Jobfoundry
Jobfoundry
Singapore Airlines

Information Technology - Principal Technologist (Security Architect)

Singapore Airlines
AviationSearch by LocationOnsitePosted 1 month ago
Apply on company site

About the role

The Principal Technologist (Security Architect) leads a security architecture consulting team to design solutions that enable business outcomes while maintaining robust security postures. The role focuses on security-by-design, IAM governance for multi-cloud environments, and the development of security frameworks for Generative AI deployments.

AviationOnsite1680

Key Responsibilities

  • Lead a team of security architecture consultants, providing threat-driven architecture security reviews and threat modelling
  • Drive strategic security architecture decisions across business units and technology domains
  • Develop secure reference architectures and design patterns for modern application stacks and BSI
  • Build security-by-design with development workflows and reignite Security Champions initiative
  • Enhance CI/CD security tooling and automation and drive adoption and metrics reporting
  • Design identity governance solutions for hybrid and multi-cloud environments
  • Assess and implement advanced IAM patterns including fine-grained authorization and privilege escalation controls
  • Design and integrate security frameworks for Gen AI deployment, monitoring, and governance
  • Maintain security blueprints for (Gen) AI deployments, including MCP and AI guardrails
  • Lead agentic AI security initiative with focus on authentication and authorization of AI agents

Requirements

  • Bachelor's degree in computer science, engineering, or related fields
  • Relevant certifications (eg. SANS, AWS, Azure)
  • 3+ years of team or lateral leadership experience in technology architecture or security consulting teams
  • Proven track record of leading complex, multi-stakeholder security projects
  • Experience with program management and strategic initiative delivery
  • 3+ years of solution architecture experience designing distributed systems, microservices, or cloud-native applications
  • Hands-on software development experience with modern programming languages preferred
  • Familiar with on-prem and cloud infrastructure platforms (AWS, Azure, GCP), API, proxies and infrastructure-as-code
  • Comprehensive knowledge of application security principles (OWASP, SANS, etc.)
  • Experience with modern security tooling: SAST, DAST, SCA, container scanning, secrets management
  • Hands-on experience with identity protocols (OAuth 2.0, OIDC, SAML, SCIM)
  • Knowledge of data protection technologies (encryption, tokenization, DLP)
  • Experience with AI/ML security challenges and solutions including Large Language Model (LLM) and Model Context Protocols (MCP)