Senior Security Architect – Application Security Specialist

Senior Security Architect – Application Security Specialist

Freelance

Brussels

Posted 1 year ago

Senior Security Architect – Application Security Specialist
Mission context	The mission of our Cybersecurity department is to: • Deliver best fit security services and solutions to protect business operations and assets; • Build up and support the implementation of a flexible information risk management strategy for our businesses in the scope of BNP Paribas Fortis, in line with BNP Paribas Group; • Support the information security maturity improvement programs; • Develop security architectures which facilitate business objectives and support the business strategy ensuring appropriate protection of information assets. Within this department, the Security Architecture team designs security measures for new services, applications or infrastructure; assesses information security risks on projects and assets; supports any business or initiative by providing security advice on request; documents security needs and reference architectures. We are looking for a security architect to help IT and business teams to build and to secure the evolution of our banking applications and infrastructure, mainly for projects around infrastructure components integration, telecom and facility equipment, hosting capabilities and infrastructure-related landscape. We support BNP Paribas Group from the heart of Europe with a deep security expertise within our team.
Function description	Establish and maintain enterprise security models, architecture, patterns and guidelines; Support IT architects to develop “secure by-design” application architectures based on security patterns, requirements and risk analysis and ensure project conformity with security rules and expectations; Develop durable and influencing relations with IT and Business responsible, enabling continual promotion of long-term cybersecurity goals; Contribute to the overall evolution of cybersecurity adoption throughout the enterprise. Influence security practice in the IT and business community through knowledge sharing sessions; Support management in the development of strategic vision and roadmap relating to security services and write high quality management memos; Be open and constructive in responding to ad-hoc requests from security colleagues, IT management and business partners.
Language requirements	Dutch		.
	French		Good (verbal)
	English		Influencing level (written, verbal, presentations)
Travel	Occasional travels to Paris
Telework	Expectation: 50% on site & 50% homeworking
Required experience / knowledge	10 years of professional experience in Information Security.
	Business/Technical experience	mandatory		• Demonstrable communication and influencing skills written, verbal and strategic; • Deep knowledge of general information security topics and their applications in real-world environments, amongst other regarding Cloud-native or Cloud-ready components ; • Experience in working with architecture models covering business, IT technical or operational views; • Experience in security risk assessments, risk analysis, audits, mitigation plan development etc. • Focus on infrastructure-related landscape and end-users-oriented services/equipment.
		preferable		Experience in banking environment. Good knowledge of information security standards & frameworks (e.g. ISO 2700x, NIST, SANS); Good understanding of IT security technology and processes (e.g. IAM, PKI, VDI, secure networking, web infrastructure, API security); Experience in IT architecture methodologies and structured security architecture methodologies (e.g. TOGAF, SABSA); creation of conceptual and logical reference architecture documents; In-depth understanding of the threats applicable to Financial Services.
Soft skills	Continually curious, self-starter, collaborative, pro-active and team player; Approachable security advocate, actively promoting security architecture and risk based approach; Integrity and fairness in weighing options, impacts, risk and actions; Learn continuously, provide constructive peer-reviews, give and accept feedback; Success in dynamic and multi-cultural enterprise environment Statements like “we cannot do that” or “it has been tried before” inspire you to dig deeper and to help solving the problem in new ways.

error: Content is protected !!