Engineer, Network & Applications Security Engineering

Create your future with Affin! You too can make a difference. Join us at AFFIN, where the open minds meet and be inspired by a shared commitment to great work. Here, you don’t just stay at the forefront of the industry – you can make a difference too.

The Network & Application Security Solution & Engineer will leverage his/her development, security and architecture experience to mitigate risk and enable security controls for both application and network environments using innovative solutions. The person is responsible for solutioning and engineering for application and network environments related deployments, ensure the flexibility of solution integration to cover on premises infrastructure and Cloud without high overhead.

Accountabilities

• Lead in the research, analysis, design, testing and implementation of complex computer network security/protection technologies for the Bank’s IT application and network environments.
• Design, implement, maintain, and optimize robust, scalable, highly automated, and secure technical solutions in support of the Bank’s IT application and network environments.
• Create scripts, employ tools, develop automation techniques, and pursue ideas to increase the manageability, efficiency, compliance, capability, capacity, and security of devices.
• Create comprehensive engineering documentation including functional requirements, design proposals, network diagrams, workflow diagrams, application communications diagrams, configuration documents, support documentation, training materials, and project documents.
• Ensure that security is embedded in how it is built from design and development to testing to how it is being run in the cloud, and to strategically guard against existing or emerging threats.
• Develop automation and supporting infrastructure to enable significantly increased agility and consumption of cloud resources, including creating and maintaining build scripts, templates and other artifacts for the security stack.
• Serve as an escalation point for troubleshooting the most complex and challenging security related challenges.
• Assess business process, technology and information systems at logical, system and component levels to understand the risk posture, apply critical thinking, determine the security models and co-design the system with enterprise architecture.

Job Requirements

• Proven track record of effectively supporting commonly-used information security tools and processes (e.g., patch management, SIEM, UBA, Web Application Security testing, SSO, Email Security Gateways, malware management, web filtering, firewalls, proxies, APT analysis, IDS/IPS, DLP, HIDS/HIPS, network access control, threat and vulnerability management).
• Understanding of and practical experience with internal certificate authorities, Microsoft DNS, Microsoft Active Directory design/architecture and security, data loss/leak prevention and multifactor authentication.
• Understanding of network design, encryption/PKI, mobile security, network security technologies and vulnerability management.
• Wireless security and mobile device management.
• Knowledge of encryption algorithms and related technologies, secure communications, SSL, PKI.
• Experience with Cloud Security and networking (Azure, AWS).
• Broad knowledge and understanding of emerging technologies, technology trends and their applicability.
• Ability to define effective information security standards applicable to specific environment.