Sr. Security Architect - Mobile Apps - Banking Industry

Job: Sr. Security Architect - Mobile Apps - Banking Industry-Chennai(Onsite)

Position / Designation: Senior Security Architect

Years of Experience: 10+ Years

Permanent / Contract (If contract, period ?): Contract

Office Location of Company: Chennai, India

Job Summary: The Senior Security Architect (SSEA) reports to the Head of Architecture but is also accountable to the Delivery Head & Lead in the business/functional domain (aka Matrix Manager) that is being served. The SSEA is expected to possess deep technical expertise, potential leadership qualities & be solution oriented. The below competencies are specific and targeted towards Customer Facing Mobile Apps and its associated eco-system, processes, and integrated components.

The unit (aka Chapter) is responsible for building, implementing, and enforcing common structures and guidelines for enterprise architecture and solutions practices, standards, emerged patterns and technologies to enable world-class solutions delivery and build resilient, agile and secured architecture landscape aligned with business strategy.

Achieve a high level of performance and quality in delivering architecture solutions that provide exceptional business value to internal users and customers as well as ensuring common architectural standards across group. The chapter maintains all architectural blueprints and architects working in agile, platform, Infrastructure & data teams across Group IT.

Job Role & Responsibility:

Domain Competencies:

1. At least 3-5 years of technology experience & working knowledge of Banking Mobile Apps, their unique security features & API integration

2. 3-5 years' experience in securing IOS & Android Mobile Apps and its associated ecosystem. Must understand the nitty-gritties of IOS & Android native controls as well as Third Party components that have the potential to make the mobile app more secure.

3. Extensive knowledge and experience with designing and proposing solutions that combat Digital Fraud that typically takes place via Banking Mobile Apps

4. Deep knowledge of how to implement key controls for Mobile Apps especially on Native Apps and APIs (both Ingress & Egress)

5. Deep knowledge and/or Experience with Threat Modeling Banking Mobile Apps & it's integrated ecosystem.

6. Deep knowledge and/or experience with prescribing balanced Security Requirements for Banking Mobile Apps & it's integrated ecosystem.

7. Deep understanding of global and regional regulatory requirements related to banking and financial services (e.g., PCI-DSS).

8. Experience in implementing security solutions to ensure that Banking Mobile Apps comply with regulatory requirements and/or have minimal risks prior product releases.

9. Knowledge of API Security Standards implementation for secure interoperability between different banking systems

10. Deep knowledge and experience with designing & proposing People, Process & Technology controls to ensure secure build, deployment and distribution (to App Stores) of Banking Mobile Apps

11. Ability to assess and integrate third-party technology solutions into Banking Mobile Apps from a security perspective.

12. Understanding of Retail Banking Mobile App offerings, products, and processes

13. Familiarity with emerging banking technologies and trends (e.g., blockchain, digital currencies, e-checks, ML)

14. Knowledge & experience integrating industry best practice Fraud Management solutions for Banking Mobile Apps

Skills:

Technical Competencies:

1. Deep understanding of conducting Data Classification Asset Valuation activities

2. Knowledge of conducting Threat Modeling using frameworks of choice

3. Deep understanding of Application Security (OWASP Top 10 or similar), API Security & Mobile Security (Mobile OWASP Top 10)

4. Deep understanding of Infrastructure Security including but not limited to Containers, Virtual Machines, Operating Systems, Databases, and Interfaces such as payment switches, APIs, event-streaming systems, file transfer systems.

5. Experience with end-end to security requirements and solutioning via collaboration with peer architects, tech leads and associated stakeholders.

6. Experience in Development of standards, patterns, and best practices for reuse. Promotion of design adherence to bank policies, standards, architectural principles, and guidelines

7. Must be able to create security solution-oriented presentations for Senior Technical and/or Business Leaders

8. Must be able to tailor language and communication based on the audience

Behavioral Competencies

1. Delivery focused while ensuring the right balance of Customer Experience, Business Requirements, Performance, Reliability & Security

2. High energy, enthusiasm & passion

3. Excellent analytical & critical thinking skills.

4. Excellent stakeholder, time management & expectation management skills

5. Autonomous decision-making ability with minimal guidance

6. High learning potential

7. Ability to coach & mentor associate/junior architects.

Core Objectives & Key Results (OKRs)

1. Conduct Data Classification, Asset Valuation, Threat Modeling, Security Requirements & Patterns within realistically agreed timelines

2. Influence squads/teams to implement secure design to ensure risk reduction of the product prior to release & in the long run.

3. Deliver secure solutions within realistically agreed timelines.

4. Optimize Shift-Left processes within the team.

5. Ensure seamless governance within realistically agreed timelines.

6. Run education, socialization, and awareness workshops with squad/tribe members and/or peers.

7. Do specialized technical or soft skill learning courses and/or achieve certifications.

8. Excel at Collaboration, Ownership, Drive & Enterprising (CODE) values

9. Coach & mentor associate architects to improve the quality of the team and the product.

10. Introduce & implement innovative ways of working to deliver value within squads.

11. Engage in Stretch Assignments/Goldilocks Tasks to contribute value to the organization

Job Type: Contractual / Temporary

Pay: ₹1,500,000.00 - ₹2,500,000.00 per year

Work Location: In person