Overview/Key Responsibilities:
The Information Security Senior Specialist (Database) will work with Database Engineering, Database Operations, CISO and audit to ensure that security controls are defined, implemented and operating effectively.
Roles within Information Security may cover one or more areas of specialty:
1. Identity & Access Management (which may include, for example, authentication; access management & control; recertification etc.)
2. Information Security ("IS”) Operations (which may for example include, cyber threat operations; protection against data leakage etc.)
3. IS Technology (which may include IS architecture, IS engineering, cryptographic services etc.). Work includes:
4. Identifying and evaluating potential areas of Information Security threat by assessing the probability and impact, and implementing associated mitigations
5. Monitoring and contributing to the implementation of the Information Security strategy
6. Evaluating the adequacy and effectiveness of internal controls relating to Information Security risks
7. Ensuring appropriate procedures, policies and processes are in place, and aligned and agreed with relevant stakeholders
8. Configuration/security baselines
9. Developing appropriate, pragmatic strategies to deliver effective controls and Information Security management objectives and implementation across the bank
10. Managing client relationships and ensuring management focus on the Information Security agenda
Work includes:
11. Assessing security/configuration baselines
12. Reviewing/designing security controls to ensure it meets audit and CSO requirements
13. Evidencing (documentation) of control compliance,
14. Building security and resiliency into solutions with appropriate testing and reviewing throughout the delivery lifecycle
15. Ensuring maintainability and reusability of engineering solutions
16. Support PM, Migration Manager and application teams with implementation and Migration activities and tasks to support project delivery
Database Expertise:
Knowledge of relational databases, security configuration management, security monitoring and tooling.
Migration Process Development:
Work closely with the project/migration leads to develop robust migration processes (provide security input as required).
Ensure seamless integration of migration strategies with minimal disruption to ongoing operations.
Collaboration with Application Teams:
Support migration and project leads and application teams Plan and coordinate migrations, considering security dependencies and minimizing potential disruptions.
You will have: (Skills/Experience)
Experience:
17. Minimum of + years of relevant experience in information security roles.
18. Proven experience as a Technical Lead with a focus on Oracle and database management
19. Knowledge of IT Infrastructure Environments/ITIL would be advantageous.
20. Working knowledge of requirements management through to delivery, both Agile and Waterfall.
21. Experience within a tier banking experience ideally our Client infrastructure environments
22. Excellent self-starter, able to work in virtual global teams in a matrix organization.
23. Extensive analytical skills, flexibility regarding problem solving.
24. Open minded, able to share information, transfer knowledge and expertise to team members.
25. Able to work in fast paced environment.
26. Self confidence
You will be: (Skills/Competencies)
Qualifications:
27. CISA/CISM or equivalent security certification
28. Demonstrated success in audit remediation initiatives.
29. Excellent communication and collaboration skills.
Education:
Bachelor's degree in Computer Science, Information Technology, or related field.
Top attributes/competencies/skillset/qualities of the ideal candidate:
30. Self-starter evidenced through assertive and pro-active behaviors.
31. Ability to lead in fast paced, constantly changing environment.
32. Strong stakeholder management skills
33. Strong conflict management skills
34. Strong communication skills