Java Software Architect

We are the innovators at the heart of the payments technology industry, shaping how the world pays and gets paid. The solutions our people build today power the growth of millions of businesses tomorrow. From your local coffee shop to unicorns and international banks. From San Francisco to Auckland. We are in every corner of the world, in every part of commerce. And just as we help our customers accelerate their business, we are committed to helping our people accelerate their careers. Together, we shape the evolution.

We have many hardworking and dedicated peers that would love for you to work with them. We are always looking for new and innovative ways to improve quality, reduce costs, build excellent solutions, and grow customer happiness. If you are a highly skilled Solutions Consultant 2 who has a creative mind and passionate about delivering, then get ready to join our company!

1. PLATFORM FRAMEWORK ARCHITECTURE & DESIGN
   1. Establish Java Framework Standards: Design and implement enterprise-grade Java frameworks (Spring Boot, microservices patterns) aligned with Worldline's target landscape and cloud-native architecture
   2. Framework Governance: Create architectural guidelines, design patterns, and best practices for all Java-based platform development
   3. Technology Stack Definition: Evaluate, select, and standardize development tools, libraries, and frameworks across the organization
   4. API-First Architecture: Lead design of cloud-enabled, API-first platform capabilities aligned with Worldline's multi-cloud strategy (sovereign private cloud + public cloud platforms)
   5. Platform Modernization: Architect migration paths from legacy systems to contemporary Java-based frameworks, ensuring backward compatibility and gradual transition
2. DEVELOPMENT TOOLS & LIBRARY MANAGEMENT
   1. Dependency Management: Oversee comprehensive library and dependency management across all Java applications
   2. DevOps Integration: Lead implementation and optimization of CI/CD pipelines, containerization (Docker/Kubernetes), and deployment automation
   3. Developer Productivity: Establish development environments, IDEs, and tools that enhance team productivity while maintaining security
   4. Build Automation: Design and maintain build systems, artifact repositories (Maven, Gradle), and release management processes
   5. Version Control & Compliance: Implement Git strategies, code review processes, and development lifecycle governance
3. PCI DSS & SECURITY COMPLIANCE
   1. Security Architecture Design: Embed PCI DSS requirements into all architectural decisions (data encryption, access controls, network segmentation)
   2. Compliance Framework: Establish security controls, threat modelling, and vulnerability management processes specific to payments processing
   3. Secure Coding Standards: Define and enforce secure coding practices, OWASP Top 10 mitigation strategies, and code review protocols – with specific guidance on AI-assisted code generation risks and validation
   4. Data Protection: Design data handling, encryption, and tokenization mechanisms for payment card data
   5. AI Security Governance: Establish policies for secure use of AI development tools, including data privacy (code snippets sent to LLM services), intellectual property protection, and compliance with regulatory requirements
   6. Audit & Validation: Conduct security architecture reviews, penetration testing coordination, and compliance validation with audit teams; specifically assess AI-generated code for security vulnerabilities and regulatory compliance
   7. Third-Party Risk Management: Evaluate security posture of open-source libraries, third-party frameworks, and AI-assisted development platforms
4. AI-ASSISTED DEVELOPMENT STRATEGY & GOVERNANCE
   1. AI Tool Evaluation & Selection
      1. AI Platform Assessment: Evaluate and select appropriate AI-assisted development tools based on security, compliance, cost, and architectural fit
      2. Vendor Risk Management: Assess data handling practices, security certifications, and compliance postures of AI tool vendors (especially data residency for sensitive code)
      3. License & IP Compliance: Navigate licensing implications of AI-assisted development (training data provenance, generated code ownership, open-source license compatibility)
      4. Cost-Benefit Analysis: Model ROI of AI tools against productivity gains, license costs, and infrastructure requirements
   2. AI-Assisted Development Governance & Standards
      1. Usage Policy Framework: Define policies governing which types of work can use AI assistance (utility code vs. business logic vs. security-critical code)
      2. Code Review Standards: Establish enhanced code review processes specifically for AI-generated code, including scrutiny for:
         • Security vulnerabilities and unsafe patterns
         • Algorithmic correctness and business logic validation
         • Performance and scalability implications
         • PCI DSS compliance and data handling
         • Hidden intellectual property or license compliance issues
