Application Security & IAM Solution Architect, VP #183203

Application Security & IAM Solution Architect, VP #183203

First Boston Credit Suisse
10-13 years
Not Specified

Job Description

Your field of responsibility
Data Protection and Application Security is a global organization spread across 5 locations: Zurich, London, Bangalore, Pune and Poland (Wroclaw and Warsaw), 100+ people in total.
Enterprise Security Services (ESS) organization has global responsibility for the design, delivery and operational support for business critical security services within Credit-Suisse. Data Protection and Application Security (DPAS) organization within ESS is responsible for the design and delivery of the key products and services related to information security. This includes entry server security (DMZ: De-militarized Zone, WAF: Web Application Firewall, SSO: Single Sign-On, reverse proxy), federation services (internal and external), token management, secrets management, data leakage prevention (DLP), information right management (IRM), cloud services security (M365, SaaS, Azure, AWS), public key infrastructure (PKI).
. Preparing and presenting strategy that define Application Security activities in the Bank, mainly for Entry Server and Federation Services.
. Entry point for other Credit Suisse teams to negotiate and plan strategy for Enterprise Services and controls (Federation, Multi Factor Authentication, Ping/AzureAD, API security) and Client Entry Services (Internet Facing Application login, Client Authentication, Fraud Behavior Analysis and similar).
. Data Protection service needs (such as secrets management for cloud and on-premises, DLP for M365 and other cloud services, AIP/IRM).
. Identifying gaps and deficiencies in the Bank's security landscape and working with other architecture functions on defining strategy to address them.
. Delivering written Requirements Specification documents that describe solution-agnostic requirements in necessary and sufficient detail.
. Business case development and increase the overall knowledge and awareness of Secure products and services
. Identifying appropriate, feasible and effective solutions to requirements that have been identified.
. Negotiate and challenge vendors to the best cover identified requirements, ensuring cost effectiveness of the designed solutions and ensuring compliance with security standards during the process.
. Ensuring that individual security solutions form an effective, holistic security mechanism.
. Maintain and prioritize features for product roadmaps, to support new demand and Service Management needs while ensuring conformity to regulatory environment.
. Actively participating in design of technical blueprints for the solution based on requirements from various partners including: Business Customers, Compliance, Risk, IT Security and IT Architecture
. Documenting the conceptual, physical and logical configuration of vendor products, in-house solutions and other technical components with necessary and sufficient detail.
. Responsibility for audit and compliance areas such as oversight and delivery of internal and/ or external audit actions ensuring timely and high quality delivery as well as resolution of audit and compliance actions/ issues
. Provide technical product expertise for assigned products from portfolio identify and develop new requirements and services to ensure ever growing value from product and services portfolio
. Working in a virtual-team environment across two time zones. Supporting many projects simultaneously.
Your future colleagues
The department values Diversity and Inclusion (D&I) and is committed to realizing the firm's D&I ambition which is an integral part of our global cultural values.
Your skills and experience
To excel in this role, you should possess:
  • Proven track record of 10+ years overall experience in IT and 4+ years experience in an equivalent role as IT Security Architect and or Security Consulting level role
  • Expert level understanding of information security (especially: Web application / authentication security and federation services) for both on premise and cloud based services is essential a depth and breadth of supporting technical knowledge or specialisms is advantageous
  • Excellent knowledge of Application/Cloud Security concepts with direct experience of Modern Authentication mechanisms being advantageous
  • Experience in taking accountability for the challenges in your product portfolio.
  • Hardworking and forward-thinking personality.
  • Positive relationship building and consultation skills as well as an ability to build and maintain positive working relationships with peers, management, key business partners and clients.
  • High standard of communication (verbal/written) at each level, including senior management level

  • Experience in implementing security solutions in financial industry.
  • Global role experience in large scale institutions.
  • Leadership experience (direct or indirect).
  • Engineering or security certification is an advantage: TOGAF, CISSP, CISA, CSSLP, MCSE, RHCE, CCNE.
  • Dedication to fostering an inclusive culture and value diverse perspectives

Similar Jobs

Career Advice to Find Better