Privilege ID & Access Mgmt SS Architect -Tech & Op

  • Competitive
  • Kuala Lumpur, Federal Territory, Malaysia
  • CDI, Plein-temps
  • Standard Chartered Global Business Services Sdn Bhd
  • 16 janv. 19

Privilege ID & Access Mgmt SS Architect -Tech & Op

Job Description - Privileged ID and Access Management Security Service Architect

ROLE

Business Title: Privileged ID and Access Management Security Service Architect
Grade:
Business Unit: ITO, Technology Services, Security Technology Services
Job Family: Security Technology Services
Location:
REPORTING RELATIONSHIPS:

Reports Directly to: Head of Access Management with matrix reporting line to Director, Architecture & Capabilities
PURPOSE:
Security Technology Services (STS) is a critical function within Standard Chartered Bank operating under the overall purview of "Technology Services".

The STS team is made up of cyber security thought leaders, who are accountable for the provision of a global set of cyber security services and products to maintain and continuously improve Bank's cyber security posture in today's ever evolving cyber security landscape.

The STS team protect the Bank from cyber security threats by delivering effective information security technology services, managing and responding to security incidents to ensure, and support the continuity and growth of Bank's business operations; and meet the both internal and external stakeholders' expectations across 70+ countries and territories, in which SCB operates.

As part of the Security Transformation activities within SCB, STS is going through a capability transformation covering process and technology. This requires highly skilled and experienced cyber security architects to work with each key service line, to define, build and implement threat driven capability roadmaps, patterns and drive an innovative vision for security to protect the Bank from complex cyber threats in support of the Security Architecture & Capability Authority.

RESPONSIBILITIES:
· Define and manage the Privileged ID and Access Management architecture artefacts and corresponding target state roadmap within the given functional and technical standards in alignment with the Security Architecture Authority and the {insert service line} process landscape defined by the Privileged ID and Access Management Business Analyst.
· Aligns Privileged ID and Access Management architecture principles with Security Architecture Authority and ensures alignment of the both roadmaps to Security Principles and Architectural Framework. Assesses impact of new requirements and ensures adequate change management and synchronisation between service and function target state.
· Review changes to the Privileged ID and Access Management service architecture as required by projects or programmes. Actively exchanges knowledge in all matters related to threat led architecture, design, and risk and ensures that the defined architecture and strategy is implemented correctly within the Privileged ID and Access Management service domain.
· Responsible for the high level architectural design of all solutions within the Privileged ID and Access Management service in conjunction with the respective Privileged ID and Access Management service managers for Privileged ID and Access Management and ensures all design patterns are appropriately documented and maintained in the corresponding repositories and these reflect both the current implementation and the intended target view.
· Responsible for the strategic evolution of the capabilities within the Privileged ID and Access Management service domain in alignment with changing business needs, threat land scape and technical requirements to increase the quality of the selected solutions concerning identify, protect, detect, respond & recovery domains. This also includes topics such as long-term sustainability and convergence of products over time and replacement of existing products.
· Devise the service delivery strategies alongside the service managers and assist the Head of Access Management with the preparation and maintenance of the service roadmaps and assist the respective Product Specialists with the preparation and maintenance of the Privileged ID and Access Management Product Roadmap.
· Monitor and understand the market and threat landscape and provide inputs of resulting opportunities and risks for the Privileged ID and Access Management service domain
· Represent the Privileged ID and Access Management service domain in key service architecture governance forums which include the Technology Standards Council (TSC) and Security Architecture and Capability Authority (SACA) forum.
KEY STAKEHOLDERS:
· Security Trust and Solution Centre - Cyber Capabilities, Architecture and Innovation
· Security Technology Services Service Architects and Operational teams
· Respective Technical Service Engineering Product Heads
· Business & CIO Stakeholders
COMPETENCIES (KNOWLEDGE & SKILLS):
· Minimum 10 years' experience in Banking, Information Security Technology
· In depth understanding of cyber-attack methodologies, vectors and corresponding mitigations in an Enterprise environment.
· Minimum 5-10 years' experience in Privileged ID and Access Management related Design, Architecture or Engineering with experience leading a team in delivering technology centric customer focused services
· Strong Technical skills and good understanding in Privileged ID and Access Management Technologies related to current industry products such as Sailpoint, OIM, SIQ, Beyondtrust etc
· Bachelor Degree in Engineering, Computer Science/Information Technology or its equivalent with security related certifications (e.g. SANS GIAC, SABSA, CISSP)
· Highly entrepreneurial with a high level of motivational energy, passion in field and an unrelenting drive to success
· Strong sense of personal ownership and responsibility in accomplishing the service line and function goals.
· Able to get things done in a fast-paced environment. Be transparent and open around what doesn't work and what does
· Excellent organisational and leadership skills (successfully lead and managed end-to-end technology services and or technology operations) with ability to manage multiple deadlines and effectively prioritise
· Experience of developing an effective stakeholder strategy, influencing relevant stakeholders and decision makers, and executing decisions efficiently and consistently
· Ability to lead and control programme and/or project management in the context of a significant amount of change
· Excellent communication skills - oral, written and presentation; technical reporting writing across various types of target audiences.