Lead Security Architecture & Solution
Full-time
Senior Manager
Kuala Lumpur, Federal Territory of...
1 month ago
Job DescriptionAbout the Team: Are you eager to elevate your career to new heights? Join us for an exhilarating opportunity to pioneer our groundbreaking digital bank project, where boundless possibilities await! We're thril...
Job Description
About the Team:
Are you eager to elevate your career to new heights? Join us for an exhilarating opportunity to pioneer our groundbreaking digital bank project, where boundless possibilities await!
We're thrilled to extend an invitation for you to join our vibrant team of visionaries, innovators, and trailblazers.
As a Security Architect and Solutions Lead of our digital bank project, we're not just offering a job; we're presenting an opportunity to be part of something extraordinary.
You'll collaborate closely with some of the sharpest minds in the industry, operating within a supportive and collaborative environment that fosters creativity and exploration.
Your next thrilling adventure awaits with our digital bank project. Join us in shaping the future, today!
About the Role:
- Will be part of our first line Cyber Security team and responsible for designing and implementing security systems and strategies to protect an organization's information technology infrastructure.
- Responsible for evaluating, implementing, and managing security solutions and technologies to address specific security challenges faced by the bank.
What You'll Do:
- Developing and maintaining the organization's overall security architecture, including security policies, standards, and guidelines
- Designing and implementing security controls and technologies, such as firewalls, intrusion detection systems, encryption mechanisms, and access controls
- Collaborating with other IT teams to integrate security measures into network and system designs.
- Providing guidance and support to development teams to ensure secure coding practices and adherence to security standards.
- Evaluating new technologies and solutions to determine their security implications and suitability for the organization.
- Monitoring and analyzing security incidents, investigating security breaches, and implementing incident response procedures.
- Assessing the organization's security needs and requirements through discussions with stakeholders and conducting security assessments.
- Identifying and evaluating potential security solutions, such as antivirus software, security appliances, encryption tools, and identity and access management systems
- Collaborating with vendors to understand product features, capabilities, and deployment considerations.
- Designing and implementing security solutions that align with the organization's security policies and industry best practices.
- Configuring and fine-tuning security solutions to meet specific requirements and optimize performance.
- Providing training, awareness and support to all bank end-users and technology staff on the proper use and maintenance of security solutions.
- Conducting testing and validation of security solutions to ensure they are effectively protecting the organization's assets.
- Keeping abreast of emerging security technologies and industry trends to recommend enhancements or updates to existing security solutions.
- Identify gaps in security architecture and conduct security reviews.
- Evaluate and review security architecture designs for cloud infrastructure and platform projects.
- Collaborate with different stakeholders to develop automation rules for managing security task and events.
What We're Seeking:
- Experience in implementing cyber security protection frameworks such as ISO 27001, and Zero Trust (Not just one single product)
- Preferably with one or more of the related certification in the areas of cyber security architecture – CISSP, CISSP-ISSAP, TOGAF, SABSA or other relevant certifications
- Familiarity with industry cybersecurity frameworks and standards, such as NIST Cybersecurity Framework, ISO 27001, and CIS Controls, is necessary. Understand the requirements and best practices outlined by these frameworks and be able to align security programs and practices accordingly. Familiar with local regulatory requirements such as BNM RMIT, Paynet, PCI-DSS
- In-depth knowledge and understanding of cybersecurity principles, best practices, and technologies are necessary. Have expertise in threat intelligence analysis, incident response, vulnerability management, and security operations. Stay abreast with the latest cyber threats, attack vectors, and mitigation techniques.
- Excellent communication and leadership skills are vital. Able to effectively communicate complex technical concepts to both technical and non-technical stakeholders. Have the ability to lead and motivate a team, collaborate with cross-functional teams, and provide guidance during security incidents.
- Strong analytical skills and the ability to think critically. Able to analyze and interpret security data, identify patterns, and make informed decisions. Possess excellent problem-solving skills to address complex security challenges and incidents.
- Given the rapidly evolving cybersecurity threat landscape, continuous learning and staying updated with emerging threats and technologies is crucial.
What We Value:
- Open-mindedness and constructive communication, fostering an environment of mutual support and growth.
- Responsibility and ownership, with a strong sense of accountability.
- Commitment to teamwork and achieving shared goals.
- Customer focus and dedication to delivering results.
- A proactive approach to leading change and innovation.
Perks & Benefits
- Allowance (travel stipends, transportation, etc.)
- Nearby public transport
- Central location
- Smart casual dress code
- Open culture
The YTL-Sea Digital Bank Project aims to empower Malaysians with purposeful and trusted financial solutions. The Digital Bank Project is led by Malaysia’s leading conglomerate YTL Corporation Berhad and global tech leader Sea Limited.