Role:- Security Solution Architect
Job Description
· 7 to 10 years of technology work experience with a minimum of 6 years in Information Security
· In-depth knowledge and experience in information security risk assessment and management
· Experience in the development and implementation of application and solutions
· Experience in MAS technology related guidelines such as Technology Risk Management Guidelines, Outsourcing guidelines etc.
· Experience in working and liaising with auditors to review and assess the control framework
· Good understanding of key security technology such as identity access management solution, two factor authentication, enterprise certificate authority etc.
· Passion to deliver sustainable security solutions and continued improvement in control and risk mitigation
· Demonstrate ability to balance business and security requirements and manage tactical vs. strategic on-going initiatives
· Demonstrate ability to operate in diverse environments and cultures and enjoys working in challenging and fast-paced environment
· Discipline in timely submission and reporting key metrics and status
· Strong communication and presentation skills to wide and diverse audiences
· Security certification in CISSP, CISM or CISA is a must; certification in architecture is a plus
Resource responsibility
· Develop the technical application security program to guide the secure development of technology platforms
· Analyze business and operations initiatives to identify the business and application security risks, review the specified requirements and assess the control implementations to ensure information security risks are managed
· Design and deliver innovative security solutions and initiatives and manage and support security technology platforms
· Review vulnerability assessments and penetration testing to assess the residual risks and mitigation plans
· Assess and advise Technology Solution Delivery and Operations teams on management and mitigation of security exceptions and deviations
· Establish an application security awareness program to inculcate a secure development culture to minimize defects and improve time to market
All your information will be kept confidential according to EEO guidelines.