Overview
Infrastructure Security Architect | Cyber Security Department Jobs in WP. Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia at Bank Negara Malaysia
Title: Infrastructure Security Architect | Cyber Security Department
Company: Bank Negara Malaysia
Location: WP. Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia
ROLE PURPOSE
Plan, design and manage the Bank’s IT Infrastructure security architecture, produce design baselines for implementation of IT security controls, and ensure effectiveness of the controls in the IT infrastructure and systems to safeguard the Bank’s IT environment from internal and external security threats in maintaining confidentiality, integrity and availability of information assets in the Bank.
PRINCIPAL ACCOUNTABILITIES
Manage the development of a well-formulated IT security architecture model, governance and standards based on risk assessment, IT and business directions and strategies to support the Bank’s desired outcomes by applying architecture principles to drive measurable results in mitigating security risk and in safeguarding the Bank’s IT environment from internal and external security threats, and using of Key Performance and Risk Indicators (KP&RIs) and effectiveness metrics to improve IT security processes.
Responsible for continuous maintenance, monitoring and updates of the IT security architecture model, governance, policies, standards and processes. This includes anticipating growth to ensure scalability, assessing the value of enhancement emanating from benchmarks, observations or other industry best practices and incorporate the changes, if required.
Manage the design and standardisation of the Bank’s IT security infrastructure and services and provide direction in the implementation of new IT security infrastructure technology solutions to ensure alignment to the IT and business directions, strategies and optimisation of IT investments and compliance with IT policies, guidelines and procedures.
Administer research and environmental scanning of emerging internal and external threats, technology trends and directions in mitigating IT security risks, and perform evaluation by working collaboratively across IT department and functions to improve the IT security infrastructure and services in the Bank in order to maintain confidentiality, integrity and availability of information assets in the Bank.
Build and maintain strategic relationship/networking and collaborations with external IT security expert and other IT organisations in order to benchmark and improve the Bank’s IT security infrastructure service delivery to the stakeholders.
Provide IT security advisory services on IT solution architecture and design proposals to ensure solution meets the IT security requirements as to safeguard the Bank’s IT infrastructure and systems.
Provide IT Threat Model for newly developed / implemented infrastructure to ensure that any potential IT threats are designed, tracked, alerted and monitored by the Security Operations Centre.
Manage the lifecycle of IT security infrastructure and its related system solutions technology refresh with minimal impact to business operations and in compliance with the technology architecture design, standards and principles.
QUALIFICATION / EXPERIENCE
Academic qualifications:Degree in Computer Science / Information Technology or its equivalent. Any related cybersecurity certifications like CISSP, CISM, CRISC, CISA, SSCP, GIAC, CCNA, TOGAF, CEH, CHFI and others, is an added advantage.
Technical knowledge in Firewall, IPS, IDS, Anti-malware/APT, Authentication, Encryption, SSL/VPN/IPSec, TCP/IP, web architecture, VM ESX, UNIX/AIX/Linux/Wintel OS, and SANS/NIST/COBIT/ISO/OWASP Security Control.
Experience:At least 10+ years working experience with strong knowledge o…
