Senior Specialist digital Security will be responsible for the oversight of the Banks Business Units efforts to deploy solutions in Cloud & non cloud based environments.
Key Responsibilities & Accountabilities:
Build & orchestrate security plans aligned with organizations business strategy for digital initiatives.
Work with Cloud Security in AWS, Azure, Google or other for the defining and designing the security controls for business solutions in cloud environment.
Work with developers and system architects on deployments to diagnose, document, and remediate deviations from security standards.
Determine security requirements by evaluating business strategies and requirements for cloud based solutions.
Contribute to the evaluation, recommendation, and implementation of cloud security controls in line with emerging cloud technologies and practices across group entities.
Maintains security by ensuring compliance to standards, policies, and procedures set out by the GISO.
Experience with development and implementation of a comprehensive and broad set of security controls for cloud infrastructure and DevOps
Perform compliance reviews & assessments to identify security gaps, and works with different teams across the NBK group entities to resolve them.
Prepares security reports by collecting, analyzing, and summarizing data and trends.
Conducts incident response analyses.
Relevant skills include an understanding of business/technology risk, thought leadership in designing and executing cloud / technology controls that mitigate those risks, and ability to keep up-to date with the latest technologies and potential cyber-threats.
Coordinate with internal/ external teams for security assessment and reporting
Coordinate with Group Digital Security team for ensuring alignment to Group security standards.
Participate in Agile project meetings and provide security feedback after discussing with Head of ISO.
Sound understanding of application architecture and application workflow to identify security risks.
Ability to perform security assessment of application, vendor, cloud and third-party assessment.
