Security Architect - Ciudad de México - Grupo Santander México

    Grupo Santander México
    Grupo Santander México Ciudad de México

    hace 1 semana

    Default job background
    De jornada completa
    Descripción

    Security Architect

    Country: Mexico

    Position Summary

    The role will be responsible for supporting the Information Security reference architecture and controls review for all of Santander entities.

    Essential Duties and Responsibilities

    • Assess architectural patterns for service account authentication, Privileged Access Management, secdevops pipeline, security logging and monitoring, audit logging, and compliance guidance and monitoring.
    • Responsible for protecting the Bank, customers and employees by mitigating and identifying technology threats to Santander.
    • Provide expertise for cyber security technical and non-technical solutions; review and provide guidance enabling business system while leveraging solutions such as Platform as a Service (PaaS), Infrastructure as a Service (IaaS) and Software as a Service (SaaS) in a manner that adheres to Santander information security policy and standards.
    • Review and approve target state deployment topology, High-Level Architecture and data flows
    • Share technology expertise with application architects and provide consultative support to application teams including assessment of connectivity requirements, VNet/VPC, and subnet design and recommendations

    Education and Experience

    • At least 10 years of Experience (Infosec Experience)
    • 5 Years in Architecture Experience
    • Designed application authentication and authorization solutions including Single-SignOn, Multi-Factor Authentication, OAuth, OpenID Connect, and related technologies.
    • Experience with Scrum, Kanban and SAFe Agile practices and strong aptitude to work in a DevOps culture and environment.
    • Full-stack development experience building application software, test automation, and infrastructure as code
    • Hands-on experience with cloud automation frameworks (Terraform, Ansible) and cloud provided automation tools (e.g. Azure Resource Manager Templates).
    • Hands-on work experience working with SOAP and REST APIs, microservices design
    • Experience in network topologies and multi-tier architecture
    • Familiarity with load balancing technologies - ILB (Internal Load Balancers), Application Gateway, WAF (Web App Firewall), F5 appliance solutions, etc.
    • Familiarity with network security principles (Network Security Groups, Application Security Groups), Private Link Services, Service Endpoint, Service Tags, etc.

    Competencies

    • Communication.
    • Problem Solving.
    • Problem Analysis.
    • Negotiation.
    • Accountability.
    • Stress management.
    • Decision making.