· Bachelor’s degree in a computer-related field such as computer science, cyber/information security discipline, physics, mathematics or similar ·
Master’s degree in business administration, information security, human resource management, ·
Architecture: TOGAF/SABSA or similar ·
Agile: Certified Scrum Master (CSM) ·
General Information Security: CISSP, CISM/CISA or similar · Experiences (Years & Type) • Industry • Regional • Functional ·
Banking or e-Commerce Industry experience of at least 2-3 years is necessary. ·
Experience in the regional sector is not necessary but will be desirable since Middle East regulations apply heavily. · Must have a minimum 7-10 years of experience in an Infrastructure and Security function with good background in information technology, stakeholder management and people management. ·
Minimum 3-5 years’ experience, as an Infrastructure and Security Architect · Minimum 3-5 years’ experience as an Enterprise & Data Architect · Prior experience managing a team of 3-5 individuals. · Budgeting, creating slide decks and presentation skills. · Certification in Azure or AWS is added advantage Knowledge & Skills • Technical • Functional • Managerial ·
Define, Document and implement the infra & security architecture for the IT projects including but not limited to the following: ·
Authentication & authorization · Account administration controls (provisioning, segregation of duties, validation, · attestation, etc.) ·
Auditing of critical security related events · Confidentiality, Integrity, and Availability of the system and data. ·
The architect should have sound knowledge on enterprise level target architecture in On Premises, public and private cloud platforms (IaaS/PaaS) ·
Good hands-on experience solutioning technology architectures that involve securing web and mobile applications, identity management integration, perimeter protection, core protection and end-point protection/detection & API /Micro services Security. ·
Good knowledge of the concerns and threats that revolve around Cloud Security and how those concerns can be mitigated (Technical) ·
Deep foundational knowledge, understanding and application on all aspects of Information Security concepts from broad range of technical and non- technical areas (Technical)The architect has the skill to follow design principles and applies design patterns to enforce maintainable, readable, and reusable patterns, in the form of code or otherwise. ·
The architect can understand the application architecture and interpret potential issues found in source or compiled code. ·
The architect has automation skills/capability in the form of scripting or similar. ·
The architect can propose options for solutions to the security requirements / patterns that provide a balance of security, user experience & performance. ·
The architect has the skill to discuss and present solutions to other architecture, security, development, and leadership teams. ·
The architect can interpret and understand vulnerability assessment reports and calculate inherent and/or residual risks based on the assessment of such reports. ·
Ability to articulate and be a persuasive leader who can serve as an effective member of the senior management team.
Good negotiation skills will be desirable. ·
Must have good judgment skills in order to decide on an exception approval