Head of Security Architecture

Head of Security Architecture

 Abu Dhabi, NONE

 

Permanent

Job Title: Head of Security Architecture
Location: UAE

Role Purpose:
Reporting to the Head of Information Security Engineering, the Head of Security Architecture will design and manage the Security Architecture function. The incumbent will collaborate with the CISO and other management teams in the business to identify and protect all of the companies' data and resources, including those of its subsidiaries and international operations, from internal and external threats. This role will focus on designing the right solutions to prevent unauthorized access the data.

Key Metrics:

• Number of information security applications/systems evaluated or assessed.
• Number of GISD projects and initiatives delivered as planned.
• Number of risks identified and controls recommended for existing or new applications and systems.
• Number of Business Impact Analyses (BIAs) and risk/privacy assessments conducted.
• Number of third-party assessments conducted versus planned.

Key Accountabilities:

• Develop and refine strategies, policies, regulatory compliance measures, and cloud security architecture and standards.
• Maintain a high level of knowledge regarding banking business requirements and fintech partnership models.
• Lead and oversee the implementation of security solutions, including Cloud Management Platforms, Cloud Workload Protection, and Cloud Access Security Broker Platforms.
• Conduct regular cloud architecture and security assessments in line with the mandates and external regulations.
• Build a cloud security roadmap, coordinating the design, development, and implementation of cloud protection solutions.
• Manage cloud transformation and architecture projects, ensuring effective communication with internal and external stakeholders, including senior management.
• Conduct necessary third-party assessments for business cloud projects.
• Lead the design and implementation of secure cloud solutions and services across business and IT support areas.
• Drive the successful configuration and implementation of cloud security solutions to minimize overall risk.
• Conduct independent security reviews of vendor proposals, assess security architectures, and recommend modifications to improve service and reduce risk.
• Develop a comprehensive understanding of existing company networks and security controls, yielding a preliminary system security concept of operations, including baseline security capabilities and requirements.
• Serve as a cloud security subject matter expert and trusted advisor, providing advisory and consulting services to various departments and project teams.
• Evaluate acquisition documents against existing and proposed security architectures and designs.
• Manage the security architecture program, including the development and implementation of effective security designs and frameworks across all company systems and platforms. Establish security configuration baselines and ensure patching for all applications, systems, and network assets.
• Prepare cost estimates, identifying security-related opportunities, risks, and issues.
• Oversee and approve cloud security architecture requirements, projects, vendor selection, and controls to maintain a unified vision.
• Design and manage a unified cloud Security Blueprint for technology functionality and business capabilities, ensuring alignment with the overarching company information security strategy and policies.

Specialist Skills / Technical Knowledge Required:

• BA/BS degree in Computer Science, Information Security, or a related field; a master’s degree is a plus.
• Strong understanding of Azure cloud architecture, firewalls, intrusion detection systems, web filtering, audit and log management, physical security control systems, real-time systems, and common operating systems; AWS knowledge is highly preferred.
• Familiarity with banking and financial institution applications for mobile and online banking, ATMs, payments, treasury, and trade finance.
• Knowledge of security engineering, system and network security, authentication and security protocols, cryptography, and application security.
• Familiarity with security standards and regulations such as TOGAF, SABSA, ISO 27001, NESA, PCI DSS, and SWIFT.
• Experience securing multi-tenant cloud and big data services, and/or designing separation controls in cloud systems.
• Knowledge of large-scale cloud migration programs and security requirements related to Continuous Delivery/Continuous Integration.
• Strong business acumen, including contract negotiations, budget management, and the ability to influence and collaborate effectively.
• Technical certifications such as TOGAF, CCIE, CCSP, CISSP, CISA, CISM, CRISC, CGEIT, or ITIL are preferred.
• At least two cloud certifications, such as CCSK, CCAK, CCSP, or PECB Lead Cloud Security.
• At least two Azure certifications (e.g., AZ-500, SC-100, SC-200, SC-300, AZ-104).