Network Security Architect in Amsterdam

... ING Office of the CISO focuses on cybersecurity steering, threat & vulnerability management and response. We translate key risks, business requirements and applicable laws & legislations into architectures and...

Beschrijving

Background

ING Office of the CISO focuses on cybersecurity steering, threat & vulnerability management and response. We translate key risks, business requirements and applicable laws & legislations into architectures and accompanying enterprise-wide security programmes to achieve ING's strategic objectives, while delivering threat detection and response services to the ING organization on a global level.

The objective of the Security Strategy & Architecture department is to ensure that business strategy and cybersecurity implementations are aligned on an ongoing basis taking into account applicable technology solutions, good practices, risk appetite and cost targets.

Key Responsibilities

Main activities are:

  • Leading the design, providing guidance and performing verification of architecture implementation on global programmes, specifically:
    • Network security
    • Access security
    • Cloud security
  • Assessing security design and operations of networks for both on-premise as for public cloud environments
  • Developing security norms and controls for networks and public cloud network setups, preferably in a security-as-code formats
  • Architecture artefacts lead and delivery
    • Formulating and testing hypotheses and drawing conclusions to determine appropriate security solutions/services for ING in a global perspective
    • Designing Architecture on conceptual and logical levels ensuring the optimal match between technology, fit-to-infrastructure (feasibility of deployment), costs, user acceptance, measurability, and flexibility/scalability together with a virtual team of Domain and Enterprise Architects
    • Specifically designing key components that must be enforced and can be measured automatically
    • Maintaining and updating the Global Architecture/Security Standard taking relevant (technological, organisational) changes into consideration as well as keeping pace with innovations and trends in the industry/market

Requirements

  • Fluent in technical and conceptual aspects of cybersecurity, specifically on:
    • Networks
    • Access controls
    • Public cloud
  • Background in Computer Science or Mathematics/Physics
  • Field experience in operational and development activities in network/network security¬†
  • Insight and experience in implementation of desired structural infrastructure solution at large corporates
  • Good knowledge main network protocols (TCP, UDP, ICMP)
  • Experience/knowledge on at least three of below areas (indifferent of technology)
    • Firewalls, proxy, WAF, IPS/IDS, DDoS mitigation, load balancers
    • VPN, micro tunnelling, SD-WAN
    • Network automation, scripting, orchestration, network-as-a-code ¬†
    • Network traffic monitoring (TAP, NetFlow)
    • Integration/implementation of SaaS services (DNS, CDN, cloud proxy, SASE)
    • Design/implementation of hybrid or multi-cloud network environment
  • Good automation/coding skills:
    • Proficient with Ansible (yaml) and DSC
    • Designing code repositories
    • Building automation pipelines
  • Furthermore the following personal profile:
    • Ability to take ownership and responsibility
    • Excellent analytical skills and clear way of expressing abstract concepts
    • Experience in producing and presenting Security Architectures on a conceptual and logical level
    • Experience in effective communication on senior management level
    • Excellent writing & reporting skills in English
    • Determination to continuously develop your (technical) expertise and knowledge
    • Willingness to travel (up to 25%, mainly in Europe)

Extra informatie

Status
Open
Plaats
Amsterdam
Dienstverbanden
Fulltime (ervaren)
Gepubliceerd op
16-11-2022

Amsterdam | ICT / IT / Programmeur | Fulltime (ervaren)

Solliciteer direct

Deel deze vacature

We heten wel YoungCapital, maar iedereen is even welkom. Ook als je al wat meer ervaring hebt. Meer weten? Check onze FAQ.