Job Description

Overall Purpose of the Position 

The IT Enterprise Architect (Networks and Security) role is to design and develop mission critical IT solutions, strengthen and manage the Bank's security posture and maintain compliance to generally accepted security practices and standards. The incumbent shall be responsible for establishing and maintaining a technology roadmap for Bank’s IT Security and networks communications. The IT Enterprise Architect will be the technical reference point and assist the Senior Manager in the day-today operations of two main units, namely Networks and Communications and IT Security Operations. The individual shall work closely with the other teams within the technology department to achieve the shared corporate goals with security in mind.

 Operational Responsibilities

• To serve as an Information Technology Security and networking specialist entrusted with the objective to continuously improve the Bank’s Infrastructure and IT security posture;
• To design, implement, manage and monitor IT infrastructure, which includes Data, Voice and IoT networks, and IT security solutions, both on premises and in cloud, while ensuring that appropriate security levels are maintained in adherence to industry regulations and compliance;
• To provide sound network and security guidance and advice on best practices to technology teams and management and oversee the various security compliance requirements in accordance with established Bank Information Security policies, standards and procedures; 
• To lead the architectural reviews of the proposed solutions and requests for change in order to ensure that the solutions and changes are in line with the established security policies and standards and where necessary make expert recommendations to align these activities; 
• To take an active role in IT disaster recovery planning and execution, address any shortcoming to improve the process and contribute in the periodic updates;
• To research and advise on new threats and attack vectors and the implementation of countermeasures and participate on working groups such IT Enterprise Architecture, IT policies and IT security and Risk Working Groups;
• To prepare technical specifications and participate in the adjudication process through the established procurement procedures; 
• To oversee that technical documentation and blueprints reflect any changes done on the IT infrastructure;.

General Responsibilities

• To assist in the management of projects and activities as may be directed by the Senior Manager, Head of IT Infrastructure and Operations or Chief Technology Officer from time to time;
• To assist in the preparation of the Unit’s business plan and underlying budgets. This includes the development of strategies, preparation of action plans and progress reports;
• To ensure compliance with Bank’s policies, guidelines and underlying procedures at all times;
• To ensure a high quality/standard of work and service throughout;
• To attend training as requested; 
• To develop and submit both technical, InfoSec and administrative reports;

Qualifications, Skills & Competencies 

Mandatory

Skill

• Possess good communication skills.
• Excellent analytical, troubleshooting & interpersonal skills.
• A team player, reliable, and can work on his/her own initiative.

Experience

• Minimum of ten years’ experience in managing highly complex IT environments, implementing IT security and Infrastructure projects and providing guidance and oversight to technical teams supporting core security technologies and services, with proven record of excellence within the job.
• Minimum of 10 years’ experience in the data networking and telephony industry, with a focus on TCP/IP Networks and Layer 2 / Layer 3 implementations and support in enterprise environments.
• Experience in DC network technologies: Load Balancing, Network infrastructure to support Hypervisor Virtual Networking.
• Experience in implementing and managing SIP gateway (SBC) and Enterprise IP telephony.
• Deep understanding of Application Protocols - HTTP, HTTPS, FTPes, SMTP, SNMP, SSL and transport layer encryption.
• Experience in cloud networking infrastructure technologies.
• Demonstrate a sound technical background with proven hands-on experience on leading security and networking technology brands.
• Experience in cloud networking infrastructure technologies. 
• Advanced knowledge in TCP/IP, switching, routing including BGP and OSPF, Enterprise ISP multi-homing architectures, DC network technologies: Load Balancing, network segmentation, firewalls, IDS/IPS, malware analysis and log correlation, server and desktop operating systems, vulnerability assessments, endpoint security, encryption and other areas of security engineering.
• Knowledge on common coding security vulnerabilities.
• Experience in security management frameworks such as ISO 27001.
• Experience in Security Incident Management and response.
• Experience in supplier management.

Qualification

• Possess a degree in Computer Science, Information technology or related field or relevant industry recognised certifications.

 Desirable

Skill

• Scripting and automation 
• Code Analysis

Experience

• Project Management
• Cloud Technology implementations

Qualification

• Preferably holding an Information Security or Networks certifications such as CISSP, CEH, CISM, CCIE or equivalent
• Master’s degree in Information Security or related fields will be considered an asset.

Position level (1 being the highest level)

1. Head of Department
2. Managerial & Specialist Positions
3. Middle Management & Specialist Positions
4. Technical & Clerical Positions