Cloud Security Engineer
NCS
- Singapore
- Permanent
- Full-time
- Be a subject matter experts in the area of cloud security:
- You will be responsible to perform the administration, problem isolation/ resolution for commonly used cloud based services during the operational phases of project such as EFS, ELB, VPC, S3, RDS, etc
- You will be in charge of utilizing cloud services and tools to secure the cloud environment not limited to securing data-at-rest and data-in-transit, supporting zero-trust, etc.
- Responsible to optimize and scale the cloud based services according to needs.
- Provide you opportunities to be exposed to latest technologies in the area of cloud security
- Provide you training and a specialized career path in the area of cloud security
- AWS certified Cloud Practitioner/SysOps Admin/Solution Architecture/DevOps Engineer or other equivalent certification
- Minimally 2 years of hands-on experience with AWS
- Good understanding of common services across different AWS categories which allow setting up a full basic cloud environment (e.g. IAM for ABAC, VPC, Security group for EC2, etc)
- Must have good hands-on experience on AWS HSM
- Good hands-on experience dealing with various security mechanisms in AWS (e.g. KMS, Secret Manager, CloudFront, WAF, Config, Security Hub, CA manager, etc) to secure cloud infra from internal and external threats
- Capable of monitoring the performance of cloud services to identify potential issue.
- Proficient in troubleshooting and fixing technical issues that occurred in the cloud.
- Serverless/Container technologies such as Dockers, Kubernetes (AWS ECS, EKS, Lambda)
- Experience working with GCC 2.0 AWS (Government Cloud)
- Experience operating risk assessment or vulnerability management tools in cloud.
- Example, experience on defining compliance/assurance policies that applies to containers and functions as part of DevSecOps methodology.
- Application Security knowledge to communicate the finding from security tools (e.g. outcome of scanning containers & functions) to App Team
- Automation & integration skillset to work with event-driven automation mechanism (e.g. Events from CloudWatch or AWS resources + Lambda +SQS, SNS) & ability to create API-based script or workflow leveraging AWS API gateway.
- Experience with DevOps (or DevSecOps)
- Fundamental knowledge on DevOps process and tools, CI/CD pipelines, Terraform and general scripting skills are required to make changes to or maintain scripts.