We are seeking a Cybersecurity Architect to join a lean and highly collaborative cybersecurity team. This role will be responsible for defining, designing, and driving the implementation of security architecture across cloud and on-premises environments, ensuring security controls are effective, scalable, and aligned with business objectives.

主要职责

Security Architecture & Strategy

• Develop and maintain enterprise security architecture standards, principles, and roadmaps.
• Design and implement layered security controls across cloud, infrastructure, endpoint, and identity environments.
• Lead architecture initiatives covering identity and access management, privileged access management, cloud security, endpoint protection, vulnerability management, and network security.
• Establish secure architecture patterns and best practices to support ongoing technology transformation initiatives.
• Embed security-by-design principles across technology platforms and business applications.

Engineering & Delivery

• Provide technical leadership and architecture oversight for cybersecurity projects and technology implementations.
• Review and validate solution designs to ensure alignment with security requirements and enterprise standards.
• Lead or support implementation of strategic security capabilities including SIEM, DLP, EDR/XDR, network segmentation, and cloud security initiatives.
• Develop technical standards, architecture documentation, and operational playbooks to support sustainable operations.
• Partner closely with project teams to ensure successful deployment and operationalization of security solutions.

Security Operations & Risk Management

• Monitor evolving threat landscapes and assess potential impacts to the organization’s security posture.
• Conduct threat modelling exercises for new technologies, applications, and infrastructure changes.
• Support incident investigations and provide senior-level technical expertise during major security events.
• Drive improvements in vulnerability management, remediation processes, and security monitoring capabilities.
• Support penetration testing, red team exercises, and security assessments.

Governance & Compliance

• Ensure security architectures align with applicable regulatory requirements, industry standards, and internal policies.
• Translate audit findings, risk assessments, and compliance requirements into actionable technical remediation plans.
• Work closely with risk, audit, and compliance stakeholders to strengthen security governance and control effectiveness.
• Contribute to the development and maintenance of security standards, procedures, and architectural guidelines.

要求：

• 7-15 years of cybersecurity experience with a strong background in security engineering and architecture.
• Experience designing and implementing security controls across hybrid cloud and enterprise infrastructure environments.
• Background within financial services, investment management, banking, or other regulated industries is advantageous.
• Demonstrated experience leading complex cybersecurity initiatives from design through implementation.
• Strong stakeholder management and communication skills with the ability to influence both technical and business audiences.

Technical Expertise

• Strong knowledge of Microsoft security technologies, including Microsoft Defender, Entra ID, and broader Microsoft security capabilities.
• Hands-on experience with Azure cloud security, identity security, and Zero Trust architecture principles.
• Familiarity with SIEM, endpoint security, vulnerability management, security operations, and infrastructure security technologies.
• Strong understanding of enterprise network security, cloud security architecture, and modern security engineering practices.

申请

If you’re interested to apply or find out more, please share across your CV or reach out to Chen Yi at cy@kerryconsulting.com for a discussion. Due to anticipated high volume of applications, we regret to inform that only shortlisted candidates will be notified.

Reg: R1876389

Lic: 16S8060