Security Architect Expert

Expert/Principal
Apply icon play

JOB PURPOSE

  • Design and define enterprise-level security architecture, particularly for Public Cloud environments (AWS/Azure/GCP), following secure-by-design principles.

  • Design and implement Cloud security components, including:

    • Cloud Landing Zone

    • Identity & Access Management (IAM)

    • Network Security (Firewall, Segmentation, Zero Trust)

    • Vulnerability Assessment & Management

    • Data Protection (Encryption, Key Management, DLP)

    • Logging, Monitoring & Security Analytics

    • Compliance controls and security baselines

  • Hands-on implementation or strong involvement in security solutions such as:

    • Firewalls, IDS/IPS

    • Web Application Firewalls (WAFs)

    • Endpoint Protection

    • SIEM and log management platforms

  • Work closely with Cloud, Infrastructure, Application, DevOps teams and Banking partners to embed security controls across the system lifecycle.

  • Conduct security assessments, threat modeling, risk analysis, and provide remediation recommendations.

  • Ensure compliance with industry standards and regulations such as ISO 27001, PCI-DSS, SOC2, NIST, OWASP, and internal Banking security policies.

  • Support security incident investigation, log analysis, and root cause analysis (RCA).

  • Contribute to the definition of long-term security strategy, roadmap, and target architecture for Banking systems.

JOB REQUIREMENTS

  • At least 3+ years of relevant experience in Cloud Security or related security domains.

  • Strong hands-on experience in designing and deploying security systems and tools on Public Cloud platforms.

  • Solid knowledge and hands-on experience with security concepts and solutions including:

    • Firewalls, IDS/IPS, WAF

    • Endpoint Protection

    • SIEM and log management technologies

  • Strong understanding of system architecture, networking, applications, and data security.

  • Experience working in Banking or highly regulated environments is a strong advantage.

  • Excellent communication and stakeholder management skills.

  • Good command of English for technical discussions and documentation.

Nice to Have

  • Security certifications such as CISSP, CCSP, CISM, AWS/Azure/GCP Security.

  • Experience with Zero Trust, Defense-in-Depth security models.

  • Knowledge of DevSecOps and CI/CD security practices.

COMPENSATION & BENEFITS

  • Salary: Negotiable

  • Bonuses: Public holidays, Tet bonus, and at least 13th-month salary per year.

  • Insurance: Full Social Insurance (SI) and Health Insurance (HI) in accordance with labor law.

  • Leave: Annual leave as per Vietnamese labor regulations.

  • Working environment: Professional and international working environment.

Job Overview
icon-job
Job Location
Ha Noi City
icon-job
Salary
icon-job
Job Level
Expert/Principal
Share this job
phone zalo