Job Description

-------------------



We are seeking a Security Architect with a strong development and solution architecture background to lead our architecture consulting team and design security solutions that enable business outcomes while maintaining robust security postures. This role reports to CISO.

Key Responsibilities

Architecture Security Reviews and Threat Modelling

Lead a team of security architecture consultants, providing threat-driven architecture security reviews and threat modelling Drive development of AI enabled security reviews, threat modelling and security enhancements of CI/CD pipeline



Build Security In / Shift Left

Drive strategic security architecture decisions across business units and technology domains Develop secure reference architectures and design patterns for modern application stacks and BSI Build security-by-design with development workflows Enhance CI/CD security tooling and automation and drive adoption and metrics reporting Reignite Security Champions initiative to improve shift left approach



Enterprise and Identity security architecture

Design identity governance solutions for hybrid and multi-cloud environments Assess and implement advanced IAM patterns including fine-grained authorization, privilege escalation controls, and just-in-time access Develop identity integration strategies for AI systems and automated decisioning Engage with platform and DevOps engineering teams to build secure infrastructure and technology foundations Propose initiatives to address security gaps or enhance the overall security posture Build positive flywheel effect among stakeholders to enable security adoption and cultural transformation



Gen AI Security

Design and integrate security frameworks for Gen AI deployment, monitoring, and governance within AI risk framework Maintain security blueprints for (Gen) AI deployments, including MCP and AI guardrails Lead agentic AI security initiative with focus on authentication and authorization of AI agents

Requirements

Bachelor's degree in computer science, engineering, or related fields Relevant certifications (eg. SANS, AWS, Azure) 3+ years of team or lateral leadership experience in technology architecture or security consulting teams Proven track record of leading complex, multi-stakeholder security projects Experience with program management and strategic initiative delivery 3+ years of solution architecture experience designing distributed systems, microservices, or cloud-native applications, hands-on software development experience with modern programming languages preferred Familiar with on-prem and cloud infrastructure platforms (AWS, Azure, GCP), API, proxies and infrastructure-as-code; virtualization, containerization technologies and automation Comprehensive knowledge of application security principles (OWASP, SANS, etc.) Experience with modern security tooling: SAST, DAST, SCA, container scanning, secrets management Hands-on experience with identity protocols (OAuth 2.0, OIDC, SAML, SCIM) Knowledge of data protection technologies (encryption, tokenization, DLP) Experience with AI/ML security challenges and solutions including Large Language Model (LLM), Model Context Protocols (MCP), Agentic AI and AI governance frameworks



We thank all candidates for your interest in Singapore Airlines, and regret that only shortlisted candidates will be notified.