Junior Security Architect

Job Title: Junior Security Architect - Job Location: Inflight Catering Centre 1 **About Us**: SATS is Asia's leading provider of food solutions and gateway services. Using innovative food technologies and resilient supply chains, we create tasty, quality food in sustainable ways for airlines, foodservice chains, retailers and institutions. With heartfelt service and advanced technology, we connect people, businesses and communities seamlessly through our comprehensive gateway services for customers such as airlines, cruise lines, freight forwarders, postal services and eCommerce companies. - Job Description: **About Us**: Headquartered in Singapore, SATS Ltd. is one of the world’s largest providers of air cargo handling services and Asia’s leading airline caterer. SATS Gateway Services provides airfreight and ground handling services including passenger services, ramp and baggage handling, aviation security services, aircraft cleaning and aviation laundry. SATS Food Solutions serves airlines and institutions, and operates central kitchens with large-scale food production and distribution capabilities for a wide range of cuisines. **Why Join Us**: At SATS, people are our greatest asset and we build our success on the knowledge, expertise and performance of every contributor, by embracing diversity and uniqueness. As part of our holistic approach and commitment to embracing FAM (Fulfilling, Appreciated, Meaningful) in the workplace, we offer the runway to develop Fulfilling careers that foster your career growth, recognising and Appreciating the strength of talent and capabilities that we continue to build internally; and inspiring and encouraging each other to make Meaningful contributions in the work we do at SATS. **Key Responsibilities**: The position also contributes reusable security designs and may occasionally collaborate with other regional architects or support projects in other regions where your specialized expertise is required. - Lead security reviews for regional projects, platforms, and vendors; ensure designs meet global policy, risk tolerance, and compliance requirements. - Perform threat models; specify compensating controls and validate via architecture artifacts (diagrams, ADRs, guardrails). - Translate policy into Azure/AWS guardrails (landing zones, IAM, network segmentation, key management, logging). - Embed security in SDLC (IaC, pipelines, SAST/DAST/SCA, secrets management) and partner with platform/SRE teams for pragmatic controls. - Ensure classification-driven controls (encryption, tokenization, DLP) across data lifecycle and cross-border requirements. - Specify telemetry, control points, and use‑case requirements to SOC/IR for effective detection coverage. - Map designs to NIST CSF / ISO 27001 / NIS2 (EU-only) control objectives; support architecture specific audit questions and remediation planning. - Produce concise reference designs, decision records, and possibly build/run books to accelerate delivery teams. - Coach IT business partners and junior architects; champion a modern, practical, and business‑aligned security culture. - Track emerging threats/regulations; propose targeted pattern/policy updates to the Principal Architect. **Key Requirements**: - Bachelor’s degree or equivalent professional experience. - 5-10 years in cybersecurity, including 3-5 years focused on security architecture/engineering in enterprise or regulated environments. - Hold current cybersecurity certifications such as: CISSP, CCSP, CISM, Azure/AWS, and others. - Demonstrated delivery of secure designs in hybrid (on‑prem + multi‑cloud) environments. - Applied alignment to NIST CSF / ISO 270xx / NIS2 (EU-only); familiarity with PCI or regional data protection regimes (e.g., GDPR, PDPA, CCPA) is a plus. - Hands-on with Azure/AWS security services and IaC (ARM/Bicep/Terraform) for guardrails and repeatable controls. - Solid threat modeling and attacker‑TTP awareness; able to specify measurable mitigations in your designs. - Ability to create clear architecture artifacts (context/flow diagrams, reference patterns, control maps). - System-thinking - ability to see the "big picture" and understand how various systems and stakeholders are connected.