Associate Director Security Architecture

Associate Director Security Architecture (Data Architect)

Chennai India

Do you want to work on innovative projects collaborate with a dynamic and supportive team and receive investment in your professional development At DTCC we are at the forefront of innovation in the financial markets. Were committed to helping our employees grow and succeed. We believe that you have the skills and drive to make a real impact. We foster a thriving internal community and are committed to creating a workplace that looks like the world that we serve.

Pay and Benefits:

• Competitive compensation including base pay and annual incentive
• Comprehensive health and life insurance and wellbeing benefits based on location
• Paid Time Off and Personal/Family Care and other leaves of absence when needed to support your physical financial and emotional wellbeing.
• DTCC offers a flexible/hybrid model of 3 days onsite and 2 days remote (onsite Tuesdays Wednesdays and a third day unique to each team or employee).

The impact you will have in this role:

As a Data Security Architect in the Cybersecurity Architecture Center of Excellence your responsibilities include a comprehensive review and redesign of the existing data security infrastructure and capabilities for onpremises client and hybridcloud environment. You will also influence changes in existing control standards create new IT security standards that are easily consumed by stakeholders create specific security patterns & diagrams and own the relevant 3year capability roadmap. This role will be key in ensuring a SecurityFirst mindset during DTCCs technology modernization journey.

Your Primary Responsibilities:

• Produce security architecture deliverables as part of initiatives related to DTCC data and its consumption modes.
• Proactively identify security gaps propose solutions and follow through with engineering teams for implementation.
• Be the subject matter expert for Data Security through the enterprise along with the security architecture team.
• Inspire team members and junior staff to contribute new ideas and alternative approaches.
• Design and optimize solutions to protect organizations data infrastructure integrating cloudbased and onpremise components such as DLP IPS WAF Proxy access control management.
• Create and drive the internal and client data security capability roadmap within information technology & the respective IT stakeholders.
• Create and drive the Zero Trust data modernization roadmap within information technology & the respective IT stakeholders.
• Design Zero Trust data security controls through modern security technologies such as DSPM DLP.
• Influence change of control policies with Technology Risk Management & build strong partnerships with IT Architecture & Application Development partners.
• Create IT security standards and drive bestpractices which are easily consumed by IT stakeholders.
• Lead the technical analysis of data security capabilities with the aim of delivery new or enhanced security capabilities.
• Identify automation opportunities for data security controls lifecycle management.
• Act as the domain specialist to help guide and shape how network security controls are enabled and enforced.
• Mentor junior security architects to enhance their security and architecture skills within the team.
• Deliver highquality executive architecture presentations and demonstrations.
• Maintain professional and technical process knowledge by keeping abreast of the changing security landscape within the technology industry and changes in cybersecurity frameworks.
• Create white papers and presentations in industry conferences to present thought leadership in security field.
• Align risk and control processes into daytoday responsibilities to monitor and mitigate risk; escalates appropriately

Qualifications:

• 10 years of related experience
• Bachelors degree preferred in STEM areas such as Computer Science Electrical & Computer Engineering Information Management Big Data & Analytics

Talents Needed for Success:

• Solid understanding of data security principles and encryption trends including quantumresistant cryptography.
• Understanding of applied cryptography key management encryption atrest and intransit use cases and requirements.
• Experience in designing and implementing complex cloud architectures and cloudnative services.
• Solid working knowledge with data loss prevention techniques and DLP technologies.
• Indepth technical knowledge with DSPM ASPM platforms.
• Technical understanding of Hardware Security Modules design and experience deploying and operating HSMbased solutions.
• Post Quantum Computing & Encryption knowledge is a plus.
• Indepth knowledge of atrest/intransit/inuse security controls data classifications.
• Strong Information Security experience specifically in data security domain (on premise and hybridcloud).
• Solid working knowledge with Next Gen firewalls WAFs proxies IPS traffic capturing and inspection technologies.
• Provide expert knowledge and experience performing deep packet troubleshooting and analysis with Wireshark packet analyzer.
• Indepth knowledge of Zero Trust paradigm and data pillar designs improvements aligned with Zero Trust best practices.
• Working knowledge with 3 vendors such as: Wiz Zscaler Akamai Cloudbased data security services (AWS Macie Azure Purview).
• Experience in data aggregation and transformation processes ETL unstructured and structured data schema processing and mapping data pipelines data repositories and warehouse strategies.
• Experience with monitoring and data analysis tools such as Splunk Elastic Power BI Tableau.
• Fluent in one or more programming languages.
• Solid experience with Python and PowerShell networking fundamentals OS (Windows/Linux) security.
• Experience with Information Security frameworks (e.g. ISO 27001 and NIST) & security architecture frameworks.
• Proficient in how Active Directory works.
• Familiar with PKI and SSL Certificate management.
• Solid analytical skills to troubleshoot highlevel complex and technical problems.
• Strong organizational skills and multitasking ability.
• Ability to prioritize and execute tasks in high pressure environment and make sound decisions in emergency situations.
• Strong technical writing skills to support required documentation.
• Has strong communication skills with the ability to present in front of large audience.
• Demonstrated ability to collaborate between product management engineering risk and IT teams.
• Willingness to learn be a team player and a strong cross functional partner.
• Adapts quickly to changes in business requirements.
• Selfmotivated individual that can work independently on projects as well as a team player working towards a common goal.
• Demonstrated ability to collaborate between product management engineering risk and IT teams.
• Willingness to learn be a team player and a strong cross functional partner.
• Adapts quickly to changes in business requirements.
• Selfmotivated individual that can work independently on projects as well as a team player working towards a common goal.

Required Knowledge Skills and Abilities: (Hiring Companies ATS Questions):

1. Do you have experience in designing and implementing complex cloud architectures and cloudnative services.

2. Do you have solid working knowledge with data loss prevention techniques and DLP technologies.

3. Do you have indepth technical knowledge with DSPM ASPM platforms.

4. Do you have 10 years of experience in Data Security.

5. Do you have strong Information Security experience specifically in data security domain (on premise and hybridcloud).

6. Do you have solid working knowledge with Next Gen firewalls WAFs proxies IPS traffic capturing and inspection technologies.

7. Do you have expert knowledge and experience performing deep packet troubleshooting and analysis with Wireshark packet analyzer.

8. Do you have indepth knowledge of Zero Trust paradigm and data pillar designs improvements aligned with Zero Trust best practices.

9. Do you have working knowledge with 3 vendors such as: Wiz Zscaler Akamai Cloudbased data security services (AWS Macie Azure Purview).