Assistant Vice President - IT Infrastructure & Security - Financial Services

Skills Required :

- Infrastructure Design and Management (Solution Architect Expertise)

- Cloud Design and Management (Solution Architect Expertise)

- Cloud Technologies (Private, Public and Hybrid) and Operations

- Data Center Technologies and Operations

- Server Virtualisation (HyperV, Vsphere, Xen etc.)

- Server Operating System Administration (Windows, Linux)

- Storage Management (FC / ISCSI)

- Azure Disaster Recovery Service Management

- Azure Active Directory and ADFS Technology Solutions (For SSO-Single Sign On), Active Directory, ADFS Technology Solutions (For SSO-Single Sign On) and Group Policy Management

- Cloud Storage Management

- Cloud Risk Framework Management

- Cloud Policy, Governance, Audit and Compliance

- Security Management : Security in the cloud is important, and consequently, a high-level understanding of key security concepts is a must. SSL Security Solutions etc.

- Cloud Network Management (Switching, Routing, Access Control)

- Cloud Firewall (including NGFW) and IDS/IPS Management

- VPN (IPSEC and SSL) Management

- Zero Trust Security Fframework

- ZTNA and SASE Technologies and Operations (Zscaler/Netscope/McAfee)

- CASB Technologies and Operations (Microsoft, McAfee, Netscope)

- Reverse Proxy / Web Application Firewall

- Trading Platforms related infrastructure and network setup

- Data Management and Content Encryption Technologies

- Cloud DLP Solutions (Data Leak Prevention)

- Cloud Connectivity to Corporate Network Management

- DR and BCP Management (Including replication tools)

- Backup and Restore Management (Servers, Storages and Cloud Solutions)

- Project Management

- Change Management

- Budgeting and Cost Control, Contract, Purchase and Payment Management and Service Level Agreement Management

- IT Governance

- Vendor Management

- ITIL Methodology including IT Service Delivery & IT Service Management

- IT Asset Management.

- Software License Compliance

- Helpdesk and Incident Management

- Internal Client Service Management including End User Services

- Network Management for Switches and Routers (Routing, Access Control, L3 core, L2 level)

- NSE / BSE Exchange Network Terminal and Management

- Firewall and IDS/IPS Management (Sonicwall)

- VPN (IPSEC and SSL) Management (Sonicwall)

- VDI / Thin Client Solutions (Azure)

- IT Policy and Audit Compliance

- Wi-Fi Controller and AP Management (Including Cloud Controllers and its Security Implementation)

- Backup and Restore Management (End User, Servers, Storages and Cloud Solutions)

- Video Conferencing and Audio Conferencing Technologies (Poly)

- Internet and Leased Line Management and operations

- IP Telephony, IP Office Management

- Conference Room / Meeting Room Office Automation Solutions

- Mail and Advance Threat Protection with EMS Management (Office 365 Collaboration and Enterprise Security Suit)

- End Point Detection and Remediation Tool Management

- Security Management and Operations (SOC)

- BYOD / MDM / MAM Security Management and Operations

- SSL Security Solutions Management and Operations

- DLP Solutions (Data Leak Prevention) Management and Operations

- IRM / DRM (Information / Document Rights Management) Management and Operations i.e. Encryption Technologies

- Web Secure Gateway, Proxy and Content Filtering/Management Technologies and Operations

- Conducting a continuous assessment of current IT security practices and systems and identifying areas for improvement

- Conducting internal and certification related Information Security and Data Privacy audit for the projects and support business groups. Including VAPT tests to internal as well as public network applications and systems

- Running security audits and risk assessments

- Delivering new security technology approaches and implementing next generation solutions

- Ensuring compliance and governance is met

- Protecting the intellectual property of the organization at all times

- Devising strategies and implementing IT solutions to minimize the risk of cyber-attacks

- Reviewing, analyzing and delivering data information

- Managing the IT security budget and communicating this with the appropriate parties

- Responsible for protecting organization's computers, networks, data and Privacy against threats, such as security breaches, computer viruses or attacks by cyber-criminals

- Responsible for defining all required standards, requirements, policies, procedures, device configuration documents i.e. hardening documents or MBSS, forms, guidelines, awareness, training wrt Information Security

- Facilitate technology, information and privacy risk assessment to all business units and maintain risk inventory repositories for the respective Business Units.

- Fulfilling the assessment and providing guidance from Segregation of Duties perspective

- Provide inputs for IT policies and facilitate enhancement for process improvements.

