Head of Security Architecture

Job Title:Head of Security Architecture

Location: Abu Dhabi, NONE

Employment Type:

Permanent

Job Title: Head of Security Architecture

Location: ADIB UAE

Role Purpose:

Reporting to the Head of Information Security Engineering, the Head of Security Architecture will design and manage the Security Architecture function. The incumbent will collaborate with the CISO and other management teams in GISD and the business to identify and protect all of ADIB’s data and resources, including those of its subsidiaries and international operations, from internal and external threats. This role will focus on designing the right solutions to prevent unauthorized access to ADIB data.

Key Metrics:

• Number of information security applications/systems evaluated or assessed.
• Number of GISD projects and initiatives delivered as planned.
• Number of risks identified and controls recommended for existing or new applications and systems.
• Number of Business Impact Analyses (BIAs) and risk/privacy assessments conducted.
• Number of third-party assessments conducted versus planned.
  
  

Key Accountabilities:

• Develop and refine strategies, policies, regulatory compliance measures, and cloud security architecture and standards.
• Maintain a high level of knowledge regarding banking business requirements and fintech partnership models.
• Lead and oversee the implementation of security solutions, including Cloud Management Platforms, Cloud Workload Protection, and Cloud Access Security Broker Platforms.
• Conduct regular cloud architecture and security assessments in line with ADIB mandates and external regulations.
• Build a cloud security roadmap, coordinating the design, development, and implementation of cloud protection solutions.
• Manage cloud transformation and architecture projects, ensuring effective communication with internal and external stakeholders, including senior management.
• Conduct necessary third-party assessments for business cloud projects.
• Lead the design and implementation of secure cloud solutions and services across business and IT support areas.
• Drive the successful configuration and implementation of cloud security solutions to minimize overall risk.
• Conduct independent security reviews of vendor proposals, assess security architectures, and recommend modifications to improve service and reduce risk.
• Develop a comprehensive understanding of existing ADIB networks and security controls, yielding a preliminary system security concept of operations, including baseline security capabilities and requirements.
• Serve as a cloud security subject matter expert and trusted advisor, providing advisory and consulting services to various departments and project teams.
• Evaluate acquisition documents against existing and proposed security architectures and designs.
• Manage the security architecture program, including the development and implementation of effective security designs and frameworks across all ADIB systems and platforms. Establish security configuration baselines and ensure patching for all applications, systems, and network assets.
• Prepare cost estimates, identifying security-related opportunities, risks, and issues.
• Oversee and approve cloud security architecture requirements, projects, vendor selection, and controls to maintain a unified vision.
• Design and manage a unified cloud Security Blueprint for technology functionality and business capabilities, ensuring alignment with the overarching ADIB information security strategy and policies.
  
  

Specialist Skills / Technical Knowledge Required:

• BA/BS degree in Computer Science, Information Security, or a related field; a master’s degree is a plus.
• Strong understanding of Azure cloud architecture, firewalls, intrusion detection systems, web filtering, audit and log management, physical security control systems, real-time systems, and common operating systems; AWS knowledge is highly preferred.
• Familiarity with banking and financial institution applications for mobile and online banking, ATMs, payments, treasury, and trade finance.
• Knowledge of security engineering, system and network security, authentication and security protocols, cryptography, and application security.
• Familiarity with security standards and regulations such as TOGAF, SABSA, ISO 27001, NESA, PCI DSS, and SWIFT.
• Experience securing multi-tenant cloud and big data services, and/or designing separation controls in cloud systems.
• Knowledge of large-scale cloud migration programs and security requirements related to Continuous Delivery/Continuous Integration.
• Strong business acumen, including contract negotiations, budget management, and the ability to influence and collaborate effectively.
• Technical certifications such as TOGAF, CCIE, CCSP, CISSP, CISA, CISM, CRISC, CGEIT, or ITIL are preferred.
• At least two cloud certifications, such as CCSK, CCAK, CCSP, or PECB Lead Cloud Security.
• At least two Azure certifications (e.g., AZ-500, SC-100, SC-200, SC-300, AZ-104).
  
  

Previous Experience:

• 8-12 years of experience in information security and/or architecture disciplines.
• Minimum of 5 years of experience designing and securing cloud infrastructure and applications in leading banks or financial institutions, with a focus on data security.
• Extensive experience implementing complex cloud migration programs.
• Proven track record in independently managing security initiatives/projects for large global enterprises.
• Strong planning, organizational, and motivational skills.
• Experience drafting both technical and non-technical documentation.
• Proficiency in presenting information in both formal and informal settings.
• Background in root cause analysis, industry benchmarking, survey evaluation, and data interpretation.
• Experience in emergency/disaster management, physical security, risk management, and business resiliency.
• Familiarity with emergency procedure protocols and regulatory interfaces.
• Experience leading complex projects successfully.
  
  

Head of Security Architecture in Abu Dhabi, NONE