Cloud Security Engineer -- Top tier international bank (Relocate to Guangzhou)

Posted 09 March 2023
Salary Competitive Salary Package
Job type Permanent
Contact NamePauline Peng

Job description

• Provide technical expertise to application and delivery teams. This includes identification and remediation of security gaps using industry best practices and automated solutions that are in line with banks’ standards and policies.
• Perform periodic reviews and monitor networks, analyse logs and systems in order to prohibit unauthorised use, prevent loss of critical information, and maintain service availability.
• Be recognised as a trusted partner for business application owners and other technology teams who seek to make use of Cloud based infrastructure.
• Oversee build out of Compliance automation by developing in-house tools as well as evaluating and deploying third party products.
• Introduce & support emerging technology and best market practices to ensure consistent and state of the art systems are built, and business achieves enhanced benefits
• Identify technology bottlenecks in Cloud Security and specify optimisation/automation to be implemented.

Technical Knowledge
• 10yrs+ of progressive Security experience with at least 3 years in delivering cloud security solutions and managing large scale infrastructure on the cloud.
• Industry certifications like CISSP, Azure & AWS security speciality certifications would be and added advantage.
• Hands on experience in public clouds (AWS/Azure) is a must
• Must have experience in implementation of Cloud Security best practices using industry standards such as NIST, FedRamp, etc
• Working experience on Cloud Security Posture Management solutions (Defender for Cloud, AWS Security Hub, AWS Guard Duty etc)
• Strong conceptual understanding Cloud & Container Security
• Strong foundation and in-depth technical knowledge of security engineering, IAM, security protocols and applied cryptography.
• Strong skills in at least one or more scripting/programming language; Go, Python, Shell-scripting, Perl, PHP, Ruby, C, etc.
• Experience in Infrastructure as a Code Products (Terraform, Cloud Formation, Bicep)
• Strong awareness of DevSecOps practices and ways of implementing security for a fast-paced environment.
• Working experience on DevOps toolsets (Jira, Confluence, Bitbucket, Jenkins, AzureDevOps etc)