Systems APAC are seeking a highly experienced Digital Security Architecture Senior Analyst to design and manage secure digital solutions for enterprise platforms and customer digital journeys. The ideal candidate will work closely with engineering, business, digital, and security teams to ensure the confidentiality, integrity, and availability of enterprise systems and data across cloud and on-prem environments.
This role requires strong expertise in security architecture, cloud security, DevSecOps, risk management, regulatory compliance, and enterprise security transformation initiatives.
Location: Malaysia
Responsibilities
- Design and enhance enterprise digital security architecture, standards, and security controls.
- Lead implementation and review of secure architecture solutions for cloud and on-prem environments.
- Develop security roadmaps, frameworks, and implementation strategies.
- Conduct security assessments for applications, infrastructure, vendors, and third-party integrations.
- Perform risk assessments and data privacy impact assessments for digital initiatives.
- Provide security guidance to engineering, technology, and business teams.
- Review solution architectures, vendor proposals, and technical designs from a security perspective.
- Manage security baselines, secure configurations, patching standards, and hardening practices.
- Oversee security integration within DevSecOps and CI/CD pipelines.
- Participate in incident analysis, vulnerability remediation, and root cause investigations.
- Drive security governance initiatives aligned with enterprise security strategy and compliance requirements.
- Collaborate with cross-functional stakeholders on large-scale digital transformation programs.
- Prepare technical reports, presentations, and recommendations for senior leadership.
Requirements
- 8+ years of experience in Information Security and Security Architecture.
- Minimum 5 years of experience securing enterprise applications and infrastructure with focus on cloud and digital security.
- Strong understanding of cloud security, application security, system/network security, authentication protocols, and cryptography.
- Experience designing secure architectures for enterprise cloud and on-prem environments.
- Strong knowledge of DevSecOps practices and security integration within CI/CD pipelines.
- Familiarity with security standards and frameworks such as ISO 27001, PCI DSS, SWIFT, SABSA, TOGAF, and NESA.
- Experience with risk management, regulatory compliance, and digital security controls.
- Excellent stakeholder management, communication, and presentation skills.
- Strong analytical, leadership, and problem-solving abilities.
- Experience working on enterprise security transformation initiatives.
- Banking, fintech, or financial services experience is preferred.
- Bachelor's degree in computer science, Information Security, or a related field.
Preferred Certifications
- CISSP
- CCSP
- TOGAF
- CISA
- CISM
- CRISC
- CGEIT
- CCIE
- ITIL
