Senior Ethical Hacker leading assessments of Bank of America's cyber security systems for applications and technologies. Collaborating with teams to enhance security controls and mitigate vulnerabilities.
About the role
- Enterprise Security Architect specializing in Digital Workspace security at Novartis. Responsible for ensuring security standards and practices across IT functions and collaborating with various teams.
Responsibilities
- Develop and enforce security policies and procedures related Digital Workspace across Novartis businesses to meet business and regulatory requirements
- Design security measures and overall Digital Workspace architecture for the IT landscape in line with the ISC policy framework
- Support and continually review technology standards and controls related to Digital Workspace and recommend information technology strategies, policies, and procedures
- Identify design problems within the Digital Workspace domain
- Support projects to evolve Digital Workspace solutions from evaluation to implementation and assist the delivery of the operational model
- Support the auditing of security policies and procedures
- Management communication with key stakeholders and provide reports to management
- Provide ongoing support to maintain the Digital Workspace domain’s effectiveness and efficiency by defining, delivering, and supporting strategic plans for implementing information technologies
- Develop and maintain relationships with key stakeholders and vendors
- Support the direction of technological research by learning the organizational goals, strategies and business drivers
- Develop and maintain architecture diagrams and documentation related to Digital Workspace processes and procedures
- Break down the strategic objectives to requirements on the solution portfolio and target architecture
- Key contributor on products, services and/or infrastructure strategies that require complex or advanced conceptualization
- Research and evaluate new Digital Workspace security technologies and make strategic security technology choices, directly supervising the quality of designs and implementation inside and between components
- Work with improvements, by participation in the development, of the architectural principles, processes, and standards
Requirements
- University working and thinking level, degree in business/technical area or comparable education/experience
- 15+ years of working experience in Security domain; minimum 5 years in architecture capacity; 5+ years of Digital Workspace security essential
- 5+ years of experience of working in or providing IT services to a large enterprise like Novartis.
- Exceptional understanding of other security domains like Digital Workspace, Microsoft365, Data Protection, with good knowledge of Network Security, Identity and Access Management, SIEM, Vulnerability Management
- Exceptional understanding and knowledge of general IT infrastructure technology, systems and management processes
- Experience of sourcing complex IT services, working closely with vendors and making full use of their capabilities
- Good knowledge of IT Project Management: Proven experience to initiate and manage projects that will affect other divisions, departments and functions, as well as the corporate environment.
- Experience with compliance requirements (e.g. SOX, GxQ / CSV, E-compliance, Records Management, Privacy).
- Knowledge of (information) risk management related standards or frameworks such as COSO, ISO 2700x, CobiT, ISO 24762, BS 25999, NIST, ISF Standard of Good Practice and ITIL
- Strong leadership experience, with excellent written and verbal communication and presentation skills at all levels of the organization and experience in reporting to and communicating with senior level management (with and without IT background, with and without in-depth risk management background) on information risk topics; interpersonal and collaborative skills, as well as good mediation and facilitation skills
- Desirable Good understanding and experience with Enterprise Architecture Frameworks like TOGAF will be an added advantage.
Benefits
- Commitment to Diversity & Inclusion: We are committed to building an outstanding, inclusive work environment and diverse teams representative of the patients and communities we serve.
Job title
Job type
Experience level
Salary
Not specified
Degree requirement
Location requirements
Manual Ethical Hacker assessing bank's applications to identify vulnerabilities and mitigate risks. Collaborate with partners to enhance security measures within the Cyber Security Assurance group.
Cybersecurity Engineer ensuring the organization's technological environment and mitigating structural cyber risks. Identifying weaknesses and collaborating across teams for objective contribution.
Associate Director for Cybersecurity leading test strategies at AT&T's cloud security platform. Shaping testing programs and ensuring security and reliability for cloud - native environments.
IT Security Engineer ensuring secure data exchange in the insurance industry. Collaborating on technical security tasks and developing security systems with a focus on efficient data management.
Cybersecurity Engineer involved in maintaining cybersecurity throughout product life cycles. Working with a skilled team to enhance security measures in critical environments.
Cybersecurity Engineer I at Travelers enhancing network security for cloud - based solutions and zero trust architectures. Collaborating on security controls and protocols across systems.
Network Security Engineer handling L2/L3 configurations, firewall management, and operational documentation. Supporting infrastructure - related projects at Arcatem by Artemys with a focus on team collaboration.
Safety & Security Specialist ensuring safety and security at Ohio’s Hospice facilities. Responding to emergencies, patrolling grounds, and communicating with law enforcement as needed.
Member of Technical Staff specializing in Cloud Security at Wind River. Implementing DevSecOps technologies and securing cloud - native environments.