      3. Prompt Engineering Standards: Define guidelines for effective and safe prompt engineering to generate higher-quality code
      4. Quality Gates: Implement automated checks for AI-generated code (static analysis, security scanning, performance testing with stricter thresholds)
      5. Documentation Requirements: Require clear labeling and documentation of AI-assisted code portions for maintainability and future audits
      6. Hallucination & Correctness Risks: Establish validation frameworks to identify and prevent "AI hallucinations" (incorrect logic, non-existent APIs, outdated patterns)
      7. Security Vulnerability Prevention: Implement scanning and testing protocols to catch common AI-generated vulnerabilities (SQL injection, insecure deserialization, weak cryptography)
      8. Code Quality Consistency: Ensure AI assistance doesn't degrade code standards through enhanced linting, architectural compliance checks, and peer review intensity
      9. Dependency Management: Oversee AI-suggested dependencies to prevent supply chain attacks and license violations
      10. Data Privacy & Compliance: Ensure sensitive code, configuration data, and business logic are not inadvertently exposed to third-party AI services; establish guidelines for code sanitization before AI tool use
      11. Reproducibility & Maintainability: Establish standards to ensure AI-generated code remains maintainable and debug-able without relying on the original AI context
      12. Learning & Improvement: Create feedback loops to improve prompts and AI tool configurations based on code review findings
   3. Team Enablement & Capability Building
      • Training Program Development: Create comprehensive training on responsible AI-assisted development, including hands‑on workshops on prompt engineering and code validation
      • Best Practices Documentation: Publish architecture decision records (ADRs) and playbooks on effective and safe use of AI tools
      • Skill Development: Help teams transition from traditional development to AI‑augmented workflows while maintaining critical thinking and code ownership responsibility
      • Mentoring & Oversight: Establish mentoring programs to help developers navigate the cognitive shift required for AI-assisted development
5. DEVELOPMENT STANDARDS & GOVERNANCE
   1. Architecture Decision Records (ADRs): Document architectural decisions, trade-offs, and rationale for future reference – including AI-assisted development approach decisions
   2. Code Quality: Establish static analysis tools (SonarQube), code coverage targets, and quality gates for all Java projects with enhanced scrutiny for AI-assisted code portions
   3. Performance Optimization: Define performance benchmarks, monitoring strategies, and optimization guidelines
   4. Documentation Standards: Create comprehensive technical documentation, architecture diagrams, and knowledge repositories with clear identification of AI-assisted components
   5. Training & Capability Building: Deliver architecture training, best practices workshops, and mentoring to development teams – with dedicated focus on AI-assisted development
6. TECHNOLOGY & OPERATIONS ALIGNMENT
   1. Cloud Platform Strategy: Align Java frameworks with Worldline's cloud strategy
   2. Operations Integration: Work with Global Competence Centers to ensure operational runbooks, monitoring, and support procedures for Java platforms – accounting for AI-assisted development tooling
   3. Cost Optimization: Design for cloud-efficiency, auto-scaling, and resource optimization; factor in AI tool licensing and infrastructure costs
   4. Disaster Recovery: Architect resilience, failover, and business continuity mechanisms
7. STRATEGIC ADVISORY & TRANSFORMATION SUPPORT
   1. Executive Sponsorship: Advise leadership on technology direction, modernization roadmaps, and investment priorities
   2. RFP/Vendor Evaluation: Lead technical due diligence for platform & AI tool selection and vendor evaluations
   3. Cross-Functional Collaboration: Partner with Security, Risk, Compliance, and Operations teams to ensure holistic platform excellence and responsible AI adoption
   4. Innovation Scouting: Monitor emerging Java technologies, AI-assisted development tools, and trends; assess relevance to Worldline's strategy

• Which of the following statements best describes your right to work in Malaysia?
• What's your expected monthly basic salary?
• Which of the following types of qualifications do you have?
• How many years' experience do you have as a Software Architect?
• Which of the following programming languages are you experienced in?
• How many years' experience do you have using SQL queries?
• How many years' experience do you have in a DevOps role?
• How would you rate your Mandarin language skills?

To help fast track investigation, please include here any other relevant details that prompted you to report this job ad as fraudulent / misleading / discriminatory / salary below minimum wage.

Researching careers? Find all the information and tips you need on career advice.