Principal Solution Architect

at  WESTPAC BANKING CORPORATION

HOW DO I APPLY?

Start here. Just click on the APPLY button.
At Westpac we are committed to providing a supportive culture and creating diverse, inclusive, and accessible workplaces, branches, products and services for our customers, employees, and community. This role is open to experienced candidates seeking a discussion around workplace flexibility. We invite candidates of all ages, genders, sexual orientation, cultural backgrounds, people with disability, neurodiverse individuals, and Indigenous Australians to apply. If you have questions about the recruitment process, please email talentacquisition@westpac.com.au.

YOUR KEY RESPONSIBILITIES INCLUDE:

• Develop, maintain, and communicate integration strategy, roadmaps, policies, patterns, standards, guidelines, and guardrails pertaining to security aspects of application integration. Align integration with security domain strategies and roadmaps.
• Provide thought leadership to the organisation, particularly pertaining to integration security.
• Collaborate with security architecture, ISG and domain architects on integration domain architecture assets pertaining to security aspects of application integration. Combine deep expertise in integration with a broad understanding of related areas like security, data architecture, infrastructure, and business processes.
• Implement fit for purpose authentication and authorisation protocols, including OAuth2, SAML, JWT, OpenID Connect, Kerberos, RADIUS, TACACS+, basic and mutual authentication.
• Apply OWASP standards and best practices to secure web applications and mitigate common vulnerabilities such as those listed in the OWASP Top Ten.
• Lead integration architecture project outcomes, including the development of architecture documentation, and obtain required approvals. Manage the resolution of architecture decisions and issues to ensure timely identification and resolution of architecture issues.
• Have an organisation-wide scope, overseeing integration security strategies and architectures across multiple projects, teams, or business units.
• Liaise with all significant contributors to end to end integration solution, including architecture and engineering; infrastructure; security (ISG); delivery; and vendors.
• Collaborate with vendors to develop fit for purpose integration security solutions and capabilities.
• Influence vendors to align capabilities with needs of the organisation.

To be successful in this role, you will need to demonstrate the below skills

• Experience in integration and information security, with at least 5 years in a security integration architecture role.
• Proficiency in authentication and authorisation protocols (OAuth2, SAML, JWT, OpenID Connect, Kerberos, RADIUS, TACACS+, Basic Auth, Mutual Authentication, XACML).
• Experience with identity and access management solutions (RACF, Active Directory, LDAP)
• Knowledge of API security standards (FAPI) and management tools.
• Understanding of encryption technologies and key management practices.
• Knowledge in at least one middleware or eiPaaS products (such as TIBCO; IBM ACE, WPS, Boomi, Mulesoft) is desirable.
• Strong experience across multiple architecture domains and knowledge of enterprise architect disciplines and frameworks such as TOGAF