We are looking for an experienced Cloud Security - Cyber Security Engineer on a 12-month contract role to start with a potential to extend / convert based on the performance and business needs.
Job Overview:
This role involves assessing technologies, applications, and security controls within Cloud platforms to identify risks and vulnerabilities affecting information security.
Key responsibilities include understanding and adhering to the Global Information Security policy, conducting security assessments, and providing expert technical guidance to support partners. The role also requires adapting testing methods to emerging cyber security regulations and evolving threats while developing team members.
Core Responsibilities:
- Lead efforts to identify vulnerabilities and misconfigurations in Cloud platforms and workloads.
- Manage daily operations of Cloud security solutions such as Aqua, Wiz, Qualys, and CrowdStrike.
- Enhance the vulnerability identification process for Hybrid Cloud platforms.
- Analyze, implement, execute, and improve proactive security controls to prevent external threats.
- Monitor and address new threats and complex attempts to compromise security controls.
- Develop expertise in early lifecycle security techniques to identify vulnerabilities before they pose a risk.
- Build strong partnerships and demonstrate operational expertise as a subject matter expert.
- Improve vulnerability identification quality control for the Cloud environment, collaborating with Vulnerability Management.
- Align strategies and roadmaps across Cloud Security, Cyber Security Operational Controls, and related functions.
- Perform gap analyses of current controls, identify deficiencies, formulate recommendations, and develop action plans.
- Provide consulting services as a cloud vulnerability identification expert.
- Quickly learn and assess new technologies for integration into cloud vulnerability management.
- Support audit and regulatory inquiries.
Job Skills:
- Information Systems Management
- Threat Analysis
- Customer and Client Focus, Problem Solving, Business Acumen, Stakeholder Management
- Cyber Security
- Policies, Procedures, Guidelines
- Technology Systems Assessment
- Risk Analytics
- Quality Assurance
- Data Privacy and Protection
- Data and Trend Analysis
Experience:
- Deep understanding of Microsoft Azure and/or AWS services, tools, and architecture
- Expertise in cloud and container security
- Knowledge of the cloud threat landscape
- Technical experience in infrastructure and security functions
- Experience with DevSecOps and CI/CD pipeline integration
- Ability to write requirements documentation
- Experience deploying and managing Cloud-based vulnerability management solutions
- Understanding of threat modeling and cybersecurity frameworks (MITRE ATT&CK/D3FEND, OWASP, STRIDE)
- Familiarity with vulnerability management and scanning tools
- Project management experience
- Ability to communicate complex concepts effectively
Desired Skills:
- CISSP/CCSP/CISM certifications
- Cloud-specific security certifications (e.g., SANS/GIAC)
- Vendor-specific certifications (e.g., AZ-500, SC-400, AWS Certified Security Specialty, CKA, CKS, RHCE)
- Bachelor’s or master’s degree in a technical field, or equivalent technical experience
Argyll Scott Consulting Pte Ltd
