| Company Name | AIRTS PTE. LTD. |
|---|---|
| Company UEN | 202406281D |
We are seeking a highly skilled and motivated risk-oriented Cloud Security person to join our team. The ideal candidate will have a strong background in cloud security, risk assessment, and compliance, with a focus on identifying and mitigating security risks associated with our cloud-based services and infrastructure. This role requires expertise in cloud platforms, security best practices, and the ability to work collaboratively with cross-functional teams to safeguard our cloud environment.
Cloud Security Architecture: Design and maintain a secure cloud architecture, including access controls, network security, and encryption mechanisms. Ensure adherence to industry best practices and compliance standards. Designing and implementing security controls: Design and implement security controls to protect cloud-based systems from cyber threats and work with other IT teams to identify potential vulnerabilities and develop strategies to mitigate them. Risk Assessment: Conduct comprehensive risk assessments of our cloud environment, including infrastructure, applications, and data repositories. Identify potential security vulnerabilities and threats. Risk Mitigation: Develop and implement risk mitigation strategies to address identified vulnerabilities and threats. Collaborate with cross-functional teams to remediate security issues. Compliance: Ensure cloud security compliance with relevant regulations, standards (e.g., ISO 27001, NIST, CIS), and internal policies. Conduct regular compliance checks and assessments. Integrating security into the DevOps process: Integrates security into the DevOps process by working with developers to ensure that security is built into the software development lifecycle. Incorporate testing technologies such as static code analysis, dynamic code analysis, and penetration testing into DevOps process to identify potential vulnerabilities and develop strategies to mitigate them. Automating security testing: Automate security testing to ensure that security is integrated into the continuous integration and continuous deployment (CI/CD) pipeline. Manage solutions like Azure Security Center, Azure Sentinel, and Azure Defender to automate security testing and provide real-time threat intelligence. Security Audits and Reviews: Participate in security audits and reviews of cloud infrastructure and services. Address audit findings and recommendations. Security Monitoring: Manage security monitoring tools and systems to detect and respond to security incidents in real-time. Develop incident response plans and lead incident response efforts when necessary. Security Documentation: Maintain comprehensive documentation of security policies, procedures, and configurations. Keep documentation up-to-date and accessible to relevant stakeholders. Collaboration: Collaborate with cross-functional teams, including DevOps, IT, and development teams, to integrate security into the software development lifecycle (SDLC) and cloud deployment processes. Incident Response: Participate in incident response activities, including root cause analysis, post-incident reports, and continuous improvement of security measures. Security Awareness: Promote security awareness and best practices among team members and end-users. Provide training and resources to enhance security awareness.
| Job Title | IT Infrastructure Security Engineer |
|---|---|
| Salary | SGD4,000.00 - 7,000.00 |
| Employment Type | Full Time |
| Working Experience | 0 Years |