Work Location: KL
Contract : 1 Year
Job Description
Assist to perform cloud security assessment with project team, application team and enterprise architect team
To ensure Cloud security standard documents & other SOPs are updated as appropriate by identifying needs basis based on best practises.
Work closely with all the security stakeholders for info gathering to integrate existing cloud security products.
Assist to provide necessary process improvement plan and advise.
Collaborate with all the security stakeholders and others to deliver the necessary work.
identify and remediate risks through security assessments and automated compliance monitoring tool from engineering perspective.
Responsible for any technological duties associated with Cloud Security Service support.
Requirements
Must know:
Experience working knowledge in: Azure, AWS platform or other cloud provider.
Cloud Security Posture Management(CSPM) knowledge will be added advantage.
Understand to know where and when to apply cloud security controls on IaaS,PaaS and SaaS. Security & Identity Controls in cloud, IAM RBAC, NSG/Security Group, WAF,Data Protection (DLP),Loggings, Cloud firewall, API functions and security policies.
Able to understand architecture and network Traffic flow in architecture diagram to accommodate security solution by applying security standards where applicable.
Must know multi cloud architecture, example: on-premise connectivity towards hybrid cloud setup and what type of controls used eg: (direct connect, site2site vpn,express route, VNET Peering..etc)
Should know data protection security standards eg: encryption in-motion/at-rest , encryption type and its mechanism applied.
Familiar with General CIS Controls & NIST standards to apply security best practises.
Good to know:
Security Products such as SIEM Splunk, WebProxy, WAF, Cyberark, Okta, CASB, Tenable
Knowledge in containers solutions In Azure & AWS will be added advantage