Sr. Security Architect

Responsibilities

• Design, implement, and maintain the security architecture for the company's cloud infrastructure, ensuring confidentiality, integrity, and availability of systems and data.
• Monitor and analyze system logs and security events to identify and respond to security threats and vulnerabilities in real-time.
• Collaborate with development teams to integrate security best practices throughout the software development lifecycle.
• Conduct security assessments and penetration tests to identify potential security risks and propose improvements.
• Develop and update security policies, standards, and guidelines to ensure compliance with industry regulations and standards.
• Lead incident response and investigations, providing technical support and resolution strategies.
• Automate security processes to improve the efficiency and effectiveness of security operations.

Key Qualities:

• Security Awareness and Technological Curiosity: A passion for staying at the forefront of security threats, trends, and technologies, and applying new solutions to keep tripla ahead in the industry.
• Mission-Driven and Customer-Centric: A strong alignment with tripla's mission, with a commitment to enhancing product security value from the customer's perspective.
• Collaboration in a Multicultural Environment: Ability to thrive in a diverse, cross-cultural team environment across Asia-Pacific and beyond.
• Leadership and Strategic Thinking: An interest in not only addressing technical challenges but also shaping the long-term security strategy for tripla.

Technical Requirements:

• Extensive cloud security experience, especially in AWS environments, with deep knowledge of AWS security services (such as AWS IAM, KMS, CloudTrail, GuardDuty, etc.).
• Solid understanding of network security concepts, including firewalls, intrusion detection and prevention systems, VPNs, encryption, etc.
• Familiarity with security frameworks and standards, such as ISO 27001, NIST, CIS Benchmarks, etc.
• Experience in security incident response and vulnerability management.
• Proficiency with security tools such as SIEM, IDS/IPS, vulnerability scanners, etc.
• Familiarity with Infrastructure-as-Code (IaC) tools like Terraform, CloudFormation, and integrating security policies into them.

• Ability to write automation scripts using Shell, Python, or other languages.

Non-Technical Requirements:

• Excellent English communication skills, both written and spoken, for a remote work environment.
• Clear and leading in technical discussions, capable of proposing and implementing innovative solutions.

• A proactive, cross-functional collaboration style to work effectively with Sales, Product, Customer Success, and Support teams, bridging technical and business perspectives to drive product success.

Preferred Certificate

• AWS Certified Security - Specialty
• Certified Information Systems Security Professional (CISSP)
• Certified Cloud Security Professional (CCSP)