To lead the architecture, design, and governance of the bank’s enterprise network and network security infrastructure, ensuring secure, scalable, and high-performing connectivity across all branches, data centers, and cloud environments.
- Develop and maintain enterprise-wide network architecture -including data center networking, LAN, WAN, wireless, and cloud connectivity- to ensure performance, scalability, and resilience.
- Define and implement security architectures for perimeter defense, network segmentation, zero-trust models, and secure remote access.
- Lead modernization initiatives including SDN, SD-WAN and automation to support digital banking transformation.
- Ensure network architecture aligns with industry regulations (e.g., PCI-DSS, SWIFT CSP) and internal security policies.
- Evaluate new networking and security technologies; define architecture standards and reference models.
- Work closely with infrastructure, cybersecurity, and application teams to ensure network designs support business needs and secure data flows.
Contribute to budget planning and optimize network and security architecture investments for performance and cost-efficiency.
- Bachelor’s degree in computer engineering, information technology, or any related field.
- 10+ years of experience in enterprise networking, with at least 5 years in architecture roles preferably within the banking sector.
- Proven expertise in designing large-scale, resilient network infrastructures including data center networking, SDN, SD-WAN, and hybrid cloud integrations.
- Strong understanding of routing and switching (BGP, OSPF, VLANs, STP), DNS and load balancing.
- Familiarity with enterprise network monitoring, configuration management, and automation tools (e.g., SolarWinds, Ansible, Cisco DNA Center).
- Deep knowledge of firewalls, IDS/IPS, segmentation, NAC, VPN, WAF, LTM and secure remote access.
- Experience integrating cloud network models (Azure/AWS networking, VPNs, ExpressRoute, Direct Connect) with on-prem infrastructure.
- Understanding of compliance requirements such as PCI-DSS and ISO 27001 as applied to network and perimeter security.
- Ability to translate business requirements into secure and scalable network designs.
Professional Certification (CCIE, DCACI, F5 CTS-LTM/ASM, CISSP, CISM)
Report job
