Skip to main content

Senior Security Architect

brussel START DATE: TBD DEADLINE: 2024-06-21
For our client BNP Paribas we are looking for a Senior Security Architect
Start Date: 03/06/2024
End Date: 29/11/2024

The mission of our Cybersecurity department is to:

  • Deliver best-fit security services and solutions to protect business operations and assets;
  • Build and support the implementation of a flexible information risk management strategy for our businesses within BNP Paribas Fortis, in line with BNP Paribas Group;
  • Support information security maturity improvement programs;
  • Develop security architectures that facilitate business objectives and support the business strategy, ensuring appropriate protection of information assets.

Within this department, the Security Architecture team designs security measures for new services, applications, or infrastructure; assesses information security risks on projects and assets; supports any business or initiative by providing security advice on request; and documents security needs and reference architectures. We support BNP Paribas Group from the heart of Europe with deep security expertise within our team.

We are looking for a Security Architect to help IT and business teams build and secure the evolution of our banking applications and infrastructure, mainly for the migration of applications towards the BNP Paribas Group cloud.

Function Description

  • Establish and maintain enterprise security models, architecture, patterns, and guidelines.
  • Support IT architects to develop "secure by-design" application architectures based on security patterns, requirements, and risk analysis, ensuring project conformity with security rules and expectations.
  • Develop durable and influential relationships with IT and Business leaders, enabling the continual promotion of long-term cybersecurity goals.
  • Contribute to the overall evolution of cybersecurity adoption throughout the enterprise. Influence security practices in the IT and business community through knowledge-sharing sessions.
  • Support management in the development of strategic vision and roadmap relating to security services and write high-quality management memos.

Requirements

Languages:

  • Dutch: Good (verbal)
  • French: Good (verbal)
  • English: Influencing level (written, verbal, presentations), as well as (at least) one local language.

Travel:

  • Occasional travels to Paris

Telework:

  • Expectation: 50% on-site & 50% homeworking

Required Experience/Knowledge:

  • At least 8 years of acknowledged professional experience in Information Security.

Business & Technical Experience:

Mandatory:

  • Demonstrable communication and influencing skills (written, verbal, and strategic).
  • Deep knowledge of general information security topics and their applications in real-world environments, especially regarding Cloud-native or Cloud-ready components.
  • Experience working with architecture models covering business, IT technical, or operational views.
  • Experience in security risk assessments, risk analysis, audits, mitigation plan development, etc.

Preferable:

  • Experience in the banking environment.
  • Background in banking sector capabilities, such as investments and credits.
  • Good knowledge of information security standards & frameworks (e.g., ISO 2700x, NIST, SANS).
  • Experience in IT architecture methodologies and structured security architecture methodologies (e.g., TOGAF, SABSA).
  • In-depth understanding of threats applicable to Financial Services.

Soft Skills:

  • Anticipating technological change.
  • Understanding the operation of the company.
  • Methodical.
  • Availability.
  • Continually curious, self-starter, collaborative, proactive, and team player.
  • Approachable security advocate, actively promoting security architecture and risk-based approaches.
  • Integrity and fairness in weighing options, impacts, risk, and actions.
  • Commitment to continuous learning, providing constructive peer-reviews, and giving and accepting feedback.
  • Success in dynamic and multicultural enterprise environments.
  • A proactive approach to problem-solving, inspired by challenges.