Enterprise Security Architect
Graduate job Dublin (Dublin City) Architecture / Town planning
Job description
Job Description
• Reporting directly to the Global Head – Enterprise Architecture Consulting & Governance, this role serves as an IT security expert for the Novartis Enterprise. The role is critical to helping Novartis secure its information assets, meet industry regulations and develop security policy, across application development, database design, network, infrastructure and platform (operating system) areas. The role requires a holistic approach to enterprise IT security with business minded sense of the amount of risk mitigation relative to the investments of money and effort.
• Work closely with enterprise architects, other functional area architects and security specialists to define an enterprise security reference architecture, to define the Enterprise Security Architecture Roadmap and to ensure adequate security solutions are in place throughout all IT systems and platforms to mitigate identified risks sufficiently, and to meet business objectives and regulatory requirements.
• This role is an expert/ lead technical role that defines the information security architecture and design of the enterprise.
• This role is also involved in projects or issues of high complexity that require in-depth knowledge across multiple technical areas and business segments.
Accountability Areas
• Develop the Enterprise Security reference Architecture, the security architecture patterns, the security architecture principles.
• Develop the target Enterprise security architecture and the Security architecture roadmap.
• Develop the business, information and technical artifacts that constitute the enterprise information security architecture and solutions.
• Evaluate and develop secure solutions, based on approved security architecture.
• Aligns security governance with EA governance and project/portfolio management.
• Develops and maintains the information security strategy.
• Analyzes the business impact and exposure, based on emerging security threats, vulnerabilities and risks and to communicate relevant security risks and solutions to business partners and IT staff.
• Serves as a security expert in application development, database design, network and/or platform (operating system) efforts, helping project teams comply with enterprise and IT security policies, industry regulations, and best practices.
• Provide advice to CIO and Novartis IT Board on technology issues, trends, and leading practices.
• Strongly promote and advocate Security Architecture principles and practices.
• Recognize and leverage formal and informal opportunities for Security Architecture to positively influence IT strategy, operations, organization, and processes enterprise-wide.
• Set strategies and direction to achieve long-term Global IT security objectives.
• Act as communication and coordination channel through interactions with Corporate and Divisional Enterprise Architecture organizations and leaders.
• Work effectively across technology domains directly supporting and contributing to security objectives.
• Research, design and advocate new technologies, architectures and security products that will support security requirements for the enterprise and its customers, business partners and vendors. Improve platform and standards lifecycle management.
• Increase utilization and alignment of IT investment priorities with risk mitigation objectives.
• Develop people, teams and the IT organization to realize a higher level of performance, success, and strategic Business partnership.
Desired profile
• Bachelor's or master's degree in a computer science, information systems or other related field; or equivalent work experience.
• Fluent English: both written & spoken.
•Considerable experience in both IT and security, with a broad exposure to infrastructure/ network and multiplatform environments.
• Knowledge of a security-specific architecture methodology (for example, SABSA).
• Formal training in a relevant enterprise architecture methodology (for example, the Zachman Framework or TOGAF).
• Experience in using an enterprise architecture methodology (for example, Zachman, TOGAF and Gartner frameworks).
• Professional security management certification, such as Certified Information Systems Professional (CISSP), Certified Information Security Manager (CISM), Certified Information Systems Auditor (CISA) or other similar credentials, is desired.
• Proven ability in security process and organizational design.
• Expert knowledge of security issues, techniques and implications across all existing comput.
.