Cyber Security Architect - #1089781

Job Description

As a Cyber Security Architect, you are responsible to architect, design, review and implement cyber security resilient in our product and projects. You are familiar to cloud security architectures and solutions, making sure the companies can operate in a safe, secure environment. You govern and initiate the security implementation and design in product. You monitor, research, and analyze security risks to mitigate threats and security attacks that may occur to or within the cloud and network. You will implement customized application security assessments for client-based asset risk, corporate policy compliance as well as conduct vulnerability assessment. You should have an advanced understanding of cloud, networking, data traffic flow, system administration, cloud architecture, OSI model, anti-malware, anti-virus, defense-in-depth and common security elements.

Your focus is not only limited to assessing whether vulnerabilities exist but also how those risks could be mitigated but also engage any security noncompliance from initial design stage in solution and cloud architecture level. 

Responsibilities

• Develop and build cloud security architectures and solutions
• Product security governance in architecture, database, key management, certification management, cryptography, account management, etc.
• Solution design for product to help reduce attacks on cloud service data storage, create preventative features, and implement corrective controls when breaches do occur
• Monitor, research, and analyze security risks to mitigate threats and security attacks
• Security check and scanning on DevOps of product development
• Regular security and risk assessment for system solutions
• Support on audit trial for security related implementations
• Consultancy on software and tools for security vulnerabilities and risks
• Plan VAPT, execution, result analysis and provide fix recommendation on product development and release procedure. 
• Provide guideline such as coding, key management, hardening, patch management, backup management, incident management, etc.
• Familiar to IM8 requirements and CIS, NIST security benchmark. 
• Familiar to cyber security tools to perform preliminary scanning.
• Familiar to public cloud infrastructure such as Azure, AWS, GCP and Huawei. 

Skills Required

• Strong IT skills and knowledge including cloud, network, hardware, and software
• DevOps procedure and process
• A forensic approach to challenges
• Good coordinator and team worker
• A degree in cyber security will be added advantage.
• A deep understanding of how hackers work and ability to keep up with the fast pace of change in the criminal cyber-underworld
• Ability to seek out vulnerabilities in IT infrastructures
• Meticulous attention to detail