Dieses Jobangebot ist archiviert und steht nicht mehr zur Verfügung.
Vakante Jobangebote finden Sie unter Projekte.
Vakante Jobangebote finden Sie unter Projekte.
Security Strategy and Roadmap Architect
Eingestellt von Base 3
Gesuchte Skills: Support, Engineering
Projektbeschreibung
Security Strategy and Roadmap Architect
Role:
- Provide and support management in the development of strategic vision as it relates to Information Security
- Establish and maintain attribute frameworks, architecture principles, guidelines for use by project/solution architects to ensure architecture compliance
- Develop and maintain the high-level roadmap to achieve the target state architecture
- Analyse, develop and maintain reference architectures and patters for information security
- Support project and solutions architects as required to develop and maintain effective security architecture based on security expertise and with an adequate risk analysis;
- Advise and contribute to the ongoing development and maintenance of multiyear security strategy;
- Ensure project conformity with security architecture rules and methodology;
- Participation to external workgroups and regular contact with security providers;
- Write high quality management memo and structured analysis reports.
Education:
- Master in IT or engineering.
Languages:
- English + French
Experience:
- 10 years of professional experience in IST
- Ability to develop and/or explain strategic vision to business and technical stakeholders;
- Proven history of working in structure (layered) architecture models encompassing business, IT technical and operational;
- Development of conceptual and logical reference architecture artefacts.
- Information security in general (awareness of the best/common security practices in the field of application development/IT projects).
- Detailed understanding of the threats applicable to financial services IT
- Knowledge of InfoSec governance, risk and compliance (GRC)
- Good understanding of IT security technology and processes (IAM, PKI, VDI, secure networking, web infrastructure, mobile security etc.);
- Good knowledge of the Information Security Standards
- IT architecture practices, particularly in the logical layer
- Strong experience in Internet facing web based E-banking security architecture and different styles API/SOA architecture.
- Working knowledge of SABSA methodology and its application
Preferable:
- Past experience in the field of ISO 2700x based Technical Risk Assessments or Audits (assessment, mitigation plan development etc.)
- Certified Information Systems Security Professional CISSP, CISA;
- Experience in Big Data, PCI or payment related projects.
- Certification in Architecture methodologies - SABSA, TOGAF
- Experience in structured security architecture methodologies (MODAF, DODAF .. )
Business Experience:
- Proven experience in large IT organization subject to external regulation and sophisticated threats.
- Experience in large bank/financial services IT organization ..
Soft skills:
- Team player
- Leadership and visionary thinker
- Self-motivated, quick self-starter, pro-active attitude
- Good Communication and Influencing skills, both written, verbal and social
- Good analytical and synthesis skills
- Autonomy, commitment and perseverance
- Ability to work in a dynamic and multi-cultural environment
Role:
- Provide and support management in the development of strategic vision as it relates to Information Security
- Establish and maintain attribute frameworks, architecture principles, guidelines for use by project/solution architects to ensure architecture compliance
- Develop and maintain the high-level roadmap to achieve the target state architecture
- Analyse, develop and maintain reference architectures and patters for information security
- Support project and solutions architects as required to develop and maintain effective security architecture based on security expertise and with an adequate risk analysis;
- Advise and contribute to the ongoing development and maintenance of multiyear security strategy;
- Ensure project conformity with security architecture rules and methodology;
- Participation to external workgroups and regular contact with security providers;
- Write high quality management memo and structured analysis reports.
Education:
- Master in IT or engineering.
Languages:
- English + French
Experience:
- 10 years of professional experience in IST
- Ability to develop and/or explain strategic vision to business and technical stakeholders;
- Proven history of working in structure (layered) architecture models encompassing business, IT technical and operational;
- Development of conceptual and logical reference architecture artefacts.
- Information security in general (awareness of the best/common security practices in the field of application development/IT projects).
- Detailed understanding of the threats applicable to financial services IT
- Knowledge of InfoSec governance, risk and compliance (GRC)
- Good understanding of IT security technology and processes (IAM, PKI, VDI, secure networking, web infrastructure, mobile security etc.);
- Good knowledge of the Information Security Standards
- IT architecture practices, particularly in the logical layer
- Strong experience in Internet facing web based E-banking security architecture and different styles API/SOA architecture.
- Working knowledge of SABSA methodology and its application
Preferable:
- Past experience in the field of ISO 2700x based Technical Risk Assessments or Audits (assessment, mitigation plan development etc.)
- Certified Information Systems Security Professional CISSP, CISA;
- Experience in Big Data, PCI or payment related projects.
- Certification in Architecture methodologies - SABSA, TOGAF
- Experience in structured security architecture methodologies (MODAF, DODAF .. )
Business Experience:
- Proven experience in large IT organization subject to external regulation and sophisticated threats.
- Experience in large bank/financial services IT organization ..
Soft skills:
- Team player
- Leadership and visionary thinker
- Self-motivated, quick self-starter, pro-active attitude
- Good Communication and Influencing skills, both written, verbal and social
- Good analytical and synthesis skills
- Autonomy, commitment and perseverance
- Ability to work in a dynamic and multi-cultural environment
Projektdetails
Geforderte Qualifikationen
-
Kategorie:
Ingenieurwesen/Technik, Sonstiges