Senior Security Architect – Application Security Specialist

Senior Security Architect – Application Security Specialist
Posted 1 year ago
Senior Security Architect – Application Security Specialist
Mission context The mission of our Cybersecurity department is to:
•    Deliver best fit security services and solutions to protect business operations and assets;
•    Build up and support the implementation of a flexible information risk management strategy for our businesses in the scope of BNP Paribas Fortis, in line with BNP Paribas Group;
•    Support the information security maturity improvement programs;
•    Develop security architectures which facilitate business objectives and support the business strategy ensuring appropriate protection of information assets.
Within this department, the Security Architecture team designs security measures for new services, applications or infrastructure; assesses information security risks on projects and assets; supports any business or initiative by providing security advice on request; documents security needs and reference architectures.

We are looking for a security architect to help IT and business teams to build and to secure the evolution of our banking applications and infrastructure, mainly for projects around infrastructure components integration, telecom and facility equipment, hosting capabilities and infrastructure-related landscape. We support BNP Paribas Group from the heart of Europe with a deep security expertise within our team.

Function  description
  • Establish and maintain enterprise security models, architecture, patterns and guidelines;
  • Support IT architects to develop “secure by-design” application architectures based on security patterns, requirements and risk analysis and ensure project conformity with security rules and expectations;
  • Develop durable and influencing relations with IT and Business responsible, enabling continual promotion of long-term cybersecurity goals;
  • Contribute to the overall evolution of cybersecurity adoption throughout the enterprise. Influence security practice in the IT and business community through knowledge sharing sessions;
  • Support management in the development of strategic vision and roadmap relating to security services and write high quality management memos;
  • Be open and constructive in responding to ad-hoc requests from security colleagues, IT management and business partners.
Language requirements Dutch .          
French Good (verbal)
English Influencing level (written, verbal, presentations)
Travel Occasional travels to Paris
  • Expectation: 50% on site & 50% homeworking
Required experience / knowledge 10 years of professional experience in Information Security.
Business/Technical experience mandatory •    Demonstrable communication and influencing skills written, verbal and strategic;
•    Deep knowledge of general information security topics and their applications in real-world environments, amongst other regarding Cloud-native or Cloud-ready components ;
•    Experience in working with architecture models covering business, IT technical or operational views;
•    Experience in security risk assessments, risk analysis, audits, mitigation plan development etc.
•    Focus on infrastructure-related landscape and end-users-oriented services/equipment.
  • Experience in banking environment.
  • Good knowledge of information security standards & frameworks (e.g. ISO 2700x, NIST, SANS);
  • Good understanding of IT security technology and processes (e.g. IAM, PKI, VDI, secure networking, web infrastructure, API security);
  • Experience in IT architecture methodologies and structured security architecture methodologies (e.g. TOGAF, SABSA); creation of conceptual and logical reference architecture documents;
  • In-depth understanding of the threats applicable to Financial Services.
Soft skills
  • Continually curious, self-starter, collaborative, pro-active and team player;
  • Approachable security advocate, actively promoting security architecture and risk based approach;
  • Integrity and fairness in weighing options, impacts, risk and actions;
  • Learn continuously, provide constructive peer-reviews, give and accept feedback;
  • Success in dynamic and multi-cultural enterprise environment
  • Statements like “we cannot do that” or “it has been tried before” inspire you to dig deeper and to help solving the problem in new ways.

Apply Online

A valid email address is required.
A valid phone number is required.
error: Content is protected !!