IT Domain Security Architect - Payment Settlements Domain

• Hybrid work environment

• Permanent role

• Play an important part shaping the future of our iconic Australian institution

• An exciting opportunity to drive strategic cyber uplift

About the business/role/team

A fantastic opportunity to join the RBA to guide the security objectives of nationally critical payments systems for the Payments Settlements (PS) department. The IT PS Domain Security Architect will be an intrinsic member of the team focused on cross-functional collaboration and driving strategic cyber uplift in the PS domain. The position is part of the IT Security Architecture team.

About the role

• Domain

• Ensure alignment between the Bank’s cyber strategy and the departmental objectives and drive strategic cyber uplift initiatives.

• Identify opportunities to uplift cyber control effectiveness within business-led projects and initiatives.

• Continued review of control design to ensure departmental cyber risk is within appetite.

• Coordinate between PS and the cyber teams to ensure the business context is reflected and prioritised in the cyber program including assurance activities and operations.

• Coordinate and communicate the assessment and reporting of PS cyber risks to business stakeholders.

• Design security solutions aligned with business objectives and compliance requirements e.g. ACSC ISM, ISO 27001, Swift CSP, CPS234

• Manage the expectations of PS business stakeholders and promote the use of enterprise security patterns and practices.

• Provide subject matter expertise to support the PS industry cyber exercises.

• Ensure adequate security guidelines are maintained for members connecting to the RITS service.

• Solution

• Design, develop, review and execute the security architecture for new and existing solutions in the PS domain in line with security policies and standards

• Review and approve security deliverables created by the security architects working in the PS domain

• Manage the Security Risk Assessment for solutions and associated risk management tasks.  Develop information packs to socialise the risks and mitigations for the PS business audience.

• Provide technical guidance and direction to security architects in the domain. Provide mentoring and coaching for presentation of Security Risks to the business.

• Contribute to the maintenance of a central repository for models, standards, patterns, components and security architectures for the PS domain.

• Collaborate with project managers and other stakeholders in scoping initiatives, ensuring they are scoped in accordance with architectural and security objectives and principles.

About you

• SABSA/CISSP/TOGAF Qualified

• Sound understanding of the Payments and Settlements systems domains in the financial services industry.

• Demonstrable experience in architecture and technical leadership and involvement in delivery of solutions within payments or related financial services industry domains.

• Strong understanding of cyber risk assessment methodologies and cyber risk management frameworks.

• Strong interpersonal skills, including teamwork, facilitation and negotiation.

• Demonstrated ability to communicate, influence and persuade peers and senior stakeholders.

• Understanding of agile frameworks, and capability to support agile project teams by providing advice and guidance.

• Understanding of strategic and new and emerging technologies and their practical application.

• Strong understanding and experience with application development methodologies and languages such as Java, Spring Boot etc and application secure coding technologies and frameworks such as OWASP, SAST and RASP

• Strong understanding and experience delivering secure enterprise infrastructure (such as VMware, RedHat Linux SOE, Oracle Databases and Network Security) as well as secure Cloud platform solutions (such as Azure PaaS and IaaS).

• Strong experience in resolving solution design and architecture contentions.

• Sound experience in architectural disciplines across a range of complex projects and technologies.

Application Close :

.