Standard Chartered Bank Nigeria - We attract talented individuals. Not only can they give you the benefit of their experience, they also reveal a closer, more personal look at the wide range of global opportunities we offer. At the core of the Group's people strategy is our focus on employee engagement. Engagement is a key driver of productivity and performance, which creates the foundation of our performance culture. We encourage and focus on the behaviours that bring out the very best from every employee, assessing their performance not just on results but on how those results were achieved. To further embed these behaviours we have a remuneration programme in place, carefully designed to incentivise our employees to live our values every day.
Security Technology Services (STS) is a critical function within Standard Chartered Bank operating under the overall purview of “Enterprise Technology”.
The STS team is made up of cyber security thought leaders, who are accountable for the provision of a global set of cyber security services and products in order to maintain and continuously improve Bank’s cyber security posture in today’s ever evolving cyber security landscape.
The STS function protects the Bank from cyber security threats by delivering effective information security technology services, managing and responding to security incidents to ensure, and support the continuity and growth of Bank’s business operations; and meet the both internal and external stakeholders’ expectations across 70+ countries and territories, in which SCB operates.
Within this function we are looking for a skilled Engineer who will drive the implementation of Cloud Security Solutions to improve the Bank’s security posture and protect it from complex cyber threats. The ideal candidate would have an Engineering mindset with excellent problem-solving capabilities and would be able to convert abstract ideas to working solutions.
Responsibilities
Responsible for driving the delivery of authentication capabilities i.e. SSO, Multi-factor Authentication and Directory services for applications in the cloud, ensuring security controls become the default for Cloud/ SaaS based applications
Work as part of a small skilled team (Tribe/ squad) of engineers and senior architects to analyse technical and non-technical requirements to build robust authentication patterns for cloud-based applications.
Manages and continuously enhances capabilities within Security Technology service portfolio.
Operates various Authentication technology tools, based on specialization, but not limited to Single Sign on, Multi-factor authentication and directory services.
Operates and provide expert guidance on authentication controls required in the cloud
Makes recommendations to improve integration of applications with enterprise authentication service capability
Coordinate solution implementation, advisory, problem management, change control and incident response.
Collaborates with business teams, infra teams, security operations and offers technical guidance
Develops, tracks and analyses actionable metrics to continuously improve tooling and procedures and provide visibility of operations to management.
Performs security assessments and vulnerability analysis as required to justify risk tolerances and acceptances
Documentation of security infrastructure, implementation, operational manuals and developing configurations to meet new business requests
Review findings from and identify root causes for common issues and provide recommendations for sustainable improvement.
Competencies (Knowledge & Skills)
A Bachelor's Degree in Engineering or related fields
8 - 10 years of progressive IAM experience with focus on Authentication & Authorisation with at least 4 years in delivering enterprise solutions
Must hold industry certifications such as - Azure Security, Azure Developer, AWS Cloud Practitioner and AWS Security.
Hands on experience in public clouds (AWS/Azure) is a must
Must have experience in implementation of authentication and authorisation technologies and federated identity standards and protocols (multifactor authentication, secure-key, SSO, LDAP Kerberos, OAuth, SAML, OpenID Connect) at an enterprise scale
Strong understanding of ForgeRock Directory Services(Open DS), Oracle Unified Directory, ForgeRock Access Manager (OpenAM), ForgeRock Identity Gateway and Active & (Azure AD) Directory (desirable)
Skillsets in the following would be an advantage:
Programming experience in Java/J2EE, Spring/Hibernate, Rest APIs, JSON, XML
Experience in Infrastructure as a Code Products ((Terraform, Cloud Formation)
Working knowledge of Containers and container orchestration platform