Cyber Security Architect

Department Overview

ISAP IT Production Centre is an offshore delivery center managing IT Operations (RUN) for Paris, London and Asia. With over 250 people, it constitutes one of two main hubs for the company's IT production teams. This setup is operated in partnership with a Service Provider, who provides most resources on site.

ISAP IT Production Centre is split in 4 departments covering the following aspects:

• INFRA: core infrastructure- systems and network services
• APS: application technical support
• Middleware: Data services and Middleware services
• End-user & Transverse: End-user Services and Transversal activities, including Control Tower, Global Operations Center and Data Security Services.

Job Summary

The cyber Security Architect is a senior-level position responsible for planning, designing, testing, implementing and maintaining our organization’s network security infrastructure. He also evaluates the security of the organization's systems for vulnerabilities. He participates to penetration tests, risk analyses on LANs, WANs, and VPNs. He also determines the efficacy and efficiency of routers, firewalls, and comparable systems, they also evaluate these systems.

Responsibilities

• Production Level 3 support for Network and Security infrastructure.
• Design, develop, and implement secure system architectures.
• Embed security principles into the design of system architectures to mitigate the risks posed by new technologies and business practices.
• Design artefacts, spanning design, development, and implementation, into enterprise systems that describe security principles and how they relate to the overall enterprise system architecture.
• Perform routine activities related to the periodic review and audit activities of infrastructure security systems and maintains documentation of security standards and procedures.
• Gaining a total understanding of the organization’s technology and information systems
• Planning, researching, and designing reliable, powerful, and flexible security architectures for all IT projects
• Defining, creating, implementing, and maintaining all needed corporate security policies and procedures, making sure that all employees abide by them
• Developing requirements for all IT assets including routers, firewalls, local area networks (LANs), wide-area networks (WANs), virtual private networks (VPNs), and any other related network devices
• Reviewing and approving the installation of all firewalls, VPN, routers, servers, and IDS scanning technologies
• Preparing cost estimates for all cybersecurity measures and identifying any potential integration issues
• Providing technical guidance and supervision for security teams
• Taking charge of any security awareness programs and educational efforts to better prepare non-IT personnel
• Responding immediately to any security-related incidents (e.g., data breaches, viruses, phishing scams)
• Updating and upgrading the organization’s security systems as needed

Legal and Regulatory responsibilities:

• Comply with all applicable legal, regulatory and internal Compliance requirements, including, but not limited to, the Singapore Compliance manual and Compliance policies and procedures as issued from time to time; Financial Security requirements, including, but not limited to, the prevention of Financial Crime and Fraud including reporting obligations to the Money Laundering Reporting Officer/Compliance Officer.
• Maintain appropriate knowledge to ensure to be fully qualified to undertake the role.
• Complete all mandatory training as required to attain and maintain competence.

Qualifications and Profile

• Minimum 8 years of experience in managing IT systems environment with about 5 years of experience in financial institutes.
• Subject matter expert on Systems , Network and Security.
• Knowledge and/or hands on working experience with emerging technologies.
• Excellent communication, interpersonal and logical skills.
• Customer service oriented and a strong team player.
• Ability to work under pressure and a commitment to solving issues.

Technology / Product Experience:

• Cisco: ACI, Nexus, Catalyst, DNAC, ISE , iOS, NXOS
• Arists: Switches, EOS
• Fortinet: Firewall, IPS
• F5: LTM, ASM, APM , TMOS
• Infoblox: DNS, DHCP
• Skyhigh: Proxy
• Ivanti: Remote access
• Checkpoint: Firewall, MDS
• Trendmicro: IPS/IDS
• Programming: Python/Bash/Ansible
• Tools: Wireshark/Tshark/Netflow

Work Schedule

• Required to work on Paris and/or New York and/or Asia time zone*, i.e. 2pm to 11pm/4pm to 1am (summer season) or 3pm to 12am/ 5pm to 2am (winter season), or in accordance to the planned time schedule as required. If necessary, you may also be required to start work earlier or to extend working hours.
• May be required to be available for on-call support during non-business hours and/or on weekends. Allowance is claimable for such hours.

Education Requirements

At least a Bachelor’s degree in any of these faculties:

• Computer Science
• Information Technology
• Programming & Systems Analysis
• Science (Computer Studies)

Next Step

Prepare your updated resume and expected package.

Simply click on 'Apply here' or email to [email protected] to drop your resume

All shortlisted candidates will be contacted.

Prasant Sirohi

EA License Number: 91C2918

Registration Number: R22106307