Back to jobs
Cloud Security Team Head
- Posted 05 March 2023
- Salary ¥100000 - ¥120000 per month
- LocationGuangzhou
- Job type Permanent
- Discipline Cyber Security
- ReferenceBH-4277
- Contact NameKevin Sha
Job description
Leading International Banking Group is setting up a brand new global IT center in Guangzhou, a few senior grade global leaders would be needed to be on the ground and lead a specific team to cover regional/global projects.
Cloud team is a very strategic team, people with strong technical and communication would be pursued to join. English is the only working language, no Chinese is required. This Cloud Security Team lead would be based in Guangzhou and lead a APAC team of 6-7 to ensure all the cloud platforms are under proper protections from time to time.
KEY RESPONSIBILITIES
• Provide technical expertise to application and delivery teams. This includes identification and remediation of security gaps using industry best practices and automated solutions that are in line with banks’ standards and policies.
• Perform periodic reviews and monitor networks, analyze logs and systems in order to prohibit unauthorized use, prevent loss of critical information, and maintain service availability.
• Be recognised as a trusted partner for business application owners and other technology teams who seek to make use of Cloud based infrastructure.
• Oversee build out of Compliance automation by developing in-house tools as well as evaluating and deploying third party products.
• Introduce & support emerging technology and best market practices to ensure consistent and state of the art systems are built, and business achieves enhanced benefits
• Identify technology bottlenecks in Cloud Security and specify optimization/automation to be implemented.
SKILLS & QUALIFICATION
Technical Knowledge
• 10yrs+ of progressive Security experience with at least 3 years in delivering cloud security solutions and managing large scale infrastructure on the cloud.
• Industry certifications like CISSP, Azure & AWS security speciality certifications would be and added advantage.
• Hands on experience in public clouds (AWS/Azure) is a must
• Must have experience in implementation of Cloud Security best practices using industry standards such as NIST, FedRamp, etc
• Working experience on Cloud Security Posture Management solutions (Defender for Cloud, AWS Security Hub, AWS Guard Duty etc)
• Strong conceptual understanding Cloud & Container Security
• Strong foundation and in-depth technical knowledge of security engineering, IAM, security protocols and applied cryptography.
• Strong skills in at least one or more scripting/programming language; Go, Python, Shell-scripting, Perl, PHP, Ruby, C, etc.
• Experience in Infrastructure as a Code Products (Terraform, Cloud Formation, Bicep)
• Strong awareness of DevSecOps practices and ways of implementing security for a fast-paced environment.
• Working experience on DevOps toolsets (Jira, Confluence, Bitbucket, Jenkins, AzureDevOps etc)
This role would be open to potential candidates who are based in HK now, language perspective, as long as could speak English would be fine. Chinese would be a plus, but not a must.
Relocation support would be provided if need :)
Cloud team is a very strategic team, people with strong technical and communication would be pursued to join. English is the only working language, no Chinese is required. This Cloud Security Team lead would be based in Guangzhou and lead a APAC team of 6-7 to ensure all the cloud platforms are under proper protections from time to time.
KEY RESPONSIBILITIES
• Provide technical expertise to application and delivery teams. This includes identification and remediation of security gaps using industry best practices and automated solutions that are in line with banks’ standards and policies.
• Perform periodic reviews and monitor networks, analyze logs and systems in order to prohibit unauthorized use, prevent loss of critical information, and maintain service availability.
• Be recognised as a trusted partner for business application owners and other technology teams who seek to make use of Cloud based infrastructure.
• Oversee build out of Compliance automation by developing in-house tools as well as evaluating and deploying third party products.
• Introduce & support emerging technology and best market practices to ensure consistent and state of the art systems are built, and business achieves enhanced benefits
• Identify technology bottlenecks in Cloud Security and specify optimization/automation to be implemented.
SKILLS & QUALIFICATION
Technical Knowledge
• 10yrs+ of progressive Security experience with at least 3 years in delivering cloud security solutions and managing large scale infrastructure on the cloud.
• Industry certifications like CISSP, Azure & AWS security speciality certifications would be and added advantage.
• Hands on experience in public clouds (AWS/Azure) is a must
• Must have experience in implementation of Cloud Security best practices using industry standards such as NIST, FedRamp, etc
• Working experience on Cloud Security Posture Management solutions (Defender for Cloud, AWS Security Hub, AWS Guard Duty etc)
• Strong conceptual understanding Cloud & Container Security
• Strong foundation and in-depth technical knowledge of security engineering, IAM, security protocols and applied cryptography.
• Strong skills in at least one or more scripting/programming language; Go, Python, Shell-scripting, Perl, PHP, Ruby, C, etc.
• Experience in Infrastructure as a Code Products (Terraform, Cloud Formation, Bicep)
• Strong awareness of DevSecOps practices and ways of implementing security for a fast-paced environment.
• Working experience on DevOps toolsets (Jira, Confluence, Bitbucket, Jenkins, AzureDevOps etc)
This role would be open to potential candidates who are based in HK now, language perspective, as long as could speak English would be fine. Chinese would be a plus, but not a must.
Relocation support would be provided if need :)