Security Architecture
Indexed description
About us
SCB DataX is the data and AI company of the SCBX (SET: SCB.BK) group. Our mission is to provide the group’s companies the technology, tools, and insights to drive their growth, efficiencies, and customer experiences.
Our leading-edge, cloud-native data platform and AI products enable secure data exchange and cross-pollination of insights, as well as external data enrichment from our data partners.
Our research and development teams are building the next-generation solutions for sharing data and intelligence across the group companies, with the aim to become ASEAN’s most admired AI-led company, making material contribution to AI in our region.
We are proud of being awarded the Thai Board of Investment (BOI) promotion for the development of our state-of-the-art digital platform, and the recognition of our contribution to the Thai economy and tech community.
Responsibilities
- Security System Design and Architecture
- At its core, the role is about design. A security architect is tasked with:
- Creating Security Blueprints: Developing and designing robust security architectures for all IT projects, from networks and infrastructure to applications and data.
- "Security by Design": Ensuring that security is a foundational element of all new technology projects, not an afterthought. This is often referred to as "baking in" security.
- Evaluating and Selecting Tools: Researching, recommending, and implementing security technologies and tools such as firewalls, intrusion detection/prevention systems (IDS/IPS), data loss prevention (DLP), and identity and access management (IAM) solutions.
- Developing Security Standards: Creating and maintaining a set of security standards and best practices for the organization to follow.
- Threat and Vulnerability Management
- A security architect must think like an attacker to anticipate and counter threats. This includes:
- Risk Assessments: Conducting regular, comprehensive risk analyses and security assessments to identify vulnerabilities in systems, networks, and applications.
- Threat Modeling: Identifying potential threats and attack vectors to understand how an adversary might compromise the organization's systems.
- Vulnerability Testing: Overseeing and interpreting the results of penetration testing and other vulnerability scans to prioritize remediation efforts.
- Staying Current: Keeping up-to-date with the latest cybersecurity threats, trends, and technologies to continuously adapt the security architecture.
Qualifications
Education
- Bachelor's Degree: A bachelor's degree in Computer Science, Cybersecurity, Information Technology, or a related field is typically the minimum requirement.
- Master's Degree (Preferred): Master's degree in Cybersecurity or a similar discipline.
Professional Experience
- Most security architect roles require between 5 to 10 years of experience in IT, with a significant portion of that time (at least 3-5 years) in a dedicated cybersecurity role.
- A common career path involves starting in roles like network administrator, system administrator, or software developer, then moving into roles such as security analyst, security engineer, or penetration tester before advancing to an architect position.
- Experience across various domains is crucial. This includes network security, application security, cloud security, and data protection.
Technical Skills
- Deep knowledge of network architecture, protocols (TCP/IP), firewalls, VPNs, and intrusion detection/prevention systems (IDS/IPS).
- Proficiency with major cloud platforms e.g., AWS, Azure (preferred), Google Cloud, and their specific security tools and best practices.
- Expertise in designing and implementing IAM solutions, including authentication, authorization, single sign-on (SSO), and multi-factor authentication (MFA).
- Strong understanding of encryption standards (AES, RSA, TLS), key management, and data loss prevention (DLP) techniques.
- In-depth knowledge of various operating systems (Windows, Linux, macOS) and how to secure them.
- Familiarity with industry standards and frameworks like NIST, ISO 27001, and CIS, as well as regulatory requirements such as GDPR, HIPAA, and PCI DSS.
- The ability to identify potential threats, assess vulnerabilities, and quantify risks to the organization.
- Proficiency in scripting languages like Python or PowerShell to automate security tasks and processes.
Certifications
- (ISC)² CISSP (Certified Information Systems Security Professional)
- (ISC)² CCSP (Certified Cloud Security Professional)
- ISACA CISM (Certified Information Security Manager)
- SANS/GIAC Certifications
- The Open Group TOGAF®
- Certifications from major cloud providers, such as Microsoft Certified: Cybersecurity Architect Expert (SC-100)
Soft Skills
- The ability to explain complex security topics to both technical teams and non-technical business leaders is critical.
- Strong analytical and critical-thinking skills to solve complex security challenges.
- The ability to see the "big picture" and design security solutions that align with long-term business objectives.
- Making critical decisions under pressure, especially during security incidents.
Create a free Caio profile to unlock more results and save your role and location preferences.
Unlock free search