Job Title : Enterprise Security
Location : Mumbai
Principal Responsibilities :
- Establish and manage an enterprise security architecture aligning the defined policies and standards for all applicable platforms and environments in the Bank
- Align the enterprise security architecture to address the different legal and regulatory (RBI) requirements along with compliance standards applicable on banks (PCI-DSS, PA-DSS, ISO 27001 etc)
- Should ensure implementation of policies through security technologies and related controls
- Engage and guide business to define a secure business process aligned to the business security architecture and enterprise security architecture.
- Define security architecture for channels (like ATM, POS, wallet, online banking etc) aligned to the enterprise security architecture
- Participate in the IT planning process and take ownership to ensure IS architectural designs and principles are incorporated in enterprise implementations.
- Ensure that all acquired or developed security systems and security architectures integrate with enterprise security architecture.
- Drive security reviews to identify gaps in security architecture and develop security risk management plans.
- Ensure security product lifecycles are managed proactively.
- Create/maintains domain specific strategies aligned with business drivers and higher level strategies
- Build roadmap for acquiring, integrating, and implementing high-value technology and processes. Oversee efforts (e.g. proof of concepts) to measure and prove new security technology value.
- Define minimum baseline security standards for all technologies, devices (like operating systems, server software, network devices etc.) in accordance with applicable regulations and standards
- Align security architecture to ensure proper integration with threat intelligence, monitoring and other security command center activities
Experience & Skills required :
- Good and through knowledge of enterprise security frameworks
- Detailed knowledge of regulatory requirements like RBI, SEBI and related laws applicable on a bank.
- Industry connect and membership to reputed information security forums.
Knowledge of :
- Banking Industry and the information security related controls, regulations and practices
- Channels like internet banking, mobile banking, ATM etc.
Didn’t find the job appropriate? Report this Job