Rank: AVP and up
Role Summary
Lead the bank's security architecture strategy by understanding its technology landscape, assessing security risks, and ensuring that all IT systems and infrastructure are properly protected. Oversee the development and implementation of security policies, tools, and projects, while driving continuous innovation and strengthening security across the organization.
Key Responsibilities
- Analyze the bank's technology environment and security requirements.
- Design and implement the bank's overall security architecture and infrastructure.
- Develop and maintain security policies, standards, and procedures.
- Collaborate with IT groups to ensure security is fully aligned with IT plans, system designs, and infrastructure strategies.
- Evaluate emerging security technologies and recommend enhancements.
- Identify security gaps in existing or proposed systems and recommend appropriate solutions.
- Oversee testing, deployment, and performance of security tools and controls.
- Ensure robust and regularly tested disaster recovery measures for security infrastructure.
- Prepare business cases for security-related projects and validate the value of security investments.
- Review and approve changes to security tools, network devices, and infrastructure components.
- Lead and supervise the Security Architecture and Innovation Department (SAID) team, including resource planning and performance management.
- Produce required management, operational, and performance reports.
- Support the Information Security Division in executing continuous improvement initiatives.
Qualifications
- Extensive experience in IT security architecture and infrastructure security (network, server, application, database, and cloud).
- At least 5 years of experience in IT security and security risk assessment.
- Strong understanding of security protocols, cryptography, authentication, and authorization.
- Solid knowledge of cloud security risks, threats, and control mechanisms.
- Preferably certified in CISSP, CEH, GIAC, GSEC, or other relevant security certifications.
- Experience with identity management solutions, multifactor authentication (MFA), SSO, and security testing (vulnerability assessment/penetration testing).
- Strong leadership, communication, and project management capabilities.
Please note that applicants can be reprofiled to roles like Solutions Architect or Enterprise Architect, should they match as well.
