Assistant Vice President - Information Security Architect

- Network & Infrastructure Security Architect collaborates with network engineering and security organization to define, deliver and support enabled business solutions and managing secure network architecture . This role will also help design & deliver technical solutions for Network, other infrastructure security technologies.

- This role has primary accountability for the delivery of Network engineering, Security Architecture including project delivery, system enhancement and production support in alignment with company policies and procedures.

Description for Internal Candidates

Role Accountability:

Network Security Management:

A- Applies advanced subject matter knowledge to solve complex business issues and is regarded as a subject matter expert

B- Serves as a Network Security expert in Network design & Implementation, helping project teams comply with enterprise and IT security policies, industry regulations, and best practices

C- Ensures adequate security solutions are in place throughout all systems and platforms to mitigate identified risks sufficiently, and to meet business objectives, enterprise security policy and regulatory requirements

D- Review and Manager control effectiveness of Security infrastructure solutions and services, such as firewall, public key infrastructure, anti-DDOS, etc

E- Determines baseline security configuration standards for operating systems (e.g., OS hardening), Network/Security Devices and Network segmentation etc

F- Collaborate with systems, network, database, vendor teams to ensure security is maintained at all layers

G- Develop framework for securely implementing, integrating and managing Network

H- Prepare Network hardening standards in-line with organization's security policy

I- Conduct Network Architecture Review periodically inline with the Policy requirement

J- Conduct Firewall Configuration & Rule Review periodically inline with the Policy requirement

K- Support New vendor product review and selection. Design and development of Data Networks (WAN, LAN, WLAN,WWAN) and associated Security Controls

L- Provide technical design support, sizing, availability guidance for network

M- Support Governance & Risk Team for Third Party Risk Assessment and Technical control validation/audit for service providers

N- Manage risk register & review periodic risk mitigation actions

Stakeholder/Vendor Management:

A- Effectively manage cross-functional internal and external team collaboration, communications & trainings

B- Maintain relationship with network and services vendor leadership to ensure effective implementation and network operations, ongoing support, and deployment of competent resources

Functional areas: Risk Management & Governance, Datacenter Operations, Network Management, Endpoint Security, Security Operations Centre, Data Security

Internal Stakeholders: Enterprise IT Architect, Senior IT leaders including CISO , CTO

External Stakeholders: Representative from Bank , Third Party Vendors, RBI, Cert-In and other authorities

Measures of Success(Define the Outcomes expected of the role):

A- Successful implementation/ adoption of any new solution, technology or framework

B- Successful delivery of security projects specifications within time and budget

C- Security strategy & architecture is aligned with company /business objectives & regulatory requirement

D- Key risk & security issues identified & recorded for treatment

E- Architecture level decisions are taken independently inline to policy & presented to related forum

F- Related security metrics are within acceptable threshold

G- Maturity of Information & Cyber Security Program

Competencies critical for role with High Proficiency:

A- Individual must possess the knowledge and the following skills and abilities or be able to perform the essential functions of the job;

B- Ability and experienced in highly secure and restrictive enterprise environments.

C- Working experience on various operating systems (Unix/Linux/AIX/Window Servers etc.), implementation of network and security devices like Firewall, IPS, VPN, APT, proxy etc.

D- Strong understanding of LAN/WAN, SD WAN, Routing and Switching and Secure Network Architecture concept

E- Technical knowledge: UNIX, Linux, Windows, OS X, various firewalls, digital certificates, SSL, VPN, TCP/IP, DNS, web security architecture etc

F- Good knowledge of information security principles and practices.

G- Ability to lead, collaborate, challenge and influence peers. Passion for project based execution and process improvement.

H- Excellent Documentation, Communication, presentation, interpersonal and leadership Skills

I- Well versed with key Cyber Security risks and mitigations (technology and manual) around database integrations & implementations

J- Proven ability to effectively manage multiple priorities and meet deadlines.

K- Ability to adapt to varied roles and job responsibilities and problem-solving skills.

L- Demonstrated ability using a life cycle management process for implementation of changes in technology.

M- Ability to performs a variety of professional tasks including, but not limited to, technology services representative on various committees or task forces

N- Demonstrated ability to excel both independently and as a team member in a lively, collaborative environment.

O- Excellent written and verbal communications skills with a demonstrated ability to make difficult concepts easy to understand