Description
- Proven expertise in Cybersecurity within largescale regulated financial institutions or similarly complex environments
- Deep technical knowledge of engineering platforms including CICD systems build tools artifact repositories runtime environments and developer tooling
- Strong experience with DevSecOps practices including secure pipeline design integration of security scanning tools and automation of security controls
- Strong knowledge and understanding of service mesh cryptography network security application security vulnerability management and risk management
- Demonstrable ability to conduct threat modelling platform security assessments and gap analysis
- Experience building and implementing maturity models frameworks or roadmaps in complex enterprise environments
- Strong stakeholder management skills with the ability to influence senior leadership and drive change across federated technology teams
- Excellent communication skills with the ability to translate technical risk into business impact
Good to have
- Professional certifications such as CISSP CISM CCSK CCSP or equivalent
- Handson knowledge of cloud security AWS Azure GCP and container orchestration platforms eg Kubernetes
- Experience in international and diverse environments with exposure to regulatory engagement
- Familiarity with engineering excellence practices such as SLSA supply chain security SBOM or secure developer tooling initiatives
Skills
Mandatory Skills : Application Security (application security framework/ threat modelling/ Secure SDLC/ DevSecOps/Application Security Architecture Review), CI/CD Architecture, Network Security Architecture, Risk Management (Credit/Market/IT/Ops)
