Jobs for Veterans, Veteran Job Board | GiJobs.com

Post Jobs

Job Information

BMO Financial Group Database Security Architect in Chicago, Illinois

Description:

TheDatabase Security architect is responsible for identifying and communicatingrisk related to the company’s Data Assets in Cloud/Big data. The role is also responsible for recommending,implementing and validating solutions that balance the business needs with datasecurity and reduce the risk related to the company’s data assets to anacceptable level. Additionally, thisrole will contribute significantly to establishing database security frameworkand adapting it to cloud adoption strategy. This role will report to the Director– Database/Data Security within CISO organization.

Key Areas of Accountability

  1. Big data/Cloud Database Security Domain Leadership
  2. Security Strategy Formulationfor Enterprise Big data/Cloud data Assets Risk Management & Control
  3. RelationshipManagement
  4. Program Management

ACCOUNTABILITIES

Data Security DomainLeadership and Planning

  • Lead the Big data/Cloud Data Securitydomain of Information Security; recommend database security configurations andinitiatives to address the identified risk areas associated with the dataassets in BMO;

  • Evaluate the current state of dataprotection capabilities, inclusive of discovery, classification, and protectionpolicy formulation for Big data/Cloud structured data sets in BMO;

  • Evaluate the current state and thematurity of existing protection controls for the Big data/Cloud data securityevaluating current state both against the bank’s risk appetite and regulatory andcompliance requirements related to the confidentiality and privacy of data;

  • Provide effective communication atmanagement level on the Big data/Cloud data security domain through reviewswith stakeholders and management briefing and reporting;

  • Provide thought leadership andfacilitate education of the Big data/Cloud database security domain, inclusiveof emerging threats and attack methods, emerging protection and monitoring technologiesas well as emerging regulatory and compliance frameworks and requirements;

  • Develop roadmaps for Big data/Cloud datasecurity capabilities and associated controls to address identified current andemerging risks;

  • Study the current database landscape,document database security framework including that required for databasessupported in cloud and help establish a database security standard artifact in informationsecurity group. Strategy Formulation forEnterprise Big data/Cloud Data Risk Management & Control

  • Identify and Communicate risk related tothe enterprise data assets in Big data/Cloud; educate management on the riskimplications associated with the data sets produced, transformed, consumed,stored or transmitted as part of business processes and associated technologysystems or components;

  • Identify and Communicate risk related tothe use of BMO data assets by 3rdparty service providers andbusiness partners in the context of the “extended enterprise”;

  • Mitigate risk by formulating strategiesto address the risks associated to data assets in Big data/Cloud;

  • Opportunity identification for embeddingBig data/Cloud data security objectives and requirements in business strategicinitiatives from the initiation, architecting and solution design phases, foran effective and un-intrusive protection of bank data; Relationship Management

  • Liaise with the Data GovernanceDepartment, facilitate and lead the coordination of efforts for the Bigdata/Cloud data security among the Information Security and Data Governancefunctions

  • Liaise with the Privacy, Compliance,Fraud and other corporate assurance functions and departments with astakeholder position in the protection of data assets in Big data/Cloud andmitigation of the widest possible range of risks related to bank data;

  • Liaise with the Line-Of-Business DataOwners to understand business strategic objectives and the role existing andfuture data assets will play in these initiatives Program Management

  • Apply program and project managementmethodologies and knowledge to propose, initiate and manage Big data/Cloud datasecurity programs and projects as approved at executive levels;

  • Manage the program activities to deliveron agreed-upon objectives and desired results within agreed upon parameterssuch as schedules and investment/ spend envelopes;

  • Monitor the effectiveness or resourceutilization and properly address the program or initiative execution risk;pro-actively address program and project risks as they arise;

Qualifications:

QUALIFICATIONS

  • University degree in Computer Science,Computer security, related field or equivalent;

  • Minimum of 2 years ofexperience in BigData/CloudDatabase Security

  • Minimum of 10 years of experience inInformation Security domain

  • Minimum of 3-4 years of directexperience in the Data Security subdomain

  • Minimum of 3 years of work experience inthe Financial Industry

  • Minimum of 3 years of experiencemanaging large Programs and initiatives

  • CISSP or CISM designation highlypreferred

KNOWLEDGE & SKILLS

  • Experience with Big data/Cloud DatabaseActivity Monitoring and Protection platforms and solutions

  • Extensive experience with Big data/Cloudbest practices and standards

  • Extensive experience with Big data/CloudHardening Standards

  • Experience with incorporate Bigdata/Cloud Hardening Standards as part of automated deployment

  • Extensive experience in engineeringsecurity throughout the life cycle of Big data/Cloud data

  • Extensive experience with Big data/CloudVulnerability Assessment and Management for database platforms

  • Extensive experience with data-at-restand data-in-flight encryption, tokenization and masking technologies andservices for data sets in Big data/Cloud

  • Experience with and knowledge on datadiscovery and classification platforms and services

  • Experience with other database platformsincluding Oracle, SQL Server, DB2 and associated data protection imperativesand approaches to securing those data platforms

  • Experience with threat modellingtechniques for attacks targeting data assets within Big data/Cloud

  • Excellent knowledge of legal, complianceand regulatory acts and their stipulated requirements on data protection andprivacy applicable to Banking and Financial industry

  • Experience with implementation oftokenization as a solution for meeting PCI-DSS compliance standards isdesirable

We’re here to help

At BMO Harris Bank we have a shared purpose; we put the customer at the center of everything we do– helping people is in our DNA. For 200 years we have thought about the future—the future of ourcustomers, our communities and our people. We help our customers and our communities by workingtogether, innovating and pushing boundaries to bring them our very best every day. Together we’rechanging the way people think about a bank.

As a member of the BMO Harris Bank team you are valued, respected and heard, and you have moreways to grow and make an impact. We strive to help you make an impact from day one – for yourselfand our customers. We’ll support you with the tools and resources you need to reach new milestones,as you help our customers reach theirs. From in-depth training and coaching, to manager support andnetwork-building opportunities, we’ll help you gain valuable experience, and broaden your skillset.

To find out more visit us at https://bmoharriscareers.com.

BMO Harris Bank is committed to an inclusive, equitable and accessible workplace. By learning fromeach other’s differences, we gain strength through our people and our perspectives. BMO Harris BankN.A. is an equal opportunity/affirmative action employer. All qualified applicants will receiveconsideration for employment without regard to sex, gender identity, sexual orientation, race, color,religion, national origin, disability, protected Veteran status, age, or any other characteristic protected bylaw. Accommodations are available on request for candidates taking part in all aspects of the selectionprocess. To request accommodation, please contact your recruiter.

#LI – RT1

Job Field:

IT Architecture

Job Schedule:

full-time

Primary Location:

United States-Illinois-Chicago

Other Location(s):

Canada-Ontario-XXXXX, United States-New Jersey-XXXXX, United States-New York-XXXXX, United States-Illinois-XXXXX

DirectEmployers