Security Architect

*** This is an onsite role based in Ho Chi Minh City, Vietnam - relocation assistance will be provided ***

Title: Security Architect

Role Overview

We are seeking an experienced Security Architect to strengthen enterprise cyber capabilities, safeguard IT system changes against evolving threats, and reduce vulnerabilities across complex technology environments. This role requires influencing senior stakeholders, guiding project leaders, and ensuring that solution designs align with security objectives while enabling business opportunities.

Key Responsibilities

• Provide consultative security architecture expertise, including handling challenging conversations and influencing colleagues to prioritize security.
• Design and deliver conceptual and logical security architectures to identify threats and vulnerabilities within solutions.
• Conduct risk analysis of systems, applications, and components, recommending mitigating controls and countermeasures.
• Drive architectural decision-making with senior management and project sponsors to ensure secure outcomes and strong governance.
• Develop and maintain security reference patterns, proactively manage risk and assurance requirements, and create design artefacts for integration, re-use, and enterprise security capabilities.
• Mentor and coach peers in applying security and risk management principles, industry standards, and best practices.
• Deliver timely, high-quality security outputs that support project goals and reduce cyber risk exposure.
• Enhance architectural efficiency by establishing and leveraging processes, guidelines, and methodologies.
• Demonstrate professionalism, transparency, teamwork, and resourcefulness in all engagements.

Required Skills & Experience

• 7+ years of Security Architecture experience with a focus on SIEM or IAM domains, OR 10+ years of Solution Architecture experience with significant exposure to SIEM/Customer IAM.
• Strong communication skills (written and verbal) in a global software development environment.
• Degree in Computer Science, Information Systems, or equivalent technical qualification.
• Hands-on experience with at least one of the following technology sets:

Cyber Defence

• Threat lifecycle management, SIEM, UEBA, SOAR, incident response, contextual correlation, cloud security models (IaaS, PaaS, SaaS).
• Solid understanding of adjacent domains: IAM, data protection, vulnerability management, database security, application security, network security, DevSecOps.

Identity & Access Management (Workforce)

• Authentication/authorization, adaptive access, identity lifecycle management & governance, interdomain trust, privileged access, directory services.
• Zero Trust architectures, roles & entitlements, Cloud/SaaS IAM, mainframe IAM, secrets management.

Identity & Access Management (Customer)

• Customer IAM including authentication, authorization, lifecycle management.
• Knowledge of cloud, DevOps, microservices, containerization, and data protection.

Preferred Qualifications

• Ability to balance complex solutions and technology landscapes, weighing business, technical, and security drivers.
• Awareness of vendor/product market trends and ability to apply industry best practices.
• Security certifications (e.g., CISSP, CCSP) are advantageous.
• Architecture or technology certifications (e.g., SABSA, Cloud Security) are beneficial.
• Familiarity with multiple risk and security management frameworks.

*** This is an onsite role based in Ho Chi Minh City, Vietnam - relocation assistance will be provided ***