Vice President

Job Description : VP SECURITY ASSESMENT IRELAND Join one of the world’s most respected financial institutions, renowned for its stability, innovation, and commitment to excellence. You'll shape the future of security automation across a complex, global environment — embedding cutting-edge security practices into every stage of the development life cycle across the bank’s cloud and on-premises platforms, ensuring security is robust, scalable, and ahead of emerging threats. What you'll do: Automated Security Pipelines – Design and implement enterprise-grade security assessment pipelines integrating SAST, DAST, IAST, and SCA tools into CI/CD workflows. Infrastructure as Code Security – Integrate security testing into IaC workflows (Terraform, CloudFormation), ensuring security by design in automated deployments. Hybrid Environment Coverage – Support cloud-native (Azure, GCP) and on-prem infrastructure with tailored assessment strategies. Ephemeral & Traditional Infrastructure – Implement pre-deployment validation for immutable resources and architect scanning solutions for long-lived assets using network and agent-based tools. Policy-as-Code Governance – Establish frameworks for automated enforcement of security baselines and compliance requirements. Shift-Left Security – Collaborate with DevOps and platform teams to embed security early in the software delivery process. Tooling & Innovation – Continuously evaluate emerging security tools and techniques, ensuring alignment with evolving threats and technologies. Security Architecture Guidance – Provide governance, secure design patterns, and best practices for security automation. What you'll bring: Strong knowledge of CI/CD security integrations and DevSecOps principles. Proficiency in security assessment tools (SAST, DAST, IAST, SCA) and pipeline automation. Expertise in CI/CD security, DevSecOps, and automation of security assessments (SAST, DAST, IAST, SCA). Hands-on with Infrastructure as Code security (Terraform, CloudFormation) and Policy-as-Code (Azure Policy, OPA). Experience securing hybrid/multi-cloud (Azure, GCP) and on-prem environments. Strong knowledge of security frameworks (NIST CSF, ISO 27001/2, CIS) and secure design principles. Skilled in threat modelling, Zero Trust, Least Privilege, and Network Segmentation. Familiar with SSDLC, governance, risk, compliance, and secure coding practices. Understanding of architectural patterns (Multi-Tier, Microservices, Event-Driven) and frameworks (TOGAF, SABSA).

---