As a Mainframe Security Engineer, you will be responsible for designing, deploying, maintaining, and enhancing infrastructure security capabilities for zOS / RACF / Mainframe platforms. You will ensure the security, compliance, and reliability of Mainframe systems while identifying automation opportunities and collaborating with business and technology teams. This role is critical in maintaining operational resilience, regulatory compliance, and enterprise security standards.
Key Responsibilities:
Infrastructure Security & Administration
- Design, develop, deploy, maintain, and enhance security capabilities for zOS / RACF / Mainframe platforms.
- Manage and execute security-related change requests for Mainframe systems.
- Develop and maintain Security Standards, Access Control Baselines, and operational procedures.
- Provide production support and monitoring to ensure control efficacy and solution reliability.
Automation & Process Improvement
- Identify opportunities to automate Mainframe and security administration tasks.
- Implement tools, scripts, or frameworks to improve operational efficiency and reduce manual intervention.
Collaboration & Stakeholder Management
- Work closely with Business and Systems Services teams to align infrastructure and application requirements with GIS-managed security solutions.
- Conduct product research, define requirements, and perform technical Proof of Concept for new security initiatives.
Governance, Compliance & Audit
- Contribute to the development and maintenance of Mainframe security policies, standards, and procedures.
- Ensure compliance with regulatory requirements such as MAS TRM, PCI DSS, and internal guidelines.
- Respond to audit and regulatory requests with timely and accurate information.
Job Requirements:
Education & Certifications:
- Diploma or Bachelor's degree in Computer Science, Engineering, IT, or Cyber Security.
- Professional security certifications (e.g., CISSP, CISA, CISM) preferred but not mandatory.
Experience:
- Minimum 5 years experience in RACF Security Administration and/or Mainframe Application system management.
- Hands-on experience with Mainframe programming languages and security tools.
- Experience managing projects, preferably related to Mainframe or IT security programs.
Technical Skills & Knowledge:
- Strong analytical and problem-solving skills.
- Proven experience leading security initiatives in large organizations.
- Knowledge of regulatory requirements such as MAS TRM, PCI DSS, etc.
- Familiarity with AS400 and Splunk is a plus but not mandatory.
Soft Skills:
- Excellent communication skills to work with stakeholders across business and IT teams.
- Ability to handle audits, compliance checks, and regulatory requests professionally.
- Proactive, detail-oriented, and capable of working independently or within a team environment.
