Principal Security Architect

This job is with Standard Chartered Bank, an inclusive employer and a member of myGwork – the largest global platform for the LGBTQ+ business community. Please do not contact the recruiter directly.Job Summary• We are seeking a dedicated Principal Security Architect to strengthen our banking operations. In this pivotal role, you will collaborate closely with cross-functional teams to ensure our systems and applications are fortified against cyber threats. Your expertise will be instrumental in integrating security best practices into our technology infrastructure, safeguarding sensitive financial data, and ensuring compliance with regulatory standards. • As a Principal Security Architect, you will have the opportunity to lead initiatives that protect our digital assets and maintain the trust of our customers. Your contributions will directly impact the resilience and integrity of our banking services in an increasingly complex cybersecurity landscape. If you are passionate about cybersecurity and thrive in a collaborative environment, we invite you to join us in shaping the future of secure banking operations. • You are required to engage with the senior stakeholders within the Bank - Cybersecurity and otherwise. It is crucial that you have strong Security Architectural, Leadership and Technical Skills (in one or more Cybersecurity domains) to be successful in this role. You must have proven experience in all these three areas. Business Background • In the banking sector, ensuring robust cybersecurity measures is imperative to protect sensitive financial data, maintain customer trust and adhere to stringent regulatory requirements. The role of a Security Architect is pivotal in this landscape, responsible for designing and implementing security solutions that safeguard against sophisticated cyber threats such as data breaches, fraud, and malware attacks. • As financial institutions increasingly rely on digital platforms for transactions and client interactions, the Security Architect plays a crucial role in integrating security controls seamlessly into organization's technology infrastructure. This includes collaborating closely with IT teams, development groups, and compliance officers to ensure that security measures are not only effective but also compliant with industry standards and regulations such as GDPR, PCI-DSS, and local banking regulations. • Moreover, the Security Architect must stay abreast of emerging cybersecurity trends and technologies to proactively address potential vulnerabilities and adapt security strategies accordingly. By maintaining a proactive approach to cybersecurity, the Security Architect helps mitigate risks, protect sensitive financial information, and uphold the integrity of banking operations in an increasingly interconnected digital ecosystem. Key ResponsibilitiesCreate Security Architectures • Develop comprehensive security architectures roadmaps for our banking systems, platforms, and applications, ensure they align with industry standard and best practices, and achieve significant systemic risk reduction. Establish Security Architecture Methodologies and Frameworks • Establish security architecture frameworks (policies, standards, processes, procedures, guidelines, etc.) for various platforms. Security Architecture Governance • Participate in Enterprise Security Architecture governance forums. Collaborate with Delivery Teams • Work closely with development and IT teams to integrate security measures into the software development lifecycle (SDLC), ensuring that security is prioritized from design through deployment. Conduct Risk Assessments • Perform regular risk assessments and vulnerability assessments to identify potential security weaknesses and develop effective mitigation strategies. Achieve systemic risk reduction • Lead security domain practices to create security strategy for the domain, including baseline security architecture, target security architecture, roadmaps, risks, and mitigation plans. Evaluate and Recommend Security Technologies • Stay current with emerging security technologies and trends, evaluate their applicability to our environment, and recommend solutions that enhance our security posture. Key Requirements • Establish enterprise security architecture frameworks. • Assess compliance requirements driven by Legal, Regulatory and Mandatory requirements. • Perform Threat Modelling and identify mitigating controls. • Be an expert in one or more security domains, e.g., Identity and Access Management, Network Security, Cloud and Container Security, Application Security, Automation, Security Products, Platform and Infrastructure Security, Data Security and Cryptography, AIML and Emerging Risks or Cyber Defence Technologies. Key Stakeholders • CISO and ICS functions • Lines of Business and SC Ventures • Tech Organization and Platform Owners • Engineering Teams • Compliance and Risk Management • OTCR and Audit • Suppliers and Partners Qualifications• Education-Bachelor's degree in computer science or related fields. • Certifications-Cissp or equivalent certificates. • Languages-English Skills and Experience• Information Security Architecture • Leadership Skills • Information Security Technologies • Software Engineering • Software Development • Emerging Technologies About Standard CharteredWe're an international bank, nimble enough to act, big enough for impact. For more than 170 years, we've worked to make a positive difference for our clients, communities, and each other. We question the status quo, love a challenge and enjoy finding new opportunities to grow and do better than before. If you're looking for a career with purpose and you want to work for a bank making a difference, we want to hear from you. You can count on us to celebrate your unique talents and we can't wait to see the talents you can bring us. Our purpose, to drive commerce and prosperity through our unique diversity, together with our brand promise, to be here for good are achieved by how we each live our valued behaviours. When you work with us, you'll see how we value difference and advocate inclusion. Together we: Do the right thingand are assertive, challenge one another, and live with integrity, while putting the client at the heart of what we do Never settle,continuously striving to improve and innovate, keeping things simple and learning from doing well, and not so well Are better together,we can be ourselves, be inclusive, see more good in others, and work collectively to build for the long term What we offerIn line with our Fair Pay Charter,we offer a competitive salary and benefits to support your mental, physical, financial and social wellbeing. Core bank funding for retirement savings, medical and life insurance,with flexible and voluntary benefits available in some locations. Time-offincluding annual leave, parental/maternity (20 weeks), sabbatical (12 months maximum) and volunteering leave (3 days), along with minimum global standards for annual and public holiday, which is combined to 30 days minimum. Flexible workingoptions based around home and office locations, with flexible working patterns. Proactive wellbeing supportthrough Unmind, a market-leading digital wellbeing platform, development courses for resilience and other human skills, global Employee Assistance Programme, sick leave, mental health first-aiders and all sorts of self-help toolkits A continuous learning cultureto support your growth, with opportunities to reskill and upskill and access to physical, virtual and digital learning. Being part of an inclusive and values driven organisation,one that embraces and celebrates our unique diversity, across our teams, business functions and geographies - everyone feels respected and can realise their full potential.