• Experience working knowledge in: Azure, AWS platform or other cloud provider.
• Cloud Security Posture Management(CSPM) knowledge will be added advantage.
• Understand to know where and when to apply cloud security controls on IaaS,PaaS and SaaS.
Security & Identity Controls in cloud, IAM RBAC, NSG/Security Group, WAF,Data Protection (DLP),Loggings, Cloud firewall, API functions and security policies.
• Able to understand architecture and network Traffic flow in architecture diagram to accommodate security solution by applying security standards where applicable.
• Must know multi cloud architecture, example: on-premise connectivity towards hybrid cloud setup and what type of controls used eg: (direct connect, site2site vpn,express route, VNET Peering..etc)
• Should know data protection security standards eg: encryption in-motion/at-rest , encryption type and its mechanism applied.
• Familiar with General CIS Controls & NIST standards to apply security best practises.
• Security Products such as SIEM Splunk, WebProxy, WAF, Cyberark, Okta, CASB, Tenable
• Knowledge in containers solutions In Azure & AWS will be added advantage
• Assist to perform cloud security assessment with project team, application team..etc
• To ensure Cloud security standard documents & other SOPs are updated as appropriate by identifying needs basis based on best practises.
• Work closely with all the security stakeholders for info gathering to integrate existing cloud security products.
• Assist to provide necessary process improvement plan and advise.
• Collaborate with all the security stakeholders and others to deliver the necessary work.
• identify and remediate risks through security assessments and automated compliance monitoring tool from engineering perspective.
• Responsible for any technological duties associated with Cloud Security Service support.
Note: willing to relocate to Malaysia for longer term