Vice President/Chief Control Officer - Cloud Technology & Cyber - BFSI - Only females
Job Title: VP-CCO-CBP-Cloud Technology and Cyber
Location : Pune
This role is within the Technology and Security Chief Control Office (CCO) for Cloud Risk and Controls Management. The primary focus of the role is to provide Governance and Execution support for Cloud Technology, this includes identification, assessment, and provide governance support to track mitigation of risks and control issues related to public cloud deployments. Further, the successful candidate will assess technology and information security risks of new application deployments to public cloud and provide advisory and review/sign-off for new deployments and ad hoc requests.
The role will also entails regulatory and compliance review and responding to audit and regulatory related internal/external requests/events and document the summary of the findings.
This will require the candidate to establish successful engagement with key stakeholders across all three lines of defense within the Security, Technology and Technology/Security CCO functions as well as stakeholders external to Technology/Security such as Internal/External Audit, Compliance and Regulatory relations.
What will you be doing?
- Serve as a technical leader in advising and assisting business verticals and horizontals for control issues and events relating to cloud security.
- Engage with cross-functional teams and advise on the control matters during the design and implementation of cloud projects and initiatives.
- Respond to Regulatory data/meeting requests and participate in the regulatory examinations and internal/external audits for the matters related to Cloud
- Partner with stakeholders and business technology teams to help resolve control gaps while deploying production applications to public cloud
- Advise on automating security controls, data and processes to provide improved metrics and operational support
- Stay abreast of emerging security threats and vulnerabilities as applicable to Cloud and help designing the new controls and best practices into the bank's processes, tooling and techniques
- Value add in the efforts that shape the bank's technology and security policies and standards for use in cloud environments
- Help business by interpreting the business requirements and their impact to the bank's risk and controls posture and communicate control risks to relevant stakeholders ranging from business leaders to engineers/developers
- Ensure appropriate security policies and controls are in place that will safeguard bank's digital information and electronic systems.
- Assist with the development and maintenance of metrics and scorecards to enable management with decision making and intervention
- Promote awareness of applicable technology and security policies, standards and procedures related to Cloud.
What we're looking for :
- Minimum years of practical knowledge of commercial cloud offering like AWS in the areas of Cloud risk management, solution architecture and security management
- Strong understanding of AWS services related to compute, network, storage, content delivery, administration and security, deployment and management, automation technologies
- Deep understanding of AWS Cloud Services (EC2, DynamoDB, API Gateway, RDS, Lambda, CloudFront, CloudFormation, CloudWatch, Route 53, etc.)
- Good understanding of rapid application development and deployment using CI/CD pipeline, deploy infrastructure through code in the cloud, build and test automation technologies like chef, puppet, docker, jenkins, etc.
- Strong familiarity with Linux and Windows operating systems, virtualization technologies and cloud provider ecosystems like Amazon AWS is must
- Strong understanding of industry standards / best practices related to Cloud, this includes but not limited to, CIS Critical Security Controls and CSA Cloud Controls Matrix (CCM), NIST Cyber security framework and Cloud computing standards roadmap
- Practical experience of Regulatory and compliance requirements related to Cloud technology/security. Familiarity with major regulations such as Sarbanes-Oxley and regulatory expectations related to the usage of public cloud offering
Skills that will help you in the role
- Education: Minimum of bachelor's degree in Information Systems or Computer Science.
- Desired Certifications: AWS Solutions Architect Associate/Professional, AWS Certified Security - Specialty, CCSK or CCSP
Where will you be working?
- Pune
Didn’t find the job appropriate? Report this Job