The Senior Security Architect (SSEA) reports to the Head of Architecture while maintaining accountability to the Delivery Head and Lead in the business/functional domain. This role requires deep technical expertise, potential leadership qualities, and a solution-oriented mindset.
The SSEA will be engaged in Technology Platforms with a focus on Data, specifically within areas such as Databases, Real-Time Streaming (RTS), Data Integration, and Advanced Analytics. The chapter is responsible for developing, implementing, and enforcing enterprise architecture and solutions practices, standards, emerging patterns, and technologies to deliver world-class solutions while building a resilient, agile, and secure architectural landscape aligned with client's business strategy.
Key Responsibilities:
- Possess working knowledge of Data Warehouse, Databases, Streaming, and Data Analytics technologies, including Hadoop, Hive, Apache Ranger, MongoDB, Oracle, Redis, Kafka, Power BI, Tableau, and SAS
- Secure systems within the domain to comply with regulatory requirements and minimize risks prior to product releases
- Conduct Data Classification and Asset Valuation activities
- Experience in Threat Modeling using chosen frameworks
- In-depth understanding of Application Security (OWASP Top 10 or equivalent), API Security, and Mobile Security
- Strong knowledge of Infrastructure Security, including Containers, Virtual Machines, CI/CD pipelines, Operating Systems, Databases, and Interfaces such as payment switches and APIs
- Collaborate with architects, tech leads, and stakeholders to develop security requirements and solutions
- Create security solution-oriented presentations for senior technical and business audiences
- Promote adherence to bank policies, standards, architectural principles, and guidelines
Requirements
Key Requirements:
- A focus on delivery while balancing Customer Experience, Business Requirements, Performance, Reliability, and Security
- Strong analytical and critical thinking skills
- Excellent stakeholder, time management, and expectation management abilities
- Capability for autonomous decision-making with minimal guidance
- High learning potential and enthusiasm for mentoring associate/junior architects
- Ability to influence teams toward secure design implementation for risk reduction
Core Objectives & Key Results (OKRs):
- Coach and mentor junior architects to boost team quality
- Conduct various security-related assessments (Data Classification, Threat Modeling, etc.) within agreed timelines
- Optimize processes and ensure governance is maintained within realistically agreed timelines
- Run educational workshops to enhance security awareness within squads and tribes
- Engage in specialized training and pursue certifications to enhance skills
