Summary of the position:

The cyber Security Architect is a senior-level position responsible for planning, designing, testing, implementing and maintaining our organization's network security infrastructure. He/She also evaluates the security of the organization's systems for vulnerabilities. He/She participates to penetration tests, risk analyses on LANs, WANs, and VPNs. He/She also determines the efficacy and efficiency of routers, firewalls, and comparable systems, they also evaluate these systems.

Main responsibilities:

• Design, develop, and implement secure system architectures.
• Embed security principles into the design of system architectures to mitigate the risks posed by new technologies and business practices.
• Design artefacts, spanning design, development, and implementation, into enterprise systems that describe security principles and how they relate to the overall enterprise system architecture.
• Perform routine activities related to the periodic review and audit activities of infrastructure security systems and maintains documentation of security standards and procedures.
• Gaining a total understanding of the organization's technology and information systems
• Planning, researching, and designing reliable, powerful, and flexible security architectures for all IT projects
• Defining, creating, implementing, and maintaining all needed corporate security policies and procedures, making sure that all employees abide by them
• Developing requirements for all IT assets including routers, firewalls, local area networks (LANs), wide-area networks (WANs), virtual private networks (VPNs), and any other related network devices
• Reviewing and approving the installation of all firewalls, VPN, routers, servers, and IDS scanning technologies
• Preparing cost estimates for all cybersecurity measures and identifying any potentialintegration issues
• Providing technical guidance and supervision for security teams
• Taking charge of any security awareness programs and educational efforts to better prepare non-IT personnel
• Responding immediately to any security-related incidents (e.g., data breaches, viruses, phishing scams)
• Updating and upgrading the organization's security systems as needed
• Production Level 3 escalation support for Network and Security infrastructure.

Legal and Regulatory Responsibilities:

• Comply with all applicable legal, regulatory and internal Compliance requirements, including, but not limited to, the Singapore Compliance manual and Compliance policies and procedures as issued from time to time; Financial Security requirements, including, but not limited to, the prevention of Financial Crime and Fraud including reporting obligations to the Money Laundering Reporting Officer/Compliance Officer.
• Maintain appropriate knowledge to ensure to be fully qualified to undertake the role. Complete all mandatory training as required to attain and maintain competence.

Secondary duties:

• Any other duties may be assigned

Job Specific Environment and/or Organization

• Fluent in English written and spoken
• Working hours will be in rotating shifts and primarily to cover Europe business hours
• On-call support will be expected on a rotational basis on both weekdays and weekends

Requirements

Mandatory track record

• Minimum 08 years of experience in managing IT systems environment with about 05 years of experience in financial institutes.
• Either have a Bachelors' degree in any of the below:

1. Computer Science
2. Information Technology
3. Programming & Systems Analysis
4. Science (Computer Studies)

• minimum 3 years' of work experience as a Cybersecurity Architect or Engineer.
• Subject matter expert on Systems , Network and Security.
• Knowledge and/or hands on working experience with emerging technologies.
• Excellent communication, interpersonal and logical skills.
• Customer serviceoriented and a strong team player.
• Ability to work under pressure and a commitment to solving issues.

Technology / Product Experience (Must have)

Cisco: ACI, Nexus, Catalyst, DNAC, ISE , iOS, NXOS

Arista: Switches, EOS

Fortinet: Firewall, IPS

F5: LTM, ASM, TMOS

Infoblox: DNS, DHCP

Skyhigh: Proxy

Ivanti:Remote access

Checkpoint:Firewall, MDS

Trendmicro:IPS/IDS

Tools/ Product Experience: (Good to Have)

Programming:Python/Bash/Ansible

Tools: Wireshark/Tshark/Netflow