Digital Security Architecture Manager

Role       : Digital Security Architecture Manager
Location : Abu Dhabi                        

Role Purpose:

Reporting to the Head of Information Security Architecture, the Digital Security Architecture Manager will design and manage the Digital security function. The incumbent will be actively working with CISO and other management team in GISD and would be accountable to identify and protect all the ADIB’s data and resources to digital from internal and external threats. The role will be accountable for designing of the right solution to right resource to prevent unauthorized access to all ADIB data in digital initiatives from internal & external threats.

• He will be responsible for co-developing and executing the Digital Security strategy, partnering with various teams in ITD , Digital , Business and partners of Digital , and ensuring that confidentiality, integrity, and availability of ADIB data in cloud is not compromised.
      
  Key Accountabilities of the role      
  
  Development/refinement of strategy, policy, regulatory compliance, risk identification and mitigation, cloud security architecture and standards. 
• Will be accountable for delivery of GISD related initiatives in Digital pipeline and in alignment with Digital framework
• Manage and assist with Data Privacy impact assessment of digital initiatives when required 
• Lead and govern implementation of Digital security solutions and architecture reviews
• Build Digital security roadmap and plan, coordinate, and drive the design, development, and implementation of digital security solutions
• Manage and conduct the needed third-party assessments for business Digital projects.
• Manage and ensure digital security capabilities are built into the design and architecture of Digital journey
• Assist with Subsidiaries and international Business Digital initiatives and security architecture and in compliance with local regulatory requirements 
  Conduct individual, independent security reviews of vendor proposals, review security architectures and recommend modifications to the information security operation to evaluate risk reduce costs or improve service. 
• Develop a thorough understanding of existing ADIB networks and security controls and access levels yielding a preliminary system security concept of operations, including baseline security capabilities and requirements. 
• Serve as Digital security subject matter expert, trusted advisor; provide advisory and consulting services as needed to various department and project teams.
• Evaluate acquisition documents against existing and proposed security architectures and designs. 
• Manage cloud architecture security program, including the development and implementation of effective security design, frameworks, and Architecture across all ADIB systems and platforms. Enforce and establish cloud security configuration baselines and security patching for all applications, systems, databases, OSs, and network assets.
• Prepare cost estimates and identify security and cost opportunities and risks and issues. 
• Design, manage, and socialize a unified Digital business  Security Blueprint for technology functionality and business capabilities, in alignment with the overarching ADIB information security strategy and policies. 

Specialist Skills / Technical Knowledge Required for this role:
 

• BA/BS degree in Computer Science, Information Security, or related field of study. A master’s degree is a plus.
• Must have a strong understanding of Azure cloud architecture, firewalls, Intrusion Detection Systems, web filtering, audit and log management, physical security control systems, real-time systems, and common operating systems. AWS is highly preferred as a plus.
• Knowledge of security technologies, processes, systems/applications, and familiar with banking & financial institutions applications used for: mobile & online banking, ATMs, payments, treasury, and trade finance...etc. 
• Knowledge of security engineering, system and network security, authentication and security protocols, cryptography, and application security 
• Knowledge of TOGAF, SABSA, ISO 27001, NESA, PCI DSS, SWIFT and other security standards, and regulations 
• Understanding of security requirements and controls around Continuous Delivery / Continuous Integration.
• Possesses strong business acumen, understanding contract negotiations, budgetary disciplines, issues resolution, and be able to influence and collaborate with colleagues.
• One or more of the following technical certifications: TOGAF, CCIE, CCSP, CISSP, CISA, CISM, CRISC, CGEIT, ITIL…etc.
• Two or more of cloud certifications
• Two or more Azure Certificates , AWS certifications

Previous Experience:           

• 8-12 years' experience working within the information security and/or architecture disciplines.
• Minimum 5 years of experience on designing and securing the cloud infrastructure and application in leading banks or financial institutions with a focus on data security.
• Experience in independently running security initiatives/projects for large global enterprise.
• Extensive relevant professional work experience including implementation of complex cloud migration programs, 
• Planning, organizational, and motivational experience
• Experience drafting in technical and non-technical formats.
• Experience presenting both extemporaneously and in formal settings.
• Experience in root cause analysis, industry benchmarking, survey evaluation and data interpretation
• Experience in the areas of emergency/disaster management, physical security, critical incident stress management, risk management and business resiliency
• Experience with emergency procedure protocols and regulatory interfaces
• Experience Leading complex projects