System Security Architect - GoKardz Technologies Sdn Bhd
- Kuala Lumpur, Kuala Lumpur, Malaysia
- Apply by: May 05, 2024
- 1 Vacancy
- Local Candidates (Malaysia)
- Degree: Graduate
- Experience: 6Year - 10Year
- Full Time/Permanent
- Work from Office
Accountability |
Supporting Activities |
Outcome/ deliverables |
Challenges |
Drive and provide technical leadership for on-going delivery of system security solutions for bank Group. |
1) Determine security requirements by evaluating business strategies and requirements 2) Identify security design gaps in existing architectures and recommend changes or enhancement 3) Research and study information security standards and architecture/platform, conduct enterprise system security and vulnerability analysis and risk assessments, and consult with operational department on system security controls to ensure compliance with various regulatory and compliance requirements 4) Participate in investigation, evaluation, selection of new approaches, methods and next- generation security technologies, conduct research and provide documented and evaluated architectural options to meet requirements. Present and obtain endorsement on complex designs for critical system security infrastructure from senior management at formal review boards |
Ensure system security architecture design is aligned with Enterprise Architecture Blueprint objectives, guiding principles, standards and processes · Build an enterprise- class and regional system security architecture for the future of Cyber Defense Capabilities that supports the Bank Digital initiatives across the region and mitigate threats as they emerge · Deliver and implement Group- wide system security solutions |
Keep abreast with latest security technologies and market trend and evaluation of appropriatenes s to deploy in bank environment · Tradeoffs between cost and benefit analysis on implementing system security technology in ensuring latest threats are being handle with the best security solution available · Managing changing management expectation due to criticality to implement security solution in immediate timeframe · Conduct research, recommend strategies and new control measures to establish and enforce compliance with bank Group IT Security policies and standards at par with International standards |
|
5) Participate in product and vendor selection providing the security evaluation of system security products, options and responses to tenders 6) Ensure adequate security measures are implemented for system security solutions prior deployment such as vulnerability assessment, system hardening, privileged ID handover, patching, load-testing, etc. 7) Create designs and support documentation for the delivered infrastructure. Raise change records and execute activity while adhering to Bank’s change management processes and procedures 8) Support and perform trouble-shooting of system security devices and solutions delivered during transition/handover period 9) Liaise with various stakeholders and subject matter experts to understand requirements, challenges and risks, and provide system security architecture design review and guidance on initiatives to further improve the development of security posture |
|
|
Manage the delivery and implementation of system security projects in cooperation |
1. Provide recommendations to resolve system security project issues and strategic direction 2. Manage project to |
· Project delivered according to project work plan · Project completed on time, within scope, and on budget as per |
· Managing changing management expectation due to criticality to implement last |
with various stakeholders, and define, monitor and control project work plan, milestones, schedule and budgets |
ensure project is within scope, meeting objectives, timeline and budget 3. Day-to-day management of the project to ensure project milestones/ deliverables are completed on schedule and produced in accordance with the desired quality and overall project cost is within budget 4. Ensure project achieve targeted achievement and benefit realization 5. Manage project activities and conduct regular project review meetings to ensure the completeness of SDLC deliverables 6. Manage for information security and risk management projects with resources from the IT organization and business unit teams. 7. Establish communication channel for providing feedback to the project team 8. Update IT Management on project status and report to Project Steering Committee (PSC) and Group IT Steering Committee (GITSC) 9. Mediator in resolving project challenges, interdependency issues and organization conflicts 10. Anticipate possible challenges and facilitate appropriate action plans for mitigation 11. Key driver and motivator to encourage project team members towards |
defined by business case · All Project related issue resolved and project objective not sidelined · Project daily tasks completion accordance to project milestones without quality degradation · Project goal and benefit realization achieved · Project SDLC deliverables completed as per Quality Assurance’s requirement · Mobilize IT internal resources to complete the project · Project team members constantly updated and project related matters able to communicate effectively throughout the project period · Manage and resolve (if possible) project challenges to ensure project objective and timeline is not affected · Project risk being maintain at minimal level · Project team members are motivated to achieve the project targets throughout the project timeline · Project deviation avoided and project issue being escalated as and when required |
|
achieve stipulated result 12. Resolve deviation and escalation project issues to IT Management |
|
|
Maintain consistent relationship and operation engagement with Security solution principals, distributors, vendors, and partner for latest security technology updates and cyber security trend. |
1. Continuously engagement with external security solution principals, distributors, vendors, and partner for latest security technology updates. |
· Foster closer relationship with security solution providers, distributors and solution integrator to have fast track escalation and immediate response as and when the Bank requires · Stay informed with the latest security threats and mitigation actions that available in the market to be implemented whenever necessary |
|
Possess professional qualification with minimum Bachelor Degree in Computer Science majoring in
EXPERIENCE :
6 to 10 yrs : IT Security related working experience in Financial Services Industry (FSI)
6 to 10 yrs : Experience in supporting delivery/execution by appropriate reviews at various stages of the program execution.
6 to 10 yrs :
Proficient in:
CERTIFICATIONS/REGULATORY CERTIFICATIONS :
Possess professional certifications such as ITIL, COBIT, PMP, CISSP, and CISM would be added advantage.
Certificate for any of the OS platform, database or system security area is a plus.
JOB SPECIFIC SKILLS & COMPETENCIES REQUIRED :