Job Title: Network Security Architect

Organization/ Department: Group Technology Cyber Security

Reports to: Unit Head – Business Security & Architecture

Job Purpose

The Security Architect will safeguard enterprise information by identifying and establishing security requirements; planning, designing, implementing and testing comprehensive security systems; and developing security standards, baselines, solution design documents and procedures. The role emphasizes securing network infrastructure while ensuring alignment with organizational goals and compliance with industry standards.

JOB CONTEXT

The Security Architect is instrumental in designing, implementing and managing cutting-edge security solutions to support and protect Ecobank Group’s operations. This role involves collaborating with various stakeholders to create resilient, scalable and efficient network security architectures, addressing both current and emerging threats, while ensuring seamless integration with business processes and regulatory requirements.

Key Responsibilities

The Security Architect will primarily secure new and existing technologies used across the Group. This position also involves interacting with business at their locations, interfacing with vendors, designing solutions and implementing them as required. The job details include, but are not limited to, the following:

• Work with Product Owners, Development Teams, Engineering & Operations and other stakeholders to achieve alignment between cybersecurity and business objectives.
• Develop and apply cybersecurity standards and hardening guides to onboard and recertify network solutions.
• Design and maintain the overall network security process and procedures.
• Design and implement micro-segmentation strategies to isolate sensitive data and minimize the impact of breaches.
• Utilize behavioral analytics tools to detect anomalies and potential network threats.
• Maintain security by monitoring and ensuring compliance with standards, policies, and procedures and developing and conducting awareness programs.
• Upgrade security networks by monitoring security environments, identifying security gaps, evaluating and implementing enhancements.
• Enhance department and organization reputation by accepting ownership for accomplishing new and different requests and exploring opportunities to add value to job accomplishments.
• Implement defense-in-depth designs in the cloud using native and third-party tools and primitives.
• Possess a strong understanding of enterprise, network and application-level security issues, enterprise computing environments, distributed applications and encryption technologies.
• Leverage peers, industry experts, research subscriptions, vendors and trusted partners to assemble and design effective cybersecurity solutions.
• Lead the implementation of Zero Trust Architecture principles to strengthen perimeter-less security.
• Integrate network security solutions with incident detection and response workflows in collaboration with the Incident Response team.
• Act as a trusted partner and resource for Engineering, Operations and Client Service teams, providing research, analysis and design suggestions.
• Effectively communicate security solutions and designs for execution by project managers and engineering teams.
• Collaborate with Risk Management teams in the evaluation of new vendors and service providers.
• Provide mentorship and training to junior security team members to enhance overall organizational capabilities.

JOB PROFILE

• 5-10 years IT experience, with 3-5 years of focused network security field.
• Experience applying principles or frameworks such as CIS, NIST, PCI-DSS, ISO 27001/2, CSA, etc.
• Must have a strong network security background and be well versed in design practices, development tools and testing methodologies
• Strong experience with firewalls, intrusion detection/prevention systems (IDS/IPS), VPNs and other security devices.
• Deep knowledge of networking protocols and technologies (TCP/IP, DNS, HTTP, VPNs, etc.).
• Experience with cloud networking and security in cloud environments (AWS, Azure, GCP, OCI)
• Familiarity with SD-WAN, Network Access Control (NAC) and other modern networking paradigms.
• A demonstrated history of troubleshooting, investigation and root cause analysis in a highly complex environment.
• Industry Certified Security Professional; CISSP, CISM, SABSA, GIAC, CCSP, or other security certifications.
• Must demonstrate strong leadership skills as well as be able to effectively work collaboratively and cross-functionally with members of the IT organisation and various lines of business
• Must be able to balance business priorities, business risks, emerging threats and best practice of network security architecture to ensure the confidentiality, integrity and availability of the business assets.
• Ability to work in a multicultural environment.
• Excellent written and verbal communication skills.
• Able to multi-task effectively.
• Excellent troubleshooting and problem-solving skills.

Ecobank is committed to providing equal opportunities to all and fostering an inclusive and diverse workplace. To this end, we encourage applications from individuals regardless of their nationality, race, gender, age, social class, religion, beliefs, and disability while fully adhering to the local laws and regulations established where Ecobank operates.