VP- Security By Design Architect

Apply now »

Date: 10 Jun 2024

Location: Braddell, SG

Company: Network For Electronic Transfers (S)

The NETS Group is a leading payments services group, enabling digital payments for merchants, consumers and banks across the entire payments value chain. 

 

The Group operates Singapore’s national debit scheme enabling customers of DBS Bank/POSB, HSBC, Maybank, OCBC Bank, Standard Chartered Bank and UOB to make payments using their ATM cards or mobile devices at more than 130,000 acceptance points in the country as well as online payments.

 

Position Summary 

 

Being a leading payment infrastructure provider in Singapore, NETS develops and operates many mission-critical financial services that is used by the population in Singapore. The Security By Design Architect plays a critical role in helping to ensure “Security By Design” principles are closely adhered to in the design and implementation of these financial services.

 

Responsbiltites

 

  1. Security by Design
    1. End-to-end accountability of the overall security design of financial services projects.
    2. Collaborate with project teams to ensure that security requirements are considered and assessed from the outset of each project.
    3. Test and verify that the security requirements are properly implemented.
    4. Establish secure design patterns for applications to follow a well-defined template to ensure application security.
    5. Evaluate existing system security postures and recommend enhancements
    6. Familiarity with DevSecOps and Shift-Left security principles.
  2. Security Engineering Subject Matter Expert
    1. Keep on top of developments in cyber threats and advances in security protection
    2. Provide expert guidance and support to development teams on secure coding practices, security testing, and vulnerability management.
    3. Familiarity with security engineering and design principles across applications, databases, infrastructure and network
  3. Risk Management and Compliance
    1. Ensure compliance with relevant regulatory requirements and industry standards.
    2. Conduct thorough security risk assessments and threat modelling for new and existing projects.
    3. Provide support for internal and external Audits and provide defence and explanations to the soundness of the security design of the systems.
  4. Collaboration and Communication​​​​​​​​​​​​​​​​​​​​​​​​​​​​​​​​​​​​​​​​​​
    1. Collaborate with cross-functional teams to ensure the success and security of system implementations.

 

 Requirements

 

  • Degree in Computer Science, Computer Engineering or Information Security related fields.
  • At least 5 years’ experience in security engineering, with deep expertise in one or more security domains.
  • Broad appreciation of overall security architecture and how various security technologies interact to achieve overall security defence.
  • At least 3 years’ experience in Application Security.
  • Security certifications such CISSP, CISM, CCSP, CISA, AWS Certified Security - Specialty are highly desirable.
  • Experience in Cloud Security is a must.
  • Familiarity with MAS TRM, PCI DSS and PCI PTS is a must.
  • Familiarity with various payment and Card specifications, standards and protocols is an advantage.

​​​​​​​

Network for Electronic Transfers (Singapore) Pte Ltd.