Responsibilities:
End-to-End Security Assessment:
- Conduct comprehensive assessments of end-to-end security, covering endpoints, SDLC processes, penetration testing, code quality, container security, and infrastructure security.
- Identify vulnerabilities and provide actionable recommendations to enhance security measures.
Endpoint Security:
- Evaluate and implement robust endpoint security solutions to protect against potential threats and ensure the confidentiality, integrity, and availability of data.
Security in SDLC:
- Collaborate with development teams to integrate security into the software development life cycle, ensuring secure coding practices, code reviews, and vulnerability assessments.
Penetration Testing:
- Plan and execute penetration tests to identify weaknesses in systems and applications, working closely with relevant teams to remediate and strengthen security posture.
Code Quality Assurance:
- Establish and enforce coding standards to maintain high-quality, secure code.
- Implement and oversee code analysis tools and processes to identify and address security vulnerabilities in the codebase.
Container Security:
- Assess and implement security measures for containerized environments, ensuring the secure deployment and operation of containerized applications.
Infrastructure Security:
- Design and implement security controls for infrastructure components, including networks, servers, and databases.
- Monitor and respond to security incidents related to infrastructure components.
Security and Business Continuity Principles:
- Apply industry best practices and principles of security and business continuity to enhance overall resilience.
- Collaborate with cross-functional teams to develop and maintain incident response and business continuity plans.
- Cloud Architecture [AWS/Huawei]
Qualifications
- Proven experience as an Enterprise Architecture, IT Architecture or Security Architecture or in a similar role.
- Experience in Cloud architecture especially AWS and Huawei
- Preferably banking or financial services background
- In-depth knowledge of security principles, practices, and technologies.
- Experience with security assessment tools and methodologies.
- Strong understanding of SDLC and software security best practices.
- Familiarity with containerization technologies (e.g., Docker, Kubernetes).
- Native Thai Speaking
Argyll Scott Asia is acting as an Employment Agency in relation to this vacancy.