Identity & Access Cloud Solution Architect in Bucuresti

Job Description: Identity & Access Solution ArchitectFunctional Title:Identity & Access Cloud Solution ArchitectProfession: ArchitectPosition Role Reports to:Identity & Access Architecture Lead | TDI Chief Security OfficeCorporate Title:AVPAbout the roleWe are looking for an energetic, collaborative Identity & Access Cloud Solution Architect for the Chief Security Office CTO Identity and Access team. The team looks after the global bank-wide identity and access services, architecture and strategy for such.The Cloud Solution Architect willwork with Identity & Access Service Owners and Teams on the definitions of architecture models and designs for all levels of identity and access solutions and processes related to Identity & Access in the cloud platforms.will align such in the wider security architecture landscape and cloud platform teams.will align designs to tackle the threats, controls and policies, as well as regulatory requirements relevant to the bank.The Cloud Solution Architect will thusbe a key team member to drive enterprise architecture concepts into solution designs and solution implementations for the cloud platforms,play a key part in the strategic move into cloud, where identity and access play a major role.A successful candidatewill be able to operate in a highly complex environment and prove the ability to drive efficient solutions and simplification.will be able to actively socialise and negotiate standard architectures across highly diverse engineering teams and service platform teams, establishing good relations to those and other teams.will be able work well in teams but also in a stand-alone mode with a distinct “can-do” attitude.has strong communication skills in English (written/verbal) to address issues also on a senior management level.has a self-paced learning and career developing attitude, acting as role model for new employees.SkillsExpert level knowledge of identity and access control areas like Access Lifecycle Management / Identity Governance & Administration, Authentication, Authorisation and Privileged Access Management, Role Based Access Control (RBAC) & Attribute Based Access Control (ABAC)Expert level knowledge of identity and access threats, vulnerabilities, protection patterns and technologies commonly used in the market to address the resulting risksExperienced in analysing weaknesses for identity and access control areasA good level knowledge of network communication techniques and cryptographic methods to verify the effectiveness of identity and access solutionsGood understanding of zero trust architecturesGood level of knowledge and proven experience of Cloud technologies and deployment concepts relevant for GCP, AWS and Azure(like “infrastructure as code” and “policy as code”)Good level knowledge of IT management/control frameworks, such as: ISO/IEC 27000-series, Control Objectives for Information Technology (COBIT), NIST Standards or Cloud Controls MatrixGood understanding of regulatory frameworks relevant for financial institutions, such as: General Data Protection Regulation (GDPR), Payment Service Directive (PSD2), TRM Guideline of the Monetary Authority of Singapore (MAS) or Payment Card Industry Standard (PCI)Qualifications and experienceDegree-level IT and/or information security qualification, preferably IAM or Crypto relatedProven experience as an IT Security and/or Identity and Access ArchitectExperience of driving architectures for hybrid and cloud environmentsExperience from aligning solution architectures with engineering and development teamsExperience in a global financial institution’s IT security / governance, risk and control environment is a plusCoding experience is a plusProfessional education like Certified Information Systems Security Professional (CISSP), Certified Cloud Security Professional (CCSP) or alike is a plusOur values define the working environment we strive to create – diverse, supportive and welcoming of different views. We embrace a culture reflecting a variety of perspectives, insights and backgrounds to drive innovation. We build talented and diverse teams to drive business results and encourage our people to develop to their full potential. Talk to us about flexible work arrangements and other initiatives we offer.We promote good working relationships and encourage high standards of conduct and work performance. We welcome applications from talented people from all cultures, countries, races, genders, sexual orientations, disabilities, beliefs and generations and are committed to providing a working environment free from harassment, discrimination and retaliation.Click to find out more about our diversity and inclusion policy and initiatives.