- To promote security awareness by developing and implementing a security awareness and training program

- To investigate suspected and actual security incidents in accordance with the security incident management standard, produce reports with recommendations and ensure any remedial action is taken. Also, responsible for submission and action for CAPA (Corrective Action and Preventive Action)

- Produce reports for the Information Security Steering Committee (ISSC), Information Asset Owners/Custodians and the Risk and Compliance Officers as required

- Become active member of CAB (Change Advisory Board) to certify and approve change requests from Information Security assessment perspective

- Respond to enquiries from staff and provide security advice as required

- Participate in vendor discussions on topics related to Information security and regulations compliance.

- Facilitate implementation of security plan in conjunction with other support functions like IT management Team, Physical Security, Human Resource Security, Facility Administration.

- Representing Management Review meetings to present Information security initiatives.

- Motivate employees, contractors, and consultants to change their behaviors and incorporate security concerns into their decision making. Improve overall compliance with the organization's information security policies, procedures, standards, and checklists

- Business Continuity and Disaster Recovery - Revise periodically as required by business and ensure continued compliance with established Business Continuity policies and procedures.

- Report on Information Security project metrics on a regular basis; collaborate with IT functional leaders to address gaps.

Preferred Experience / Expertise :

- Architecting IoT Platform on MS Azure / AWS / Google Cloud

- Hands on experience on Servers, Storage, Network equipments

- Good experience on Infrastructure automation, build automation and deployment automation

- Hands on experience and knowledge on Cloud Dev- Ops platforms / technologies

- Good understanding of Routing/Gateway/Communication networking concepts is preferred

- Hands on experience and knowledge on Device Management, Device Connectivity, and Communication Protocol such OSPF, BGP etc.

- Good understanding of networking and related security

- Computer Programming Languages: You will need at least a minimal understanding of a programming or scripting language. This is probably not a must, but it will definitely help.

Specific Experience :

- Hands-on track-record architecting and/or developing scalable internet-based service and platforms, of which experience specifically in utilizing cloud platforms and in an architect or development leadership role.

- Strong understanding of core architectural concepts including distributed computing, scalability, availability and performance

- In depth knowledge of MS Azure IaaS, PaaS & SaaS services and Building a technical architecture in MS Azure.

- Experienced with Azure SQL, Azure Automation, and Azure Resource Manager.

- Cloud design patterns: Understanding RDBMS databases such as MS SQL, PostgreSQL, Oracle etc and concept of No-SQL databases.

- Azure Storage and Backup Experience.

- Azure network experience, VPN and Express route, Azure DNS, Traffic Manager, and Load Balancers.

- Active Engagement with other developers and users and clarify questions related to Software as a Service, Multi Tenancy, Microsoft Azure Platform & .Net.

Qualification.

- Diploma / Bachelor's in information technology or B.E. in Computer Technology.

- Master's in business management will be an added advantage.

- Azure / AWS Certified Solutions Architect (Preferred)

- MCSA, MCSE, MOOC, MCSD certifications (Preferred)

- CCNA, CCNP certifications (Preferred)

- CCSK (Preferred)

- CISM, CISSP, CISA, CCSP Certified (Preferred)

- ISO 27001 Certified Lead Implementer and/or Lead Auditor (Preferred)

- ECH Certified (Preferred)

- Forensics Certified (Preferred)

- ITIL V3 certifications (Preferred)

- DevOps Engineer Certifications (Preferred)

- PMP Certification (Preferred)

- Strong Knowledge of ISO/IEC 27001 / 22301 / 27017 Standard

- Strong Knowledge of MAS Technology Risk Guidelines (Singapore)

Experience :

- The candidate should have minimum 12-15 years of relevant years in implementation.

- A Cloud Architect is an IT specialist who is responsible for deploying overseeing company's Group's cloud computing strategy. This includes cloud adoption plans, cloud application design, and cloud management and monitoring. Cloud architects oversee application architecture and deployment in cloud environments.

- Cloud computing architecture refers to the components and subcomponents required for cloud computing. These components typically consist of a front-end platform, back end platforms, a cloud based delivery, and a network. Combined, these components make up cloud computing architecture. Cloud solutions design is based on architectural procedures and methods that have been deployed as per requirements and best practices.

- Excellent written and verbal communication skills with demonstrated ability to write technical documents/specs at all levels, including requirements, architectural, functional, design, etc.

- Domain Knowledge: Understanding the Asset Management, Wealth Management Businesses, Trading Platforms and related processes is preferred.

- Design, co-ordinate and execute proof of concepts, guidance on business scenarios and deployment guidance.

- Vendor Connects - Should be able to independently make the requirement document and clearly convey the business requirements to the vendor.

- Excellent written and spoken communication skills is a must since many vendors management including multi-project management

- Interpersonal skills to connect with users and key stakeholders

Total Experience 12-15 years