Security Architect

Providing consultancy style expertise in security architecture, including managing difficult conversations and influencing colleagues to recognize the importance of security.

Developing conceptual and logical security design abstractions to identify threats and vulnerabilities for the Security Architecture solution.

Analyzing systems, applications, and components to identify risks and propose security controls and countermeasures.

Making significant architectural decisions involving senior management, sponsors, and projects to ensure secure outcomes and appropriate governance practices.

Updating existing control reference patterns, managing risk and assurance requirements, and developing new design artifacts for Enterprise security capabilities.

Coaching and mentoring others in the practical application of security and risk management concepts, principles, and relevant industry standards.

Committing to and delivering high-quality security output to support projects and stakeholders in managing cyber risks.

Enhancing design and architectural efficiencies through establishing processes, guidelines, methodologies, and approaches.

At least 7+ years in Security Architecture, focusing on SIEM, Customer IAM, or IAM domains, OR 10+ years in Solution Architecture with significant exposure to SIEM and IAM technologies.

Strong English proficiency (verbal and written) in a global software development environment.

Degree in Computer Science, Information Systems, or an equivalent technical qualification.

Expertise in threat lifecycle management, security log and event management (SIEM), user and system behavior analytics (UEBA), and security orchestration & automation (SOAR).

Deep knowledge of incident response, contextual security correlation, and cloud security models (IaaS, PaaS, SaaS).

Strong technical understanding of identity & access management, data protection, vulnerability management, database security, application security, network security, and DevSecOps.

Proficiency in human & system authentication/authorization, adaptive authentication, and identity lifecycle management & governance.

Expertise in interdomain trust, privileged access management, directory services, Zero Trust architectures, roles & entitlements management, and Cloud/SaaS IAM & mainframe IAM.

Hands-on experience in secrets management for secure credential storage.

Comprehensive understanding of Customer IAM, including authentication, authorization, and lifecycle management.

Strong technical background in cloud computing, DevOps, microservices architecture, containerization, and data protection.

Ability to design enterprise-wide SIEM solutions, ensuring scalability and effectiveness.

Hands-on experience in SIEM deployments and security operations is advantageous.

Ability to assess and manage complex security solutions, balancing business, technical, and security considerations.

Awareness of product/vendor market trends and implementation of industry best practices.

Professional security certifications (CISSP, CCSP, etc.) are beneficial.

Architecture or technology-related certifications (SABSA, Cloud Security) add value.

Adaptability to various risk & security management frameworks.

Competitive compensation, comprehensive health insurance for employees and dependents.

Participation in international projects within a professional and dynamic work setting.

Gaining valuable experience with diverse projects, new technologies, and a multitude of talents.

Access to training opportunities, including technical seminars and soft skill courses.

Potential for promotion through a regular performance review system.

PEGASI – IT Recruitment Consultancy | Email: recruit@pegasi.com.vn | Tel: +84 28 3622 8666