Manager (Cyber Security Architecture & Solution)

Architecture Management

• Develop and maintain the Cyber Security architecture for existing and planned security products for the organization.
• Develops, reviews, and approves installation requirements for Infrastructure components ( such as servers, LANs, WANs, VPNs, firewalls, routers, and related network devices) and Business Applications.
• Determines security protocols by evaluating business strategies and requirements.
• Develops project timelines for security control implementation for ongoing system upgrades.
• Reviews system security measures and implements necessary enhancements.
• Conducts regular tests and monitoring of network security.
• Verifies security systems by developing and implementing test scripts.
• Updates job knowledge by tracking and understanding emerging security practices and standards, participating in educational opportunities, reading professional publications, and participating in professional organizations.

Management of Third Party Risk Management Program

• Design and implement third-party risk operating model, to identify, evaluate, and provide solutions to evaluate complex business and technology risks.
• Track and communicate engagement performance and planning to management,
• identify and address key third party related risks and areas of concerns associated with new and existing third-party relationships
• Driving appropriate stakeholder participation in evaluation of risk and control effectiveness
• Monitoring and maintaining Key Performance Indicators (KPIs) and Key Risk Indicators (KRIs) for appropriate escalation to stakeholders
• Developing a TPRM related dashboard that highlights key TPRM program metrics and statistics (e.g., third-party portfolio risk, cyber security incidents, program efficiencies/value add)

• Effectively communicate technological issues to diverse audiences, both in writing and verbally.
• Apply a risk-based approach to planning, executing, and reporting on compliance assessment process.
• Comprehend technical language and to confer, analyse and write in an objective, lucid manner.
• Work independently and prioritize multiple tasks and adapt to needed changes.
• Knowledge of Cyber and cloud security standard frameworks, architecture, design, operations, controls, technology, solutions, and service orchestration.
• Understands Risk assessment and management methodology.
• Prior experience of developing and implementing enterprise governance, risk, and compliance strategy and solutions.
• Prior experience of Security project management and planning.

Information Systems or Cybersecurity engineering or related field