Mainframe Security Lead

Mainframe Security Lead

As a Cyber Defense Security Designer for IBM Mainframe Z Series (and iSeries), your primary role is to maintain and improve the overall security posture of the organization's IT infrastructure that is based on IBM Mainframe Z Series (and iSeries) technology.

You will work closely with the security team and other stakeholders to identify potential security risks and develop effective remediation strategies specific to IBM Mainframe Z Series and iSeries architecture. You will also work closely with other Cyber Defense security product specialist/teams, on the architecture, vision and roadmap of the Cyber Security Products. The goal is to protect AXA's (including customer) data adequately.

Key Activities:

• Conduct regular security assessments of our IBM Mainframe Z Series and iSeries infrastructure and identify potential vulnerabilities that need to be addressed.
• Support the distributed and entities teams with the implement and maintenance of IBM Mainframe Z Series and iSeries security policies, procedures, and standards in compliance with applicable legal and regulatory requirements.
• Perform periodic detailed assessments of the operating system and infrastructure components' security configuration to identify security vulnerabilities and provide remediation alternatives.
• Coordinate security incident response and investigation with the relevant parties in the IBM Mainframe Z Series and iSeries area.
• Provide IBM Mainframe Z Series and iSeries specific security guidance and support to other teams in the organization.
• Support the implementation of IBM Mainframe Z Series and iSeries-specific security controls for new systems and projects.
• Contribute to IBM Mainframe Z Series-specific security awareness training for employees and contractors.
• Identify potential security threats for IBM Mainframe Z Series and iSeries systems and proactively recommend and take necessary actions to mitigate those risks.
• Stay up-to-date on the latest IBM Mainframe Z Series and iSeries-specific security threats and trends and recommend new technical, administrative, or process changes to improve security posture.
• (Co) lead the product vision (5y) development of a Cyber Security product.

Mission: Protect AXA by:

• Bringing the requirements of the Distributed/Mainframe teams, Entities, threat landscape, and external regulations together in a clear plan to move ahead.
• Supporting IT project/products in their security risk mitigation by identifying the suitable prevention, detection, and response methods.
• Improving the security level of the Mainframe and IBM iSeries.
• Improving the assigned Cyber Defense products, to keep them relevant in the threat landscape.

Profile:

• Education: Bachelor’s degree in Computer Science, Information Technology, Cybersecurity, or equivalent practical experience.
• Certifications: Relevant security certifications related to IBM Mainframe Z Series such as IBM Certified Administrator - Security z/OS, IBM Certified Specialist - z Security Technical Sales, etc., would be a plus. Cloud Architecture qualification, Cloud Security qualifications.
• Overall work experience in the field: Minimum of 8 years of experience in IT security operations, specifically related to IBM Mainframe Z Series and iSeries.
• Experience with IBM Mainframe-specific security tools and technologies, such as RACF, zSecure, Syslog, CARLA, ICSF, etc.
• Knowledge of IBM Mainframe Z Series-specific security standards and frameworks such as z/OS Security, RACF, zSecure, etc.
• Experience with building out RACF reports in zSecure to support database authenticity.
• Experience with onboarding and decommissioning applications into RACF structures.
• Extensive knowledge of SSO, Active Directory (AD), LDAP, public key infrastructure (PKI), privileged accounts, integration of application program interface (API), implementation and support of digital certificates, Kerberos, SSL, SSH.
• USS experience is highly desired.
• Understanding of IBM Mainframe Z Series-specific network protocols, operating systems, and virtualization technologies.
• Excellent analytical and problem-solving skills for IBM Mainframe Z Series.
• Strong written and verbal communication skills in providing advice, recommendations, or technical support in IBM Mainframe Z Series security.
• Experience in Information Security discipline(s) > 10 years.
• Experience in technical Information Security solution design > 10 years.
• Hands-on experience in a range of technologies e.g., Cloud, SOC, SIEM, IAM, IPS/IDS, WAF, HIPS, firewall, PUAM, Microsoft 365, Unix, Azure, Amazon Web Services, Forensics, etc. > 5 years.
• Security Architecture experience, in creating and leading the security product roadmap development.

Skills:

• Ability to function effectively in a matrix structure.
• Operate comfortably at management level.
• Strong facilitation, negotiation, and conflict resolution skills.
• Strong networking skills.
• Team player.
• Apply analytical rigor to understand complex business scenarios.
• Fluent in English both spoken and written.

Key skills/competency:

• Mainframe Security
• IBM Mainframe Z Series
• iSeries Security
• Cyber Defense
• Security Architecture
• RACF
• zSecure
• Information Security
• Risk Management
• Security Operations