Head-Group Risk Management-SUPPORT SERVICES-Group Risk Management

Senior Security Architect (Banking & Financial Services)Key Responsibilities: * Develop and maintain a comprehensive security architecture roadmap aligned with business objectives and regulatory requirements.* Conduct thorough security risk assessments for business applications (on-premises, cloud hosted) to identify potential threats and weaknesses and recommend mitigation measures.* Conduct thorough security risk assessments for APIs to identify potential threats and weaknesses.*Conduct threat modelling for applications at inception and at time of major changes to ensure compliance with extant regulations.* Review architecture design and suggest security controls and countermeasures to protect systems, applications, and data.* Define and enforce security policies, standards, and guidelines to ensure compliance with industry best practices and regulations. * Collaborate with development teams to integrate security-by-design principles into the software development lifecycle.* Create dashboards and reports for tracking progress of ongoing security reviews.*Drive automation and process improvement initiatives for streamlining security reviews.* Stay abreast of emerging security threats and trends, recommending and implementing appropriate countermeasures. * Mentor and guide junior security team members, fostering a culture of continuous learning and development.Required Qualifications: * Bachelor's degree in Computer Science, Information Security, or a related field. * 6-8 years of hands-on experience in security architecture, design, review and implementation.* Strong knowledge of security frameworks and methodologies (e.g., RBI guidelines, NIST Cybersecurity Framework, OWASP ASVS).* Excellent understanding of cloud security principles and practices esp. AWS .* Minimum 2 years’ experience in the banking and financial services sector, with a deep understanding of industry-specific security regulations, would be preferred. * Strong analytical and problem-solving skills.* Ability to work independently and manage multiple projects simultaneously.Preferred Qualifications: * Advanced security certifications (e.g., CISSP, CISM). * Knowledge of DevOps and CI/CD practices. * Experience with security automation and orchestration tools.