AEON Bank

Cloud Security Engineer

Federal Territory of Kuala Lumpur, MY

19 days ago
Save Job

Summary

Job Description:


1. Security control and implementation

  • Design and build resilient cloud based infrastructure that are protected against security threats, including access management, network segmentation, systems, services and applications
  • Experience using CI/CD pipelines for change management and automated cloud service provisioning and security testing
  • Implementing cryptography and security controls in the cloud.


2. Cloud security technologies and tools

  • Design and develop new tools / technologies as related to Cloud Security b. Design and implement both preventative and detective security controls in the cloud environment
  • Design and deliver a security solution for bank’s cloud infrastructure
  • Work with internal stakeholders and third party vendors for resolution for security systems/tools that directly impact security activities


3. Monitor and respond to security alerts

  • Proactively monitor security alerts from SIEM and other cloud based security monitoring systems for any cyber attempts.
  • Analyze alerts to determine legitimacy of activities in the bank, to differentiate between false positives and false negatives.


4. Compliance with industry regulations

  • Ensuring the bank compliance with BNM guidelines ie RMIT
  • Contribute to the development and implementation of security policies and procedures for the bank
  • Improving cloud security policies and security technologies


5. Mitigations and best practices

  • Maintaining cloud security posture and remediating vulnerabilities in the cloud b. Stay up-to-date on the latest security threats, vulnerabilities and mitigation techniques


6. Security incident response

  • Develop and maintain security incident response plans
  • Follow detailed operational processes and procedures to analyze, escalate and support the remediation of critical information security incidents.
  • Identify and report on areas of concern and potential threats to stakeholders d. Collaborate with other stakeholders and provide technical expertise and assistance during security incidents


7. Security testing and assessment

  • Performing cyber resilience and threat simulations to identify potential risks 8. Maintain effective communication and collaboration with other teams


Job Requirements:

  • Possess knowledge and technical experience in Cloud Service Provider, specifically in AWS is an added advantage
  • Experience with AWS security controls such as Security Hub, GuardDuty, Inspector, Shield Advanced, WAF, Network Firewall, Service Control Policies, IAM, KMS etc…
  • At least 6+ years of experience in cloud engineering and cloud security
  • Technical knowledge of infrastructure as code automation with CloudFormation or Terraform
  • Technical knowledge of current and emerging cyber security threats
  • Experience with cyber security solutions and practices in the FI is a major plus
  • Relevant product-specific training and accreditation ie. AWS Certified Security Specialty, CCSP, etc..

How strong is your resume?

Upload your resume and get feedback from our expert to help land this job

MORE JOBS LIKE THIS

People also searched: