Sr. Security Architect

Responsibilities

  • Design, implement, and maintain the security architecture for the company's cloud infrastructure, ensuring confidentiality, integrity, and availability of systems and data.
  • Monitor and analyze system logs and security events to identify and respond to security threats and vulnerabilities in real-time.
  • Collaborate with development teams to integrate security best practices throughout the software development lifecycle.
  • Conduct security assessments and penetration tests to identify potential security risks and propose improvements.
  • Develop and update security policies, standards, and guidelines to ensure compliance with industry regulations and standards.
  • Lead incident response and investigations, providing technical support and resolution strategies.
  • Automate security processes to improve the efficiency and effectiveness of security operations.

Key Qualities:

  • Security Awareness and Technological Curiosity: A passion for staying at the forefront of security threats, trends, and technologies, and applying new solutions to keep tripla ahead in the industry.
  • Mission-Driven and Customer-Centric: A strong alignment with tripla's mission, with a commitment to enhancing product security value from the customer's perspective.
  • Collaboration in a Multicultural Environment: Ability to thrive in a diverse, cross-cultural team environment across Asia-Pacific and beyond.
  • Leadership and Strategic Thinking: An interest in not only addressing technical challenges but also shaping the long-term security strategy for tripla.

Technical Requirements:

  • Extensive cloud security experience, especially in AWS environments, with deep knowledge of AWS security services (such as AWS IAM, KMS, CloudTrail, GuardDuty, etc.).
  • Solid understanding of network security concepts, including firewalls, intrusion detection and prevention systems, VPNs, encryption, etc.
  • Familiarity with security frameworks and standards, such as ISO 27001, NIST, CIS Benchmarks, etc.
  • Experience in security incident response and vulnerability management.
  • Proficiency with security tools such as SIEM, IDS/IPS, vulnerability scanners, etc.
  • Familiarity with Infrastructure-as-Code (IaC) tools like Terraform, CloudFormation, and integrating security policies into them.
  • Ability to write automation scripts using Shell, Python, or other languages.

Non-Technical Requirements:

  • Excellent English communication skills, both written and spoken, for a remote work environment.
  • Clear and leading in technical discussions, capable of proposing and implementing innovative solutions.
  • A proactive, cross-functional collaboration style to work effectively with Sales, Product, Customer Success, and Support teams, bridging technical and business perspectives to drive product success.

Preferred Certificate

  • AWS Certified Security - Specialty
  • Certified Information Systems Security Professional (CISSP)
  • Certified Cloud Security Professional (CCSP)