IT Specialist (Technical Security)
Job Vacancy | Friday, March 10, 2023
Overview
Asian Development Bank (ADB) is an international development finance institution headquartered in Manila, Philippines and is composed of 68 members, 49 of which are from the Asia and Pacific region. ADB is committed to achieving a prosperous, inclusive, resilient, and sustainable Asia and the Pacific, while sustaining its efforts to eradicate extreme poverty. ADB combines finance, knowledge, and partnerships to fulfill its expanded vision under its Strategy 2030.
The position is assigned in the Infrastructure and Technology Division (ITID) within the Information Technology Department (ITD). ITD enables ADB’s digital agenda and supports the Bank’s global operations. The department delivers digital innovation, IT infrastructure, services and solutions, and provides tools and knowledge platforms.
ITID is responsible for the design, governance, implementation, maintenance, and day-to-day operations of ADB’s technology infrastructure, platforms and associated systems. The division monitors production systems and outsourced vendors, makes necessary adjustments to maintain desired service levels, and resolves production issues. It also monitors ADB’s infrastructure and applications for potential security threats and reacts appropriately to identified security breaches.
Job Purpose
The IT Specialist (Technical Security) is responsible for ensuring key risks in the domain of Identity and Access Management (IAM) are timely identified and addressed. The person will also support other Technical Security functions including but not limited to Cyber Security Operations, Security Engineering, Red Team Exercises and Forensic Investigation.
The incumbent reports to Director, ITID and may supervise national and/or administrative staff.
Responsibilities
-
Access Management Infrastructure Operations
- Engage relevant stakeholders in managing requirements, solution delivery and ongoing enhancements relating to Identity and Access Management (IAM), Privileged Access Management (PAM), Active Directory (AD) and Public Key Infrastructure (PKI) solutions
- Manage delivery and managed service providers and oversee extended teams of vendor personnel to ensure key performance objectives and service level agreements are met
- Develop and maintain performance metrics, snapshots and report key business outcomes, benefits and / or risks and issues
- Adhere to internal and external compliance requirements and support regular attestation efforts focusing on relevant access management controls
-
Security Operations Support
Participate in the Bank’s first line-of-defense activities as a member of the Cyber Security Operations Center in our effort to combat cyber threats, particularly providing support over a number of the following capabilities where applicable:
- Blue team operations
- Incident response
- Forensic investigations
- Security infrastructure engineering
- Security automation and orchestration
- Red / purple team operations
- Security analytics and proactive threat hunting
- Attack surface management
- Vulnerability disclosure and bug bounty program
-
Capacity Building and Process Improvement
- Closely collaborate with the CISO function and ensure operational alignment with security strategy, governance directives, policies and procedures
- Continuously improve service quality and efficiency through the use of process automation or other process improvement techniques
- Provide guidance, training and support to reporting staff and agency personnel
- Foster growth within the team and across the Bank’s various cyber security functions and grow with the team at large
- Liaise with relevant stakeholders within and outside ITD and effectively communicate cyber security topics with an impact
- Inspire and nurture a culture of cyber security within the Bank and with the Bank’s external stakeholders and clients, where applicable
Qualifications
Relevant Experience & Requirements
- Master’s degree or equivalent in IT or relevant fields. Alternatively, university degree in related fields, combined with relevant specialized professional experience may be considered in lieu of a Master’s degree.
- Minimum of 8 years of relevant professional experience with preferably more than 5 years of experience in the field of IAM or PAM
- Hands-on implementation or operations experience with one or more leading IAM solutions (e.g. Sailpoint, Saviynt, One Identity or others) is strongly preferred
- Strong focus and familiarity with security concepts and technologies in the wider Identity and Access management domain (Logical Access Controls, Role Based Access Controls, Passwordless / multi-factor authentication, PKI infrastructure, Single Sign-On, etc.).
- Knowledge with Microsoft and Azure technologies as well as any of the capabilities under Security Operations is an advantage
- Certifications in IT Security, such as Certified Information Systems Security Professional (CISSP), Global Information Assurance Certifications (GIAC), and/or IAM / PAM related areas will be an advantage
- Knowledge of management issues involving IT security in a large corporate environment
- Ability and experience to work in a multicultural environment with people of diverse background
- Demonstrated experience building teams and capabilities is strongly preferred
- Excellent interpersonal, relationship, and stakeholder management skills
- Excellent written and verbal communication skills in English
- Please refer to the link for ADB Competency Framework for IS4
General Considerations
The selected candidate, if new to ADB, is appointed for an initial term of 3 years.
ADB offers competitive remuneration and a comprehensive benefits package. Actual appointment salary will be based on ADB’s standards and computation, taking into account the selected individual’s qualifications and experience.
ADB seeks to ensure that everyone is treated with respect and given equal opportunities to work in an inclusive environment. ADB encourages all qualified candidates to apply regardless of their racial, ethnic, religious and cultural background, gender, sexual orientation or disabilities. Women are highly encouraged to apply.
Please note that the actual level and salary will be based on qualifications of the selected candidate.
