Solution Architect

Position: Solution Architect

Job Posting ID (JP ID): CGEMJP00273579

Industry/Client: Insurance

Salary: MYR 12,000 - 14,000 per month

Employment Type: Contract for 1.5 years, renewable

Possibility of Extension: Yes

Nationality: Open

Location: Kuala Lumpur

Job Description:

We are seeking a highly skilled Solution Architect to join our dynamic team in the insurance sector. In this role, you will be responsible for conducting security-based risk assessments of new cloud development projects, projects migrating from on-premise to the cloud, and deployments of new IaaS, SaaS, and PaaS solutions. Your primary goal will be to ensure that adequate security controls are in place and that potential risks are mitigated effectively.

Key Responsibilities:

• Risk Assessment: Conduct security-focused risk assessments for new cloud development initiatives, projects migrating from on-prem to the cloud, and new cloud services (IaaS, SaaS, PaaS) to ensure proper security controls are established.
• Risk Identification & Mitigation: Identify security risks in projects, highlight potential threats, and provide recommendations for mitigatory controls to reduce exposure.
• Risk Rating & Analysis: Perform comprehensive risk rating and mitigation analysis to evaluate the security posture of projects and initiatives.
• Security Control Implementation: Ensure that security best practices and controls are integrated into all phases of cloud development, migration, and deployment processes.

Required Knowledge & Skills:

The ideal candidate should possess in-depth expertise in the following areas, along with strong familiarity with cloud security guidelines:

1. Application Security
2. Cloud Security
3. Cryptography
4. Data Protection
5. Endpoint Management
6. Identity and Access Management (IAM)
7. Information Security
8. Network Security
9. Security Logging and Monitoring
10. Third-Party Security Management
11. Vulnerability and Patch Management

Standards & Frameworks:

• In-depth knowledge of ISO-27001, CSA Security Guidance, NIST Cybersecurity Framework, CIS Cloud Benchmarks, and other relevant security standards and frameworks is essential.

Qualifications:

• Strong background in cloud security, application security, and risk management in cloud environments.
• Ability to identify security risks and vulnerabilities early in the development lifecycle and provide practical solutions for mitigation.
• Proven track record of working with industry standards and frameworks to guide security architecture decisions.
• Strong communication skills to collaborate with stakeholders and ensure alignment on security risk mitigation strategies.