat landscapes, and emerging technologies; proactively adapt frameworks and controls accordingly.
- Stay ahead of evolving AI threats and recommend cutting-edge security solutions by conducting research and innovation.
Governance, Compliance & Risk
- Converts AI risks into actionable controls, KPIs, and board-level narratives.
- Participate in and support audits, compliance reviews, and incident response as it relates to AI systems.
- Partner to develop and enforce AI security policies, including compliance with emerging standards (e.g., NIST AI RMF).
Threat Modeling & Controls
- Perform AI threat modeling and risk assessments to identify, prioritize, and mitigate security risks related to AI/ML initiatives.
DevSecOps for AI
- Ensure alignment of AI security practices with organizational strategy and regulatory requirements.
- Integrated security controls into AI/ML lifecycle (data collection, model training, deployment).
- Embed security automation into AI CI/CD and ensure continuous validation for drift, bias, and robustness.
Incident Response & Resilience
- Create playbooks for AI-specific incident response (e.g., model compromise, data exfil via prompts, malicious fine-tuning).
- Drive red-team/blue-team exercises for AI systems and coordinate independent architecture reviews across product lines.
Required Qualifications Use your skills to make an impact
- Bachelor’s or master’s degree in computer science, Information Security, Engineering, or related field.
- Proven progressive experience in information security, with focus on AI/ML security.
- Deep expertise in AI/ML architecture, model security, AI threat modeling, and AI risk assessment methodologies.
- Proven experience in AI security tool evaluation, selection, and integration.
- Demonstrated understanding of enterprise security frameworks, secure software development lifecycle, and regulatory compliance requirements for regulated global FinTech company.
- Strong ability to communicate complex technical concepts to technical and non-technical stakeholders.
- Relevant security certifications (e.g., CISSP, CCSP, Certified AI Security Professional) preferred.
- Experience developing and delivering code using modern CI/CD delivery methodologies.
Desired Skills
- Experience with Azure ML, Azure OpenAI, Microsoft/GitHub Copilot security patterns; integration with Microsoft 365, Entra ID, Defender, Purview for data protection and governance.
- Completed independent architecture reviews and red-team exercises for flagship AI features, closed priority findings within SLA.
We are proud to offer a range of incentives to our employees worldwide. These benefits are available to everyone, regardless of grade, and reflect the values we stand for:
Flexibility: Enjoy unlimited vacation, subject to local regulations and business priorities. Benefit from hybrid working arrangements and inclusive policies such as paid time off for voting, bereavement, and sick leave.
Well-being: Access confidential one-to-one support through our Employee Assistance Program, connect with our network of Wellbeing Champions and Gather Groups, and take part in monthly events and initiatives designed to help you thrive—inside and outside of work.
Health & Financial Security: Medical, life and disability insurance, retirement plans, lifestyle, and other benefits.*
Sustainability: Paid time off for volunteering and donation-matching opportunities to support causes that matter to you.
Inclusion: Get involved in our inclusion communities, such as Count Me In, Culture@Finastra, Proud@Finastra, Disabilities@Finastra, and Women@Finastra—open to everyone who wants to participate and contribute.
Career Development: Access online learning and accredited courses through our Skills & Career Navigator tool.
Recognition: Take part in our global recognition program, Finastra Celebrates, and share your voice through regular employee surveys that help shape our culture and ways of working.
- Specific benefits may vary by location.
At Finastra, each individual is unique—bringing their own ideas, perspectives, cultural backgrounds, and experiences. We learn from one another, value what makes us different, and create an environment where everyone feels included, supported, and able to be their authentic selves.
Be unique. Be exceptional. Help us make a difference at Finastra.
Applicants for this position need to be located in posted location or their immediate surrounding areas. Due to the requirements of this position, this job posting is not available for, and Finastra will not be considering any applicants who currently reside in New York City or California.
See all STEM OPT Security Architect Jobs
Sign up for free to unlock all listings, filter by visa type, and get alerts for new STEM OPT Security Architect Jobs.
Get Access To All JobsTips for Finding STEM OPT Authorization in Security Architect
Confirm your CIP code covers security
Degrees in computer science, cybersecurity, or electrical engineering typically qualify, but information systems degrees vary by institution. Pull your transcript and cross-reference your exact CIP code against the STEM OPT designated degree program list before applying to roles.
Filter employers by E-Verify enrollment
Any employer hiring you on STEM OPT must be enrolled in E-Verify, not just willing to enroll later. Ask recruiters directly and confirm enrollment status through the E-Verify employer search tool before investing time in any application process.
Build your I-983 training plan early
Security Architect roles involve broad responsibilities, so your I-983 must map specific learning objectives to concrete tasks like threat modeling, zero-trust architecture design, or cloud security controls. A vague plan risks DSO rejection and delays your extension start date.
Target companies with active security LCA filings
Use the OFLC Wage Search to identify employers who have filed Labor Condition Applications for security architect or information security roles. Recent LCA activity signals that a company has the compliance infrastructure to hire and maintain STEM OPT employees without friction.
Use Migrate Mate to find verified STEM OPT employers
Search for Security Architect roles on Migrate Mate to surface employers whose hiring history confirms they work with STEM OPT students. This cuts out companies that are unfamiliar with the E-Verify requirement or the I-983 process.
Negotiate your offer letter before the I-983 is drafted
Your job title, duties, and supervision structure in the offer letter must align with what you put in your I-983 training plan. Get those terms finalized in writing before your DSO prepares the plan to avoid inconsistencies that USCIS could flag during an audit.
Frequently Asked Questions
Does my degree qualify me for the STEM OPT extension as a Security Architect?
Your degree qualifies if it appears on the STEM OPT designated degree program list, which includes most computer science, cybersecurity, information assurance, and electrical engineering programs. The qualifying factor is your CIP code, not your job title. If your degree is in a field like information systems or management information systems, confirm your institution's specific CIP code against the published list before applying for the extension.
What does the I-983 training plan need to include for a Security Architect role?
Your I-983 must connect your Security Architect duties to specific learning goals tied to your STEM degree. For this role, that means documenting objectives around areas like network security architecture, risk frameworks, or cloud security design, not just listing your job description. Your employer must sign it, and your DSO must approve it before USCIS processes your extension. Vague or mismatched objectives are a common reason DSOs send plans back for revision.
How do I confirm my employer is enrolled in E-Verify?
You can search employer enrollment status directly through the E-Verify employer search tool, which is publicly accessible. Enrollment must be active at the time you begin working on the STEM OPT extension, not just promised for later. If a company says it will enroll after you join, that's a compliance risk for your status. Always verify before accepting an offer.
Does the cap-gap rule protect me while waiting for H-1B approval as a Security Architect?
Yes, if your OPT or STEM OPT end date falls before October 1 and your H-1B visa petition is filed and accepted under cap, the cap-gap rule extends your work authorization through September 30 of that fiscal year. Your F-1 status and employment authorization remain valid during this period. USCIS provides guidance on cap-gap eligibility and documentation requirements on their official pages.
Where can I find Security Architect jobs from employers who already work with STEM OPT students?
Migrate Mate lists Security Architect roles from employers with verified STEM OPT hiring history, so you're not starting from zero on E-Verify and I-983 education. You can filter by role and see which companies have the compliance background to hire F-1 students on the extension. The O*NET profile for Security Architect roles also outlines the competencies and tasks that map well to I-983 training objectives.