IT Security Architect

1) Drive and provide technical leadership for on-going delivery of application security solutions for Maybank Group. 2) Have sufficient application security experience to tightly cooperate with system and infrastructure team engineers to deliver the solutions on a wide scale covering all the system and infrastructure aspects. 3) Manage the delivery and implementation of application security projects in cooperation with various stakeholders, and define, monitor and control project work plan, milestones, schedule and budgets. 4) Participate in Cyber Defense Capabilities Program to collaborate and co-ordinate with internal and external engineers, analysts and other key stakeholders on the cyber defense architecture, requirements, design, implementation and BAU transition of application security solutions, and ensure consistency and compliance with relevant architectural principles, policies and standards. 5) Determine security requirements by evaluating business strategies and requirements. 6) Research and study information security standards and architecture/platform, conduct enterprise application security and vulnerability analysis and risk assessments, and consult with operational department on application security controls to ensure compliance with various regulatory and compliance requirements. 7) Participate in investigation, evaluation, selection of new approaches, methods and next-generation security technologies, conduct research and provide documented and evaluated architectural options to meet requirements. 8) Present and obtain endorsement on complex designs for critical application security infrastructure from senior management at formal review boards. 9) Participate in product and vendor selection providing the security evaluation of application security products, options and responses to tenders. 10) Ensure adequate security measures are implemented for application security solutions prior deployment such as vulnerability assessment, system hardening, privileged ID handover, patching, load-testing, etc. 11) Create designs and support documentation for the delivered infrastructure. Raise change records and execute activity while adhering to Bank’s change management processes and procedures. 12) Support and perform trouble-shooting of application security devices and solutions delivered during transition/handover period. 13) Liaise with various stakeholders and subject matter experts to understand requirements, challenges and risks, and provide application security architecture design review and guidance on initiatives to further improve the development of security posture. 14) Builds strong relationships and communication channel with key internal to ensure that all relevant areas of the business are represented in the design of solutions within the area of responsibility. 15) Maintain consistent relationship and operation engagement with Security solution principals, distributors, vendors, and partner for latest security technology updates and cyber security trend.