Information Technology - Principal Technologist (Security Architect)
Job Description
We are seeking a Security Architect with a strong development and solution architecture background to lead our architecture consulting team and design security solutions that enable business outcomes while maintaining robust security postures. This role reports to CISO.
Key Responsibilities
Architecture Security Reviews and Threat Modelling
• Lead a team of security architecture consultants, providing threat-driven architecture security reviews and threat modelling
• Drive development of AI enabled security reviews, threat modelling and security enhancements of CI/CD pipeline
Build Security In / Shift Left
• Drive strategic security architecture decisions across business units and technology domains
• Develop secure reference architectures and design patterns for modern application stacks and BSI
• Build security-by-design with development workflows
• Enhance CI/CD security tooling and automation and drive adoption and metrics reporting
• Reignite Security Champions initiative to improve shift left approach
Enterprise and Identity security architecture
• Design identity governance solutions for hybrid and multi-cloud environments
• Assess and implement advanced IAM patterns including fine-grained authorization, privilege escalation controls, and just-in-time access
• Develop identity integration strategies for AI systems and automated decisioning
• Engage with platform and DevOps engineering teams to build secure infrastructure and technology foundations
• Propose initiatives to address security gaps or enhance the overall security posture
• Build positive flywheel effect among stakeholders to enable security adoption and cultural transformation
Gen AI Security
• Design and integrate security frameworks for Gen AI deployment, monitoring, and governance within AI risk framework
• Maintain security blueprints for (Gen) AI deployments, including MCP and AI guardrails
• Lead agentic AI security initiative with focus on authentication and authorization of AI agents
Requirements
• Bachelor’s degree in computer science, engineering, or related fields
• Relevant certifications (eg. SANS, AWS, Azure)
• 3+ years of team or lateral leadership experience in technology architecture or security consulting teams
• Proven track record of leading complex, multi-stakeholder security projects
• Experience with program management and strategic initiative delivery
• 3+ years of solution architecture experience designing distributed systems, microservices, or cloud-native applications, hands-on software development experience with modern programming languages preferred
• Familiar with on-prem and cloud infrastructure platforms (AWS, Azure, GCP), API, proxies and infrastructure-as-code; virtualization, containerization technologies and automation
• Comprehensive knowledge of application security principles (OWASP, SANS, etc.)
• Experience with modern security tooling: SAST, DAST, SCA, container scanning, secrets management
• Hands-on experience with identity protocols (OAuth 2.0, OIDC, SAML, SCIM)
• Knowledge of data protection technologies (encryption, tokenization, DLP)
• Experience with AI/ML security challenges and solutions including Large Language Model (LLM), Model Context Protocols (MCP), Agentic AI and AI governance frameworks
We thank all candidates for your interest in Singapore Airlines, and regret that only shortlisted candidates will be notified.