- Collaborate with Senior Leadership and Stakeholders to articulate security position and reasoning
- Define infosec landscape and roadmap with key milestones
- Define country specific security requirements on the platform
- Designing and implementing secure cloud architecture for various cloud platforms
- Experience in architecting and developing security solutions on one or more cloud platform (AWS, GCP or Azure) and applying the cloud native security services
- Understanding of security frameworks and processes - CIS, NIST, PCI/DSS. SOCI/II, etc
- Perform periodic risk analysis, vulnerability scanning and testing
- 3 kinds of Security People
- Governance & Risk (and governance will call out the risk part in the architecture)
- Someone who can work to set up the SOC
- Group will have Bank Postures, Enterprise, MAS, People, Postures, etc.
- This person has to look at the 8 subsidiaries – and have the regional flavour
- Tech Architecture (will build the architecture)
- Security Operations (SOC) – possibility to look at SOC model
- Governance & Risk (and governance will call out the risk part in the architecture)
Skills Required
- Experience of working with Senior Leadership (CISO/CIO/CTO) with atleast 10+ years of InfoSec domain experience
- Define and implement Enterprise InfoSec landscape
- Background in IT Security & Risk Management
- Experience in driving Enterprise initiatives for E2E security posture analysis across different layers/sources within the Network Environment or DMZ (including host logs, network traffic logs, firewall logs and IDS system logs)
- Product specific certifications such as MCSE, CCNA security
- Very good knowledge of TCP/IP protocol
- Strong program management background
