Security Architect

Location Vietnam
Industry
Job reference 18007
Job type Permanent
Consultant email duong.tran@manpower.com.vn
Date posted Apr 02, 2025

Job Responsibilities:

  • Provide Security Architecture consultancy with subject matter expertise, guiding colleagues on the importance of security and managing complex discussions.

  • Develop conceptual and logical security designs, identifying threats and vulnerabilities within solution architecture.

  • Analyze systems, applications, and components to assess risks and recommend appropriate security controls and countermeasures.

  • Lead major architectural decisions, engaging with senior management, sponsors, and project teams to ensure secure outcomes and governance compliance.

  • Utilize and refine existing control reference patterns, proactively managing risks, assurance requirements, and developing design artifacts for integration, reuse, and security reference models.

  • Mentor and coach teams on security and risk management principles, industry standards, and best practices.

  • Deliver high-quality security solutions to support projects, ensuring effective cybersecurity risk management.

  • Enhance design and architectural efficiency by establishing and leveraging security frameworks, methodologies, and processes.

  • Foster collaboration, transparency, and teamwork, demonstrating professional etiquette and a proactive approach.

Required Skills & Experience:

Must-Have:

  • 7+ years of Security Architecture experience, specializing in SIEM, Customer IAM, or IAM domains, OR 10+ years of Solution Architecture experience with strong SIEM/IAM exposure.

  • Excellent English communication skills (written & verbal) in a global software development environment.

  • Degree in Computer Science, Information Systems, or a related technical field.

Security Architecture Specializations:

Cyber Defense:

  • Expertise in Threat Lifecycle Management, Security Log & Event Management (SIEM), User & System Behavior Analytics (UEBA), Security Orchestration & Automation (SOAR), Incident Response, and Cloud Security Models (IaaS, PaaS, SaaS).

  • Strong understanding of related security domains: IAM, data protection, vulnerability management, database security, application security, network security, and DevSecOps.

IAM (Workforce):

  • Hands-on experience with Human & System Authentication/Authorization, Adaptive Authentication, Identity Lifecycle Management & Governance, Privileged Access Management (PAM), Directory Services, and Zero Trust Architectures.

  • Expertise in Cloud/SaaS IAM, Mainframe IAM, Secrets Management, and Role & Entitlement Management.

IAM (Customer):

  • Deep knowledge and hands-on experience in Customer Identity & Access Management (CIAM), covering authentication, authorization, and lifecycle management.

  • Strong technical understanding of Cloud, DevOps, Microservices, Containerization, and Data Protection.

SIEM, Logging & Monitoring:

  • Ability to architect SIEM solutions for enterprise-wide implementation with foresight into what, why, and how solutions should be shaped.

  • Experience in SIEM deployments and security operations is an advantage.

Nice-to-Have:

  • Ability to navigate complex technology landscapes, balancing business, technical, and security considerations.

  • Awareness of industry trends, security products, and vendor solutions with the ability to implement best practices.

  • Security Certifications (e.g., CISSP, CCSP) and Architecture/Technology Certifications (e.g., SABSA, Cloud Security) are beneficial.

  • Experience working with various risk and security management frameworks.