Connecting...

Location
シンガポール
Salary
Competitive Salary
Job Type
Permanent
Ref
BH-179709
Contact
Van Cao
Contact email
Email Van
Posted
11ヶ月前
As a Cloud Security Specialist, your primary responsibility is to ensure the security, privacy, and compliance of cloud-based systems and services within an organization.

You will play a crucial role in protecting sensitive data, identifying potential vulnerabilities, implementing security controls, and addressing security incidents. Your expertise will contribute to maintaining a robust and secure cloud infrastructure that aligns with industry best practices and regulatory requirements.


Key Responsibilities:

Cloud Security Strategy:

  • Develop and implement a comprehensive cloud security strategy, considering the organization's objectives, risk tolerance, and compliance requirements.
  • Collaborate with stakeholders, such as IT teams, developers, and business units, to align cloud security initiatives with overall business goals.
  • Stay updated with emerging cloud security trends, technologies, and regulatory changes to continuously improve the security posture.

Cloud Security Architecture and Design:

  • Design, review, and enhance cloud security architecture and solutions, ensuring that they meet industry standards and best practices.
  • Evaluate cloud service providers, assess their security capabilities, and provide recommendations to ensure appropriate security controls are in place.
  • Define security requirements for cloud-based systems, networks, and applications, including access controls, encryption, data protection, and identity and access management (IAM).

Cloud Security Implementation:

  • Deploy and configure security tools, technologies, and controls in cloud environments to mitigate risks and protect against threats.
  • Monitor and manage security incidents, perform vulnerability assessments, and conduct penetration testing to identify and address vulnerabilities proactively.
  • Develop and enforce security policies, standards, and procedures specific to cloud environments.
  • Implement and monitor security controls for cloud-native services, such as containerization platforms, serverless computing, and microservices architecture.

Compliance and Risk Management:

  • Ensure compliance with relevant regulations, industry standards, and data privacy requirements (e.g., GDPR, HIPAA, PCI-DSS) within cloud environments.
  • Conduct risk assessments and provide recommendations to mitigate identified risks.
  • Collaborate with internal audit and compliance teams to perform cloud security audits and assessments.

Security Awareness and Training:

  • Raise awareness about cloud security risks, best practices, and policies among employees, contractors, and stakeholders.
  • Develop and deliver training programs and materials to educate users on secure cloud usage, data protection, and incident response.

Incident Response and Forensics:

  • Develop and maintain an incident response plan specific to cloud environments.
  • Investigate and respond to cloud security incidents, conduct root cause analysis, and implement corrective actions.
  • Collaborate with internal teams, third-party vendors, and legal entities during security incident investigations and forensic analysis.


Qualifications and Skills:

  • Bachelor's degree in Computer Science, Information Security, or a related field. A master's degree is preferred.
  • Professional certifications such as Certified Cloud Security Professional (CCSP), Certified Information Systems Security Professional (CISSP), or Certified Ethical Hacker (CEH).
  • Strong knowledge of cloud computing platforms (e.g., Amazon Web Services, Microsoft Azure, Google Cloud Platform) and their security features.
  • Proficiency in cloud security concepts, including secure architecture design, network security, identity, and access management (IAM), encryption, and incident response.
  • Experience with security tools and technologies specific to cloud environments, such as cloud access security brokers (CASBs), cloud workload protection platforms (CWPPs), and cloud security posture management (CSPM) tools.
  • Familiarity with relevant compliance frameworks and standards (e.g., ISO 27001, NIST, CSA) and their application in cloud environments.
  • Strong analytical and problem-solving skills, with the ability to identify and address security risks and vulnerabilities.
  • Excellent communication and collaboration skills to work effectively with cross-functional teams.


Reg No. R22110166
BeathChapman Pte Ltd
Licence no. 16S8112