Enterprise Security Strategist

Job Title : Enterprise Security Strategist

About the Role :

This key position is responsible for developing and implementing enterprise-wide security strategies to protect the bank's technology assets. As a senior leader, you will provide guidance on security controls design, act as a liaison between Cyber Subject Matter Expert teams and the Enterprise Technology and Data team, and ensure seamless onboarding to the right security services.

Main Responsibilities :

• Act as cyber security champion and ambassador for the Enterprise Technology and Data team, actively engaging with the leadership team to support business outcomes with security advisory services.
• Ensure seamless onboarding to the right security services as needed.
• Act as liaison between Cyber Subject Matter Expert teams and the Enterprise Technology and Data team, ensuring right-sized security engagements.
• Provide security control design input for Data and Enterprise applications initiatives, ensuring control design is risk-based, appropriate, and meets regulatory and compliance security requirements.
• Engage with Enterprise Technology & Data and business teams (risk, finance, and Human Resources) to prioritize security controls implementation and remediation.
• Develop tools and documentation to enable the Enterprise technology and data teams to embed security into practices of building, releasing, and maintaining technology systems (shift-left initiatives).

Requirements :

• A college diploma or university degree in computer science (or related field) or industry-recognized certifications (e.g., CISSP) with 7 years of cybersecurity experience.
• Minimum of 8 years of technical IT experience.
• Minimum of 6 years of cybersecurity experience.
• At least 2 years of experience with enterprise data platforms, ERP, or similar solutions.
• Strong knowledge of cybersecurity frameworks, controls, and practices.
• Strong engineering or security architecture knowledge; prior hands-on technology engineering experience is preferred.
• Certifications such as Microsoft Azure Solutions Architect Expert, Microsoft Cybersecurity Architect Expert, SABSA Foundation, Practitioner, or Master level designations, and TOGAF certifications are a plus.
• Experience architecting and implementing solutions in cloud environments (Microsoft Azure).
• Experience with data architecture, data engineering, or security consulting for similar technologies.
• Experience documenting architecture flows and diagrams.
• Good knowledge of cyber threats, risks, and control design best practices.
• People and resource management skills.
• Strategic and financial planning experience.
• Process design and implementation experience is a plus.
• Ownership and accountability in roles.