IT Team Member-SUPPORT SERVICES-Information Risk Management Team

As a Senior Security Architect in the Banking & Financial Services sector, your primary responsibility will be to develop and maintain a comprehensive security architecture roadmap that is in alignment with business objectives and regulatory requirements. This includes conducting thorough security risk assessments for business applications (both on-premises and cloud-hosted) and APIs to identify potential threats, weaknesses, and recommending appropriate mitigation measures. You will be required to conduct threat modeling for applications at their inception and during major changes to ensure compliance with existing regulations. Additionally, you will review architecture designs, suggest security controls, and countermeasures to safeguard systems, applications, and data effectively. In this role, you will define and enforce security policies, standards, and guidelines to ensure compliance with industry best practices and regulations. Collaborating with development teams will be crucial to integrate security-by-design principles into the software development lifecycle. Creating dashboards and reports to track the progress of ongoing security reviews and driving automation and process improvement initiatives for streamlining security reviews will also be part of your responsibilities. Keeping abreast of emerging security threats and trends and recommending and implementing appropriate countermeasures is essential. Mentoring and guiding junior security team members to foster a culture of continuous learning and development will also be expected from you. To qualify for this role, you should hold a Bachelor's degree in Computer Science, Information Security, or a related field, along with 6-8 years of hands-on experience in security architecture, design, review, and implementation. Strong knowledge of security frameworks and methodologies, such as RBI guidelines, NIST Cybersecurity Framework, and OWASP ASVS, is required. An excellent understanding of cloud security principles and practices, especially AWS, is essential. Additionally, a minimum of 2 years of experience in the banking and financial services sector, with a deep understanding of industry-specific security regulations, would be preferred. Strong analytical and problem-solving skills, the ability to work independently, and manage multiple projects simultaneously are also necessary. Preferred qualifications for this role include advanced security certifications (e.g., CISSP, CISM), knowledge of DevOps and CI/CD practices, and experience with security automation and orchestration tools.,