Create your future with Affin! ​​You too can make a difference.

Join us at AFFIN, where the open minds meet and be inspired by a shared commitment to great work. Here, you don’t just stay at the forefront of the industry – you can make a difference too.

The Network & Application Security Solution & Engineer will leverage his/her development, security and architecture experience to mitigate risk and enable security controls for both application and network environments using innovative solutions. The person is responsible for

solutioning and engineering for application and network environments related deployments, ensure the flexibility of solution integration to cover on premises infrastructure and Cloud without high overhead.

Accountabilities:

1. Lead in the research, analysis, design, testing and implementation of complex computer

network security/protection technologies for the Bank’s IT application and network

environments.

2. Design, implement, maintain, and optimize robust, scalable, highly automated, and secure

technical solutions in support of the Bank’s IT application and network environments.

3. Create scripts, employ tools, develop automation techniques, and pursue ideas to increase

the manageability, efficiency, compliance, capability, capacity, and security of devices.

4. Create comprehensive engineering documentation including functional requirements, design

proposals, network diagrams, workflow diagrams, application communications diagrams,

configuration documents, support documentation, training materials, and project documents.

5. Ensure that security is embedded in how it is build from design and development to testing to

how it is being run in the cloud, and to strategically guard against existing or emerging

threats.

6. Develop automation and supporting infrastructure to enable significantly increased agility and

consumption of cloud resources. Including creating and maintaining build scripts, templates

and other artifacts for the security stack

7. Serve as an escalation point for troubleshooting the most complex and challenging security

related challenges.

8. Assess business process, technology and information systems at logical, system and

component levels to understand the risk posture, apply critical thinking, determine the

security models and co-design the system with enterprise architecture

JOB REQUIREMENTS:

• Proven track record of effectively supporting commonly-used information security tools and

• processes (e.g., patch management, SIEM, UBA, Web Application Security testing, SSO,

• Email Security Gateways, malware management, web filtering, firewalls, proxies, APT

• analysis, IDS/IPS, DLP, HIDS/HIPS, network access control, threat and vulnerability

• management)

• · Understanding of and practical experience with internal certificate authorities, Microsoft

• DNS, Microsoft Active Directory design/architecture and security, data loss/leak prevention

• and multifactor authentication

• · Understanding of network design, encryption/PKI, mobile security, network security

• technologies and vulnerability management

• · Wireless security and mobile device management

• · Knowledge of encryption algorithms and related technologies, secure communications, SSL,

• PKI.

• · Experience with Cloud Security and networking (Azure, AWS)

• · Broad knowledge and understanding of emerging technologies, technology trends and their

• applicability

• · Ability to define effective information security standards applicable to specific environment