Description
Middleware Security Engineer/Architect
A Core Team of dedicated resources will be created for the delivery programme. This Core Team will be made up of a number of specialist IT Engineers/Technical Architects covering the main competency areas of Windows Security, Network Security, End-Point and Workstations Security, Data and Database Security, Middleware Security such as Web Application Securitization, Managed File Transfer, and Message Based Systems.
Together with the core team, collect all the necessary information required to familiarize him/herself with Storage Reference Architecture covering a) Active Data Storage, b) Storage Backup, c) Storage Archival and d) the underlying Data Lifecycle Management policies.
Together with the team, participate in the identification, mapping and documentation of all the IT assets and components supporting the business activities in scope (creation of detailed as-is architecture and function diagrams).
Specifically responsible for the mapping of the data storage, exchange, copy and synchronization, and backup assets, applications and components in general. Research, identification and documentation of technical patterns for data storage used at the customer.
Idem regarding data access mechanisms (named and technical users, identification and authorization mechanisms, application to application data exchange, etc.).
Identify and scope all the data storage assets and components supporting activities.
For each of the above assets, understand and document the existing data protection mechanisms (confidentiality, integrity, availability, traceability) and research, collect and assess existing response and recovery plans (including backup and restore) in case of physical or logical loss (partial or total) of data.
Identify gaps in existing plans (absence of a plan is a major gap) and document the risks/impact of these gaps towards operational continuity of the activities in case of cyber-attack leading to the loss of integrity or availability of data.
Identify, define and document the capabilities and best-practices (technology, operational, governance) required to ensure the business continuity objectives, and develop a first set of recovery and restore plans (including the necessary checklists, runbooks, scripts or any other deliverable required to effectively, confidently, and rapidly, restore the data to a to-be-defined minimal functional level).
Support the other core team members in understanding the cross-domain impact data storage assets have on other Ocritical applications, and in the development of their own domain restore and recovery plans.
Together with the core team, assemble all the individual domain plans, further identifying dependencies, constraints, etc. with the objective of developing a planned and controlled sequence to restore functioning of the critical assets
Collaborate with asset owners and architects and other stakeholders when necessary to gain full understanding of customers current situation. Communicate regularly with asset owners and architects to ensure full transparency and understanding of findings, assessments, and recommendations.
Work and communicate effectively with the other core team members and contribute to the exchange of information and knowledge required to support them in their work
Build strong inter-personal relationships with peers and other key stakeholders that can help smooth execution
Certifications
CISM (Certified Information Security Manager) or equivalent
(ISC)2 CISSP, SSCP or CAP level certification or equivalent
Technical Experience
Mandatory: Recognised certification in information security
Preferable: Other security architecture or engineer certifications
Business Experience
Mandatory: Financial services industry, payments, invest, markets
Preferable: Regulated services industry (eg healthcare)
Church International Ltd (CIL) acts as an employment business for temporary positions and an employment agency for permanent positions. CIL is a committed equal opportunities employer. By applying for this job you accept the T&C's, Privacy Policy and Disclaimers which can be found at out website.
Applicants must be eligible to live and work in the specified location.