MAIN RESPONSIBILITIES:
The Security Architect is responsible for establishing enterprise-level security architecture following industry best standards and practices for application, infrastructure, and architecture security on both cloud and on-premises environments based on emerging cybersecurity trends and threats.
Development of security control requirements to ensure security-related information for external interfaces, information being exchanged across the interfaces, and protection mechanisms associated with each interface.
SPECIFIC RESPONSIBILITIES:
- Develop and design a security architecture, primarily on cloud and application security designs that fit into the business requirements and objectives, conform with regulatory requirements, and balance the implementation of appropriate countermeasures against the corresponding risks to the Bank's information.
- Act as a liaison between business and technology from a security perspective. Collaborate with solution architects, software developers, security analysts, and other relevant stakeholders to ensure sufficient and appropriate security requirements are in place throughout the whole project development and lifecycle.
- Contribute in designing, establishing, and implementing security policies, technical security standards, and procedures that ensure alignment with the Bank's security framework for maintaining a robust secure environment.
- Continuously analyze and assess the security architecture and security capabilities of the Bank against emerging threats to continuously improve the security posture and the Bank's ability to adapt and ensure effectiveness of its security measures against the industry threat landscape.
- Participate in conducting security awareness initiatives by providing guidance and training to employees on security best practices, policies, and procedures.
- Identify and provide recommendations for security assessments to identify potential risks and vulnerabilities in projects, change requests, and ad-hoc engagements.