Head of Security Architecture
United Arab Emirates
Abu Dhabi Islamic Bank
Welcome to Abu Dhabi Islamic Bank. Our bank offers many of the world's leading financial and banking services. Learn more about us through our website.Role : Head of Security Architecture
Location : Abu Dhabi
Role Purpose:
Reporting to the Head of Information Security Engineering, The Head of Security Architecture will design and manage the Security Architecture function. The incumbent will be actively working with CISO and other management team in GISD and Business and is accountable to identify and protect all the ADIB’s data and resources and its subsidiaries and International Business from internal and external threats. The role will be accountable for designing of the right solution to right resource to prevent unauthorized access to all ADIB data
He will be responsible for co-developing and executing the strategy of Head information Security Engineering, partnering with various teams, leading the Security Architecture team, and ensuring that confidentiality, integrity, and availability of ADIB data under a structured security control.
Key Accountabilities of the role
- Development/refinement of strategy, policy, regulatory compliance, risk identification and mitigation, cloud security architecture and standards.
- High level of knowledge in Banking business requirements and Fintech and partnership models
- Lead and govern implementation of security solutions like Cloud Management Platforms, Cloud Workload Protection and Cloud Access Security Broker Platforms
- Manage and lead the regular periodic Cloud architecture and security assessments in line of ADIB mandates and external regulations.
- Build cloud security roadmap and plan, coordinate, and drive the design, development, and implementation of cloud protection solutions.
- Manager the Cloud transformation and architecture projects requiring elevated level of communication with internal and external stakeholders including senior Management till delivery.
- Manage and conduct the needed third-party assessments for business cloud projects.
Lead the design and implementation of secure cloud solutions and services across business and IT support areas. - Driving the successful configuration and implementation of cloud security solutions to minimize the overall risk.
- Conduct individual, independent security reviews of vendor proposals, review security architectures and recommend modifications to the information security operation to evaluate risk reduce costs or improve service.
- Develop a thorough understanding of existing ADIB networks and security controls and access levels yielding a preliminary system security concept of operations, including baseline security capabilities and requirements.
- Serve as cloud security subject matter expert, trusted advisor; provide advisory and consulting services as needed to various department and project teams.
- Evaluate acquisition documents against existing and proposed security architectures and designs.
- Manage Security architecture security program, including the development and implementation of effective security design, frameworks, and Architecture across all ADIB systems and platforms. Enforce and establish cloud security configuration baselines and security patching for all applications, systems, databases, OSs, and network assets.
- Prepare cost estimates and identify security and cost opportunities and risks and issues.
- Overseeing and approving the cloud security architecture requirements, projects, vendor selection, and controls to maintain a unified vision.
- Design, manage, and socialize a unified cloud Security Blueprint for technology functionality and business capabilities, in alignment with the overarching ADIB information security strategy and policies.
Specialist Skills / Technical Knowledge Required for this role:
- BA/BS degree in Computer Science, Information Security, or related field of study. A master’s degree is a plus.
- Must have a strong understanding of Azure cloud architecture, firewalls, Intrusion Detection Systems, web filtering, audit and log management, physical security control systems, real-time systems, and common operating systems. AWS is highly preferred as a plus.
- Knowledge of security technologies, processes, systems/applications, and familiar with banking & financial institutions applications used for: mobile & online banking, ATMs, payments, treasury, and trade finance...etc.
- Knowledge of security engineering, system and network security, authentication and security protocols, cryptography, and application security Knowledge of TOGAF, SABSA, ISO 27001, NESA, PCI DSS, SWIFT and other security standards, and regulations
- Background in securing multi-tenant cloud and big data services, and/or designing separation controls in cloud systems.
- Familiarity with large-scale cloud migration programs.
- Understanding of security requirements and controls around Continuous Delivery / Continuous Integration.
- Possesses strong business acumen, understanding contract negotiations, budgetary disciplines, issues resolution, and be able to influence and collaborate with colleagues.
- One or more of the following technical certifications: TOGAF, CCIE, CCSP, CISSP, CISA, CISM, CRISC, CGEIT, ITIL…etc.
- Two or more of the following cloud certifications: CCSK, CCAK, CCSP, PECB Lead Cloud Security.
- Two or more of the following Azure Certificates (AZ-500, SC-100, SC-200, SC-300, AZ-104……. etc.)
Previous Experience:
- 8-12 years' experience working within the information security and/or architecture disciplines.
- Minimum 5 years of experience on designing and securing the cloud infrastructure and application in leading banks or financial institutions with a focus on data security.
- Experience in independently running security initiatives/projects for large global enterprise.
- Extensive relevant professional work experience including implementation of complex cloud migration programs,
- Planning, organizational, and motivational experience
- Experience drafting in technical and non-technical formats.
- Experience presenting both extemporaneously and in formal settings.
- Experience in root cause analysis, industry benchmarking, survey evaluation and data interpretation
- Experience in the areas of emergency/disaster management, physical security, critical incident stress management, risk management and business resiliency
- Experience with emergency procedure protocols and regulatory interfaces
- Experience Leading complex projects
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Application security AWS Azure Banking Big Data CASB CCIE CCSK CCSP CISA CISM CISO CISSP Cloud Compliance Computer Science CRISC Cryptography Finance FinTech Firewalls Intrusion detection ISO 27001 ITIL Network security PCI DSS Risk management Security assessment Security strategy Strategy TOGAF
Perks/benefits: Career development
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Security Operations Engineer jobs
- Open Senior Cybersecurity Engineer jobs
- Open Cybersecurity Analyst jobs
- Open Information Security Officer jobs
- Open Senior Cyber Security Engineer jobs
- Open Principal Security Engineer jobs
- Open Information Security Specialist jobs
- Open Senior Product Security Engineer jobs
- Open Chief Information Security Officer jobs
- Open IT Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Staff Security Engineer jobs
- Open Senior Penetration Tester jobs
- Open Cyber Security Specialist jobs
- Open Security Specialist jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Senior Network Security Engineer jobs
- Open Cybersecurity Consultant jobs
- Open IT Security Analyst jobs
- Open Security Consultant jobs
- Open Senior Information Security Analyst jobs
- Open Security Operations Analyst jobs
- Open Manager Pentest H/F jobs
- Open Information Security Architect jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Agile-related jobs
- Open Risk assessment-related jobs
- Open SOC-related jobs
- Open Network security-related jobs
- Open CISA-related jobs
- Open Analytics-related jobs
- Open ISO 27001-related jobs
- Open GCP-related jobs
- Open IAM-related jobs
- Open Application security-related jobs
- Open Pentesting-related jobs
- Open Vulnerability management-related jobs
- Open Threat intelligence-related jobs
- Open DevOps-related jobs
- Open DoD-related jobs
- Open Security Clearance-related jobs
- Open APIs-related jobs
- Open CEH-related jobs
- Open Security assessment-related jobs
- Open Malware-related jobs
- Open SaaS-related jobs
- Open EDR-related jobs
- Open Java-related jobs
- Open Kubernetes-related jobs
- Open PowerShell-related jobs