Key Job Responsibilities:
- Assess, design, implement and document security solutions and process leverging on cloud technology (xaaS)
- Design architecture, methods and controls required to meet security, compliance and audit requirements
- Deploy security and automation solutions in cloud environment
- Design and implement security monitoring for cloud infrastructure and application
- Develop procedures to automate security tasks for code build and deployment
- Conduct security threat risk assessment on system hosted in the cloud
Key Skills/Qualifications:
- Soild hands-on experience in designing, building, deploying and securing of highly available web application in cloud platform such as GPC, GCC (i.e. AWS, Azure, Google Cloud)
- In-depth knowledge in xaaS technology, container technology, VPC, security group and ACL
- Experience in administering, troubleshooting and optimising relational and non-relational database
- Proficient in programming with java, node.js, javascript, CLI, Bash and Python
- Experience in administering, configuring and hardening of operating system (Windows, RHEL)
- Experience in configuration management tools (Ansible, Chef and Puppet) and automation tools (Jenkins)
- Experience in securing container technology including Dockers and Kubernetes
- Knowledge of technical security control environments and compliance frameworks including CSA CCM, ISO 27017 and NIST 800-53
- Experience in devops environments and maintaining security in CICD processes
- Experience with broad range of security technologies including SAST, DLP, IPS, IAM, certificate management
- Strong knowledge in network and application security, infrastructure hardening, security baseline, web/application/database security
- Degree/Diploma in Computer Science, Computer Engineering or equivalent
- Any recognised security and cloud specific certification CCSP, SSCP, CISSP or equivalent
- Understanding of SOC2 and FEDRAMP
Location: Singapore
Job Type: Permanent, Full-Time
