JOB SUMMARY

• We are seeking a dedicated Security Architect to strengthen our banking operations through the design and implementation of robust security solutions. In this pivotal role, you will collaborate closely with cross-functional teams to ensure our systems and applications are fortified against cyber threats. Your expertise will be instrumental in integrating security best practices into our technology infrastructure, safeguarding sensitive financial data, and ensuring compliance with regulatory standards.
• As a Security Architect, you will have the opportunity to lead initiatives that protect our digital assets and maintain the trust of our customers. Your contributions will directly impact the resilience and integrity of our banking services in an increasingly complex cybersecurity landscape. If you are passionate about cybersecurity and thrive in a collaborative environment, we invite you to join us in shaping the future of secure banking operations.

BUSINESS BACKGROUND

• In the banking sector, ensuring robust cybersecurity measures is imperative to protect sensitive financial data, maintain customer trust and adhere to stringent regulatory requirements. The role of a Security Architect is pivotal in this landscape, responsible for designing and implementing security solutions that safeguard against sophisticated cyber threats such as data breaches, fraud, and malware attacks.
• As financial institutions increasingly rely on digital platforms for transactions and client interactions, the Security Architect plays a crucial role in integrating security controls seamlessly into organization’s technology infrastructure. This includes collaborating closely with IT teams, development groups, and compliance officers to ensure that security measures are not only effective but also compliant with industry standards and regulations such as GDPR, PCI-DSS, and local banking regulations.
• Moreover, the Security Architect must stay abreast of emerging cybersecurity trends and technologies to proactively address potential vulnerabilities and adapt security strategies accordingly. By maintaining a proactive approach to cybersecurity, the Security Architect helps mitigate risks, protect sensitive financial information, and uphold the integrity of banking operations in an increasingly interconnected digital ecosystem.

KEY STAKEHOLDERS

• Lines of Business and Ventures
• Tech Organization and Platform Owners
• Engineering Teams
• Compliance and Risk Management
• Executive Management
• Audit
• Suppliers and partners

RESPONSIBILITIES

• A Security Architect will be responsible for one or more of the following at the same time.

Create Security Architectures

• Develop comprehensive security architectures for our banking systems, platforms, and applications, ensure they align with industry standard and best practices.

Automate Security Design

• Implement and manage blueprints templates to standardize and automate security measures and controls across security domains and platforms.
• Establish Security Architecture Methodologies and Frameworks
• Establish security principles, policies, standards, methodologies, and frameworks for various platforms used by the Group to run its business.

Security Architecture Governance

• Participate in the governance forums of Business Units to ensure Enterprise Security Architecture practices are carried out and provide the necessary support to enable Security Architecture practices within the Lines of Businesses.

Collaborate with Delivery Teams

• Work closely with development and IT teams to integrate security measures into the software development lifecycle (SDLC), ensuring that security is prioritized from design through deployment.

Conduct Risk Assessments

• Perform regular risk assessments and vulnerability assessments to identify potential security weaknesses and develop effective mitigation strategies.

Achieve systemic risk reduction

• Lead security domain practices to create security strategy for the domain, including baseline security architecture, target security architecture, roadmaps, risks and mitigation plans.

Evaluate and Recommend Security Technologies

• Stay current with emerging security technologies and trends, evaluate their applicability to our environment, and recommend solutions that enhance our security posture.

KEY REQUIREMENTS

• Proven experience as a Security Architect or in a similar role within information security.
• Strong understanding of secure development practices, CI/CD methodologies as well as application security. Hands-on experience with integrating security into the development lifecycle and secure development pipelines.
• Extensive Knowledge and hands-on experience with Infrastructure as a code (e.g Terraform), Policy as Code frameworks (e.g. OPA, HashiCorp Sentinel) and configuration management tools (e.g. Ansible)
• Familiarity with Blueprints templates for securing architecture is a plus.
• Excellent analytic and problem-solving skills with a proactive mindset.
• Strong communication skills, capable of conveying complex security concepts to technical and non-technical stakeholders.
• Effective collaboration, capable of working with cross-functional teams, including IT, legal, compliance, and business units.
• Demonstrated ability to adapt to changing technologies, security threats, and business needs, while maintaining a proactive approach to security.

Qualification

• Education     Bachelor’s degree in computer science, Information Security, or in a related field.
• Training     Security Architecture and Security Design relevant training
• Membership     Membership in the following will improve your application: ISSA, ISACA, CSA, ISC2, IAPP
• Certifications     Certifications in the following will improve your application: CISSP, CISM, CIA, OSCP, CCSP, CEH, CCSP
• Languages     English

Role Specific Technical Competencies

• Information Security Architecture
• Information Security Technologies
• Software Engineering 
• Software Development
• Emerging Technologies

About Standard Chartered

We're an international bank, nimble enough to act, big enough for impact. For more than 170 years, we've worked to make a positive difference for our clients, communities, and each other. We question the status quo, love a challenge and enjoy finding new opportunities to grow and do better than before. If you're looking for a career with purpose and you want to work for a bank making a difference, we want to hear from you. You can count on us to celebrate your unique talents and we can't wait to see the talents you can bring us.

Our purpose, to drive commerce and prosperity through our unique diversity, together with our brand promise, to be here for good are achieved by how we each live our valued behaviours. When you work with us, you'll see how we value difference and advocate inclusion.

Together we:

• Do the right thing and are assertive, challenge one another, and live with integrity, while putting the client at the heart of what we do
• Never settle, continuously striving to improve and innovate, keeping things simple and learning from doing well, and not so well
• Are better together, we can be ourselves, be inclusive, see more good in others, and work collectively to build for the long term

What we offer

In line with our Fair Pay Charter, we offer a competitive salary and benefits to support your mental, physical, financial and social wellbeing.

• Core bank funding for retirement savings, medical and life insurance, with flexible and voluntary benefits available in some locations.
• Time-off including annual leave, parental/maternity (20 weeks), sabbatical (12 months maximum) and volunteering leave (3 days), along with minimum global standards for annual and public holiday, which is combined to 30 days minimum.
• Flexible working options based around home and office locations, with flexible working patterns.
• Proactive wellbeing support through Unmind, a market-leading digital wellbeing platform, development courses for resilience and other human skills, global Employee Assistance Programme, sick leave, mental health first-aiders and all sorts of self-help toolkits
• A continuous learning culture to support your growth, with opportunities to reskill and upskill and access to physical, virtual and digital learning.
• Being part of an inclusive and values driven organisation, one that embraces and celebrates our unique diversity, across our teams, business functions and geographies - everyone feels respected and can realise their full potential.