Contract

U.A.E

11 months ago

Job Accountability :
\xef\x82\xa7 Gaining an understanding of our Current State and Target State Architecture and then working to define a strategy for our technical direction around security.
\xef\x82\xa7 Owner of an application/solution or a feature within the application/solution
\xef\x82\xa7 Responsible for leading infrastructure assessments, making decisions on threat modeling and proper security service design and implementation.
\xef\x82\xa7 Acts as expert for infrastructure teams in the plan, design, and delivery of IT solutions
\xef\x82\xa7 Defines and communicates a shared technical and architectural vision (including infra)
\xef\x82\xa7 Technical expertise in multiple disciplines within IT Infrastructure and Information Security, including: networking, virtualization, cloud computing, application security & databases
\xef\x82\xa7 Provide security architecture and advice in support of application security, IT infrastructure, and enterprise technology projects to ensure the integrity of the bank is protected.
\xef\x82\xa7 Consult with the Enteprise Architecture practice to ensure that the service is aligned with FAB architectural patterns
\xef\x82\xa7 Ensure that SDLC procedures defined for Requirements and Solution Design within the domain/service/application/feature are followed.
\xef\x82\xa7 Document quality procedures for the service
\xef\x82\xa7 Define, document and implement the infra & security architecture for the IT projects including but not limited to the following
1. Authentication & authorization
2. Account administration controls (provisioning, segregation of duties, validation, attestation, etc.)
3. Auditing of critical security related events
4. Confidentiality, Integrity, and Availability of the system and data.
\xef\x82\xa7 Ensure that talent is continual brought into the team through facilitating interviewing new team members including on boarding
\xef\x82\xa7 Ensure that all performance and career based activities, conversations and artefacts are prepared together with the individuals, such as; Development Plan
\xef\x82\xa7 Share knowledge through Code Reviews and Communities of Practise opportunities across the Service

Qualifications Required:

\xef\x82\xa7 Minimum 10-15 years overall experience in IT starting with the hands-on engineering positions
\xef\x82\xa7 2-5 years\' experience doing practical design or architecture within the specialization (solutions, infrastructure, network, security, etc.)
\xef\x82\xa7 Act as a technical focal point for complex network and security design/solution
\xef\x82\xa7 Act as a technical SME during the product/solution evalution and implementation for network & security tools
\xef\x82\xa7 Must have experience around Enterprise Security Architecture Security, Security Strategy and Compliance Consulting Experience creating and audit of security best practices and implementation of security principles across the organization , to meet business goals along with customer and regulatory requirements,
\xef\x82\xa7 Understanding of compliance regulatory requirements like ISO,PCI DSS, NESA etc.,
\xef\x82\xa7 Must have experience around design of security controls and product best fit analysis to ensure end to end security covering different areas of security architecture :
o Layered Security
o Zoning
o Integration aspects
o API Security
o Endpoint Security
o Data Security
o Compliance and regulations
o Threat Intelligence
o Threat Exposure & Incident Management aspects
\xef\x82\xa7 Must Possess strong presentation , written and verbal communication skills
\xef\x82\xa7 Industry Security Certifications like CCIE,CISSP, CISA, CISM, CSRIC, TOGAF,SABSA etc., are preferred
\xef\x82\xa7 Good Understanding & Must have experience in implementing Cloud Security Controls
\xef\x82\xa7 Good Understanding of Cloud Platforms like Azure, Oracle, Google,AWS etc.,
\xef\x82\xa7 Good Understanding of Dockers, Containers and Kubernetes
\xef\x82\xa7 Good Understanding of SDN technologies like ACI.
\xef\x82\xa7 Good Understanding of REST, SOAP Protocols, Web services etc.,
\xef\x82\xa7 Good Understanding of Symmetric and Asymmetric Cryptography algorithms.
\xef\x82\xa7 Hands on Experience on Multi-vendor firewalls and other security technologies ( Firewalls, Web Proxy, Email Gate, Endpoint Security etc..)
\xef\x82\xa7 Knowledge and experience in requirements traceability throughout the design phase, including functional and non-functional requirements
\xef\x82\xa7 Ability and experience in translating functional and non-functional requirements into solution/feature/component design and service architecture

\xef\x82\xa7 Can create a high-level and low-level design (functional and non-functional) of a single or a small collection of components or a small end-to-end service
\xef\x82\xa7 Conducts / participates in code reviews, identifies bug root causes, and finds a workable solution
\xef\x82\xa7 Participates in Communities
Proactively addresses issues discovered in the software components, infrastructure and scripts in the various environments

Dicetek