Hong Leong Bank Hiring! Full Time Security Architect in WP Kuala Lumpur - Ricebowl

The Enterprise Security Architect will define the overarching security strategy and architectural frameworks for Hong Leong Bank (HLB). Reporting to the Head of Technology Architecture, this individual will ensure that all business platforms—from retail mobile apps to corporate banking portals—are designed with a "security-first" mindset that satisfies the multi-jurisdictional requirements of our regional presence.

• Regional Security Blueprinting: Establish unified security architecture patterns that harmonize Bank Negara Malaysia (BNM) RMiT requirements with MAS (Singapore), NBC (Cambodia), SBV (Vietnam), and HKMA (Hong Kong) regulations.
• App-Layer Strategy: Design the strategic security architecture for Open Banking, API orchestrations, and the HLB digital core. Define standards for end-to-end payload encryption and regional identity federation.
• Cross-Border Data Strategy: Design the architectural guardrails for regional data flows, ensuring cross-border privacy compliance and localized data residency requirements.
• Architectural Governance: Act as the lead security design authority within the Group Architecture Review Board (ARB), providing "Go/No-Go" advisory on the security viability of regional project designs.

• 10+ years in IT, with 5+ years in a Senior Security Architecture role within a regional or global banking group.
• Expert knowledge of PCI-DSS and its application in architectural design.
• Familiarity with regional fintech regulations (BNM RMiT, MAS TRM, HKMA security guidelines).
• Strong alignment with TOGAF for enterprise-wide architectural consistency.

• Application & Digital Design (Expert Level): Design of secure customer journeys, including MFA strategies and biometric integration patterns; Modern Interface Security for APIs, Microservices, Cloud-Native applications; Payment Security for PCI-DSS compliance across regional processing hubs.
• Regional Infrastructure & Network Strategy (Strategic Level): Hybrid Cloud Design for workloads spanning on-premise data centers and public cloud providers (AWS/Azure/Google Cloud); Network Topology for high-level security zones for regional MPLS/SD-WAN connectivity; Zero Trust roadmap for perimeter-less architecture.

Degree in Computer Science, Information Technology, or any relevant field.