JobsPortal logo

Search Jobs In Finland

Head of Security Architecture

Published date more than one year ago
Posted: more than one year ago
Company Nordea
Company: Nordea
End date Sept. 4, 2019
Due date: Sept. 4, 2019
Location Helsinki
Location: Helsinki

In Nordea, Group Architecture has a critical role in supporting business goals and strategy in order to maximise customer value, whilst enabling synergies and common approaches across Nordea’s operations — its core business functions, processes, information systems, and services.

We are making significant investments in Enterprise Architecture (EA) to drive this significant positive impact on business value in several areas, including decreased operating costs, improved speed-to-market, reduction of complexity and risk, and greater overall technology effectiveness.

This forms the backdrop of Nordea’s focused journey of being a leading digital bank.

Group Architecture is facilitating major strategic changes that are transforming the business from  branch- focused to highly digitally enabled, with an emphasis on leveraging current and emerging technologies to do so. Its aims is to provide an end-to-end holistic view of the enterprise, in order to support the decision-making process needed to continuously improve and fine-tune the effectiveness and efficiency of the business. Hence, we are looking to bring onboard a senior professional and a natural leader who along with a small team will engage with key leaders across all global functions and business units and seek to understand both current capability gaps and future business needs.

This role will report to the Head of Group Architecture.

Location: Copenhage, Stockholm, Helsinki, Oslo

About this Opportunity

The successful candidate will be an experienced security architecture professional, who can drive the strategic deliverables of the Security Architecture practice, and will play a central role in the Group Architecture organisation in identifying and defining security capabilities that translate into cost-effective mitigation of security and cyber risk to all aspects of business and technology. The role involves both conceptual knowledge as well as familiarity with security policy and operations functions in order to realize practical outcomes of architecture.

The idea candidate will also possess an understanding of Risk and Compliance functions as they relate to security, and the security dimensions of Technology and Compliance especially in areas such as public cloud, SaaS and DevSecOps. The intent is to simplify how security is demonstrated and managed whilst maintains a high bar of risk mitigation.

We are looking for a charismatic leader, who has a proven understanding of enterprise security threats, risks, and vulnerabilities and great interest in emerging technologies, who can formulate and drive the strategy and development of future state architectural requirements and roadmaps for all environments. The right candidate can translate security architecture topics into business and technology language and vice versa.

In addition, the person we are looking for enjoys working in an architectural role with senior level stakeholder management, who is able to de-mystify and help prioritize the high rate of transformational change.

Responsibilities:

  • Lead and develop a small team of enterprise Security Architects 
  • Drive the transformation of Security Architecture, with a focus on enabling measurable outcomes that mitigate risk to the bank. 
  • Work closely with senior stakeholders such as the Chief Information Security Officer (CISO), Technology Information Security Officer (TISO), and Chief Security Office (CSO) 
  • Interface with SOC, Threat Intelligence and Solution Architecture teams 
  • Produce and publish security architecture deliverables, including artefacts (architectures, strategies, road-maps, visions etc.), specifications, standards.  
  • Monitor compliance and regulatory requirements and translate applicable elements into relevant artefacts that can be translated into policies and standards. 
  • Perform necessary gap analysis of current state security and threat landscape with required target state 
  • Co-develop and drive the strategy with all stakeholders across Nordea, including participating in relevant project steering committees and programmes. 
  • Lead the identification and analysis of enterprise business drivers to deliver security principles and attributes that can be consumed by business, information, technical and solution architecture. 
  • Analyse industry, technology, and market trends to determine security and cyber potential impacts on the enterprise, and effective approaches to mitigating such risks. 
  • Work with the business, functions, data and technology stakeholders to identify partnerships, products or tecniques that help our cross-functional teams improve security-related outcomes 
  • Lead and facilitate the creation of governing principles to guide solution decision making for the enterprise 
  • Ensure that an optimal governance structure and compliance activities exist, that demonstrate and mitigate security and cyber risk with minimum complexity and redundancy. 
  • Define organizational requirements for the resources, structures, and cultural changes necessary to deliver optimal security and cyber risk mitigation, including investment review and prioritization. 
  • Team up across business, solution architecture and technology units to identify opportunities to leverage common solutions and extend the adoption of standards 
  • Collaborate with business, functions, data, risk, compliance and technology leadership in the design and development of the enterprise strategic direction and vision  
  • Facilitate the communication of architecture best practices throughout the architecture community and Nordea as a whole by participating in leadership forums, architecture councils. 
  • Use technology knowledge to anticipate and understand the implications of the latest technologies to communicate and evangelize them to appropriate audiences and to integrate these technologies appropriately into products and programs. 
  • Coach, lead and mentor members of the team 
  • Lead by example 

Who you are

The successful candidate will have in depth experience of working in enterprise architecture in a corporate, international environment. He/she will be a natural leader, have an analytical mindset, be a strategic thinker and a strong problem-solver.

Nordea’s four key values are: Collaboration – Ownership – Passion – Courage and we expect all our people to embody these values.

You will also need:

  • 10+ year experience working in Enterprise Architecture and Architecture, with at least 5 years within financial services 
  • 7+ years experience with security architecture 
  • Experience working in large business and technology matrix organizations 
  • Strong leadership experience having operated successfully within multi-cultural organizations 
  • Familiarity with frameworks such as TOGAF or Zachman 
  • Security-related certifications (e.g. SABSA, CISSP) would be a strong advantage 
  • Excellent English both written and spoken 
  • A relevant degree or equivalent experience demonstrating deep and broad knowledge of security, ranging from strategic to operational 

Apply by the 4th of September 2019

We believe that diversity improves team performance. Therefore, we strive to form teams with a mix of people of different genders and ages, and with different backgrounds and experiences.