Security architect
country: mexico
position summary
the role will be responsible for supporting the information security reference architecture and controls review for all of santander entities.
essential duties and responsibilities
* assess architectural patterns for service account authentication, privileged access management, secdevops pipeline, security logging and monitoring, audit logging, and compliance guidance and monitoring.
* responsible for protecting the bank, customers, and employees by mitigating and identifying technology threats to santander.
* provide expertise for cyber security technical and non-technical solutions; review and provide guidance enabling business systems while leveraging solutions such as platform as a service (paas), infrastructure as a service (iaas), and software as a service (saas) in a manner that adheres to santander information security policy and standards.
* review and approve target state deployment topology, high-level architecture, and data flows.
* share technology expertise with application architects and provide consultative support to application teams including assessment of connectivity requirements, vnet / vpc, and subnet design and recommendations.
education and experience
* at least x years of information security experience.
* x years in architecture experience.
* designed application authentication and authorization solutions including single-sign-on, multi-factor authentication, oauth, openid connect, and related technologies.
* experience with scrum, kanban, and safe agile practices and strong aptitude to work in a devops culture and environment.
* full-stack development experience building application software, test automation, and infrastructure as code.
* hands-on experience with cloud automation frameworks (terraform, ansible) and cloud-provided automation tools (e.g., azure resource manager templates).
* hands-on work experience working with soap and rest apis, microservices design.
* experience in network topologies and multi-tier architecture.
* familiarity with load balancing technologies - ilb (internal load balancers), application gateway, waf (web app firewall), f appliance solutions, etc.
* familiarity with network security principles (network security groups, application security groups), private link services, service endpoint, service tags, etc.
competencies
* communication
* problem solving
* problem analysis
* negotiation
* accountability
* stress management
* decision making
#j-18808-ljbffr