Cloud Security Team Head

Posted 05 March 2023
Salary ¥100000 - ¥120000 per month
Job type Permanent
Discipline Cyber Security
Contact NameKevin Sha

Job description

Leading International Banking Group is setting up a brand new global IT center in Guangzhou, a few senior grade global leaders would be needed to be on the ground and lead a specific team to cover regional/global projects.

Cloud team is a very strategic team, people with strong technical and communication would be pursued to join. English is the only working language, no Chinese is required. This Cloud Security Team lead would be based in Guangzhou and lead a APAC team of 6-7 to ensure all the cloud platforms are under proper protections from time to time.

• Provide technical expertise to application and delivery teams. This includes identification and remediation of security gaps using industry best practices and automated solutions that are in line with banks’ standards and policies.
• Perform periodic reviews and monitor networks, analyze logs and systems in order to prohibit unauthorized use, prevent loss of critical information, and maintain service availability.
• Be recognised as a trusted partner for business application owners and other technology teams who seek to make use of Cloud based infrastructure.
• Oversee build out of Compliance automation by developing in-house tools as well as evaluating and deploying third party products.
• Introduce & support emerging technology and best market practices to ensure consistent and state of the art systems are built, and business achieves enhanced benefits
• Identify technology bottlenecks in Cloud Security and specify optimization/automation to be implemented.

Technical Knowledge
• 10yrs+ of progressive Security experience with at least 3 years in delivering cloud security solutions and managing large scale infrastructure on the cloud.
• Industry certifications like CISSP, Azure & AWS security speciality certifications would be and added advantage.
• Hands on experience in public clouds (AWS/Azure) is a must
• Must have experience in implementation of Cloud Security best practices using industry standards such as NIST, FedRamp, etc
• Working experience on Cloud Security Posture Management solutions (Defender for Cloud, AWS Security Hub, AWS Guard Duty etc)
• Strong conceptual understanding Cloud & Container Security
• Strong foundation and in-depth technical knowledge of security engineering, IAM, security protocols and applied cryptography.
• Strong skills in at least one or more scripting/programming language; Go, Python, Shell-scripting, Perl, PHP, Ruby, C, etc.
• Experience in Infrastructure as a Code Products (Terraform, Cloud Formation, Bicep)
• Strong awareness of DevSecOps practices and ways of implementing security for a fast-paced environment.
• Working experience on DevOps toolsets (Jira, Confluence, Bitbucket, Jenkins, AzureDevOps etc)

This role would be open to potential candidates who are based in HK now, language perspective, as long as could speak English would be fine. Chinese would be a plus, but not a must.

Relocation support would be provided if need :)