Assistant Vice President - Information Security Architecture

About Us

SBI Card is a leading pure-play credit card issuer in India, offering a wide range of credit cards to cater to diverse customer needs. We are constantly innovating to meet the evolving financial needs of our customers, empowering them with digital currency for seamless payment experience and indulge in rewarding benefits. At SBI Card, the motto 'Make Life Simple' inspires every initiative, ensuring that customer convenience is at the forefront of all that we do. We are committed to building an environment where people can thrive and create a better future for everyone.

SBI Card is proud to be an equal opportunity & inclusive employer and welcome employees without any discrimination on the grounds of race, colour, gender, religion, creed, disability, sexual orientation, gender identity, marital status, caste etc. SBI Card is committed to fostering an inclusive and diverse workplace where all employees are treated equally with dignity and respect which makes it a promising place to work.

Join us to shape the future of digital payment in India and unlock your full potential.

What’s in it for YOU

1. SBI Card truly lives by the work-life balance philosophy. We offer a robust wellness and wellbeing program to support mental and physical health of our employees
2. Admirable work deserves to be rewarded. We have a well curated bouquet of rewards and recognition program for the employees
3. Dynamic, Inclusive and Diverse team culture 
4. Gender Neutral Policy
5. Inclusive Health Benefits for all - Medical Insurance, Personal Accidental, Group Term Life Insurance and Annual Health Checkup, Dental and OPD benefits
6. Commitment to the overall development of an employee through comprehensive learning & development framework

Role Purpose 

Network & Infrastructure Security Architect collaborates with network engineering and security organization to define, deliver and support enabled business solutions and managing secure network architecture of SBI Card IT environment. This role will also help design & deliver technical solutions for Network, other infrastructure security technologies. This role has primary accountability for the delivery of Network engineering, Security Architecture including project delivery, system enhancement and production support in alignment with SBIC policies and procedures.

Role Accountability

Network Security Management:

1. Applies advanced subject matter knowledge to solve complex business issues and is regarded as a subject matter expert
2. Serves as a Network Security expert in Network design & Implementation, helping project teams comply with enterprise and IT security policies, industry regulations, and best practices
3. Ensures adequate security solutions are in place throughout all systems and platforms to mitigate identified risks sufficiently, and to meet business objectives, enterprise security policy and regulatory requirements
4. Review and Manager control effectiveness of  Security infrastructure solutions and services, such as firewall, public key infrastructure, anti-DDOS, etc.
5. Determines baseline security configuration standards for operating systems (e.g., OS hardening), Network/Security Devices and Network segmentation etc.
6. Collaborate with systems, network, database, vendor teams to ensure security is maintained at all layers
7. Develop framework for securely implementing, integrating and managing Network 
8. Prepare Network hardening standards in-line with organization's security policy
9. Conduct Network Architecture Review periodically inline with the Policy requirement
10. Conduct Firewall Configuration & Rule Review periodically inline with the Policy requirement
11. Support New vendor product review and selection. Design and development of Data Networks (WAN, LAN, WLAN,WWAN) and associated Security Controls
12. Provide technical design support, sizing, availability guidance for network
13. Support Governance & Risk Team for Third Party Risk Assessment and Technical control validation/audit for service providers
14. Manage risk register & review periodic risk mitigation actions

Stakeholder/Vendor Management

1. Effectively manage cross-functional internal and external team collaboration, communications & trainings
2. Maintain relationship with network and services vendor leadership to ensure effective implementation and network operations, ongoing support, and deployment of competent resources

Measures of Success 

1. Successful implementation/ adoption of any new solution, technology or framework
2. Successful delivery of security projects specifications within time and budget
3. Security strategy & architecture is aligned with company /business objectives & regulatory requirement
4. Key risk & security issues identified & recorded for treatment
5. Architecture level decisions are taken independently inline to policy & presented to related forum
6. Related security metrics are within acceptable threshold
7. Maturity of Information & Cyber Security Program

Technical Skills / Experience / Certifications

1. Working experience on various operating systems (Unix/Linux/AIX/Window Servers etc.), implementation of network and security devices like Firewall, IPS, VPN, APT, proxy etc.
2. Strong understanding of LAN/WAN, SD WAN, Routing and Switching and Secure Network Architecture concept
3. Technical knowledge: UNIX, Linux, Windows, OS X, various firewalls, digital certificates, SSL, VPN, TCP/IP, DNS, web security architecture etc.

Competencies critical to the role

1. Individual must possess the knowledge and the following skills and abilities or be able to perform the essential functions of the job; 
2. Ability and experienced in highly secure and restrictive enterprise environments.
3. Working experience on variou

Qualification 

1. Bachelor’s Degree in a related area such as Computer Science or Information Technology or B.Tech
2. PG - Any Postgraduate, Post-Graduation (Not Mandatory)
3. Industry standard certifications such as CISSP, CCIE/CCNP, Network Security – Firewall, Proxy,

Preferred Industry

BFSI / NBFC /E-commerce/IT & ITES / Telecom