The VP, Senior Security Engineer (AS400) role will lead the AS400 security strategy and technical governance, product configuration standards definition and security engineering advisory.
As a member of the Infrastructure Security Engineering team, the selected candidate will be part of the product lifecycle management for the Group Information Security (GIS) technical capabilities. This includes product implementation, solution architecture, engineering, production support and service delivery/management, and provide security configuration standards definition and technical security assurance over AS400 and Mainframes managed by the infrastructure and platform team.
Key Responsibilities:
- To perform and identify opportunities to automate AS400 System & Security Administration
- To work with Business and Systems services teams for infrastructure and application requirements for interfacing to security solutions managed by GIS
- Manage a team of AS400 and zOS (IBM Mainframe OS, preferable) SMEs.
- Develop and maintain the AS400 and Mainframe security roadmaps and plan for future enhancements and capabilities as party of continuous improvement process
- Product lifecycle management for the GIS technical capabilities over AS400 security solutions which includes but is not limited to anti-virus, anti-malware, exit point security, MFA and other relevant technologies
- Production support and monitoring to ensure control efficacy and solution reliability & stability
- Product research and define requirements for new projects, perform product evaluation and technical Proof of Concept
- Support of the development of AS400 security policies, standards, and procedures to ensure compliance with regulatory requirements and industry best practices
- Provide support for all audit and regulatory requests
Education:
- Diploma/Degree in Engineering/Computer Science/IT/Cyber Security from a recognized education institution
- Professional security related qualifications (e.g., CISSP, CISA, CISM, etc.) will be favorable although not mandatory
Technical Skills:
- At least 5 years of relevant experience in performing AS400 Security Administration and/or management of AS400 Application systems, with strong analytical and problem solving skills
- Experience in managing projects (preferably AS400 related projects)
- Hands on experience with AS400-related programming langua
- Proven experience leading relevant security programs in large organizations
- Strong understanding of regulatory requirements such as MAS TRM, PCI DSS, etc.
Soft Skills:
- Excellent communication, leadership, and collaboration skills
- Process aware mindset
- Strong analytical and problem-solving skills
- Effective time management and organizational skills
- Team management experience
- Team player, including ability to establish and maintain effective working relationships within and across the organization