Security Architect - Pune, India - Deutsche Bank

Deutsche Bank

Verified Company

Pune, India

3 weeks ago

Posted by:

Deepika Kaur

beBee Recuiter

Description

Job Title - Security Architect

Location:

Pune

Role Summary
The Security Architect is a senior manager aligned to a division or function.

Security Architect is responsible to enforce Information Security compliance within their area of responsibility in line with the CISO mandate and strategy as well as the bank's risk appetite.

What we'll offer you

Please be aware there are regional differences to DB benefits and you will need to check the correct package per advert.

As part of our flexible scheme, here are just some of the benefits that you'll enjoy

Best in class leave policy
Gender neutral parental leaves
100% reimbursement under child care assistance benefit (gender neutral)
Flexible working arrangements
Sponsorship for Industry relevant certifications and education
Employee Assistance Program for you and your family members
Comprehensive Hospitalization Insurance for you and your dependents
Accident and Term life Insurance
Complementary Health screening for 35 yrs. and above

Role Responsibilities

Design, build and implement enterpriseclass security systems for a production environment
Align standards, frameworks and security with overall business and technology strategy
Identify and communicate current and emerging security threats
Design security architecture elements to mitigate threats as they emerge
Create solutions that balance business requirements with information and cyber security requirements
Identify security design gaps in existing and proposed architectures and recommend changes or enhancements
Train users in implementation or conversion of systems
Derive the IT Security strategy from the overall Chief Information Security Office (CISO) strategy and requirements and translates this into an operational plan for delivery for their area of responsibility
Act as point of escalation for IT Security issues and exceptions.
In relation to the IT Assets, processes within their scope of responsibility they:
Drive integration of Chief Information Security Office Initiatives, programs and central solutions and ensure alignment with the divisional portfolios.
Ensure effective and efficient communication, coordination and implementation of CISO IT Security requirements and decisions
Are responsible for the adoption of centrally mandated Security Solutions and the maintenance of technical security documentation and compliance to security controls.
Are the recognized expert in DB Information Security Policies and procedures and their implementation in relation to technologies.
Proactively manages IT audits and plan (in cooperation with COO IT management) preparation and remediation.
Ensure appropriate senior management awareness/oversight of followup on action items to resolve identified issues, e.g. information security reviews of vendors, audit issue resolution.
Spearhead independent reviews of IT Security Controls, prioritise identified issues and assesses remediation actions for quality, considering the optimal costrisk ratio as well the strategically optimal resolution (e.g. Information Security control evaluation and respective follow up activities).
Verify remediation concepts for critical and systemic issues and monitors their execution according to plan and with quality.

Experience and Exposure

Experience of 10-15 years in:

Security architecture, demonstrating solutions delivery, principles and emerging technologies
Designing and implementing security solutions. This includes continuous monitoring and making improvements to those solutions, working with an information security team.
Consulting and engineering in the development and design of security best practices and implementation of solid security principles across the organization, to meet business goals along with customer and regulatory requirements.
Security considerations of cloud computing: They include data breaches, broken authentication, hacking, account hijacking, malicious insiders, third parties, APTs, data loss and DoS attacks.
Identity and access management (IAM) the framework of security policies and technologies that limit and track the access of those in an organization to sensitive technology resources.
Experience with and knowledge of:
VB.NET, Java/J2EE, ColdFusion, API/web services, scripting languages and a relational database management system (RDBMS) such as MS SQL Server or Oracle. These are some of the technical elements needed to build security into an organization.
ISO specifications for a framework of policies and procedures that include all legal, physical and technical controls involved in an organization's risk management
Control Objectives for Information and Related Technologies (COBIT)
Windows and UNIX environment.
General skills include:
Exceptional communication skills with diverse audiences
Strong critical thinking and analytical skills
Strong leadership, project and