RBL Bank - Information Security Architect

Description :

Role Overview :

The Enterprise Architect Information Security will be responsible for defining, governing, and evolving the organizations security architecture across business, application, data, and technology domains. This role will ensure that security is designed-in, architecturally consistent, and aligned with business objectives, regulatory requirements, and risk appetite.

The architect will work closely with business leaders, IT, risk, compliance, and engineering teams to establish enterprise-wide security principles, reference architectures, and roadmaps.

Responsibility :

Security Architecture & Strategy :

- Define and maintain enterprise-wide information security architecture aligned with business strategy and risk posture

- Develop security principles, standards, patterns, and reference architectures
- Translate business and regulatory requirements into security architecture designs

- Establish and govern security architecture review processes across projects and programs

- Ensure solutions comply with ISO 27001, NIST, CSA, CIS, and other relevant security frameworks

- Ensuring regulatory compliance from information security standpoint e.g. DPSC, Master Directions and other guidelines from RBI, SEBI, etc.

- Perform architecture-level risk assessments and recommend appropriate controls

- Provide architectural input into risk acceptance, mitigation, and remediation decisions

Technology & Architecture Domain :

Architect Solutions Across :

- Identity & Access Management

- Network & Perimeter Security

- Cloud Security

- Application Security & DevSecOps

- Data Protection & Privacy

- Endpoint & Platform Security

- Evaluate and recommend security technologies, solutions and vendors

Cloud & Modern Platforms :

- Define cloud security architecture for AWS, Azure, GCP, or hybrid environments

- Ensure secure use of containers, Kubernetes, APIs, and microservices

- Establish security guardrails for CI/CD, infrastructure as code, and automation

Technology Evaluation & Innovation

- Evaluate emerging technologies and recommend adoption paths.

- Drive modernization initiatives such as virtualization consolidation, infraascode, software-defined networking, and containerization

Qualification :

- Bachelors or Masters degree in Computer Science, Information Systems, Cybersecurity, or related field

- Minimum 10+ years of experience in IT industry

- Minimum 5-7 years of experience in Information Security/Enterprise Architecture roles

Skills :

- Enterprise Architecture frameworks (TOGAF preferred)

- Security frameworks : NIST, ISO 27001/27701, SABSA

- Cloud Security Architecture (AWS/GCP/Azure)

- Identity & Access Management (SSO, MFA, PAM, Zero Trust)

- Network, application, and data security

- DevSecOps and Secure SDLC

- Risk assessment and threat modelling techniques

Certifications Preferred :

- TOGAF

- CISSP/CISM/CCSP

- SABSA

- Cloud Security Certifications (AWS/GCP/Azure)

- Containers & orchestration (Kubernetes, OpenShift)

- Automation (Terraform, Ansible, ARM/Bicep)

- Monitoring & Observability tools (Solarwinds, Dynatrace, VuNet)

- Certification in VMWare, Nutanix, CISCO