About the Role:

We are seeking a highly motivated and experienced Cloud Security Engineer to join HKT IT Cloud Technology team. In this role, you will be a key contributor to securing our public / private cloud-based environments, ensuring the confidentiality, integrity, and availability of our critical systems and data. You will work closely with infrastructure engineers, developers, security governance and risk management teams to design, implement, and maintain robust security controls across our cloud platforms.

Responsibilities:

• Cloud Security Architecture & Design:
• Design and implement secure cloud architectures, including network segmentation, access control, and data protection strategies.
• Develop and maintain security standards and best practices for public cloud environments.
• Conduct security assessments and vulnerability scans of cloud infrastructure and applications.
• Evaluate and recommend security tools and technologies for cloud environments.
• Security Implementation & Operations:
• Implement and manage security controls, such as firewalls, intrusion detection/prevention systems, and security information and event management (SIEM) solutions.
• Automate security tasks and processes using infrastructure-as-code (IaC) tools (e.g., Terraform, CloudFormation).
• Monitor cloud security posture and respond to security incidents.
• Manage and maintain cloud identity and access management (IAM) policies.
• Implement and manage data encryption at rest and in transit.
• Compliance & Risk Management:
• Ensure compliance with relevant security standards and regulations.
• Conduct risk assessments and identify security vulnerabilities.
• Develop and maintain security documentation and procedures.
• Participate in security audits.
• Collaboration & Communication:
• Collaborate with infrastructure engineers, developers, and security governance teams to implement security solutions.
• Provide security guidance and training to other teams.
• Communicate security risks and recommendations effectively.
• Participate in incident response and post-incident analysis.

Required Skills & Experience:

• Bachelor's degree in Computer Science, Information Engineering, or a related field.
• Minimum of 3+ years of experience in security engineering, with a focus on public cloud environments.
• Strong understanding of cloud security principles and best practices.
• Hands-on experience with at least one major public cloud platform (AWS, GCP).
• Proficiency in scripting languages (e.g., Python, Bash) and infrastructure-as-code tools (e.g., Terraform, CloudFormation).
• Strong understanding of networking concepts and protocols.
• Knowledge of security standards and regulations is a plus.
• Experience with container security (Docker, Kubernetes) is a plus.
• Knowledge with Huawei HCS platform is a plus.
• Holder of relevant security certifications (e.g., AWS Certified Security – Specialty, GCP Professional Cloud Security Engineer, CISSP, CCSP) are definite plus.
• Excellent communication and collaboration skills.
• Candidate with less experience will be considered for the Assistant Security Engineer role.