Cloud Security Engineer

Key Responsibilities:

System Security and Compliance: The team will conduct security reviews, system hardening checks and conducting risk assessment based on deviations to hardening requirements (e.g. CIS Benchmarks). The team will also create Client hardening baselines using available benchmarks (e.g. CIS Benchmarks or those provided by the manufacturer). Responsibilities include create, review and maintain Standard Operation Procedures (SOPs), planning and scheduling annual reviews of security hardening documents, performing compliance reviews, and ensuring remediation of findings.

Management and responding to security alerts: Monitoring phishing alerts and communicating with staff regarding malicious emails, supporting audit activities, vulnerability scans, and penetration tests. Communicating and following SOP to perform malware scans on endpoints with anti-virus alerts.

Client has cloud security engineers that manage cloud security tools like Cloud Security Posture Management. The ITSO shall work with the cloud security engineers to communicate with System Managers to follow up on findings identified in CSPM and Government in-house CSPM tool (Cloudscape). The ITSO shall perform routine review of the findings flagged by the CSPM tools, monitoring of the suppression expiry to ensure its validity, following up directly with system Officers-in-Charge and infrastructure teams

with recommended actions to rectify in a timely manner. The team will maintain a tracking system to monitor the status of remediation efforts, documenting whether recommended actions have been completed, are in progress, or require escalation, ensuring accountability and timely resolution of security issues. The ITSO shall be able to make assessment if the security recommendations are required or false alarms (using GenAI tool provided by Client to aid him in his assessment).

Technical Support and Governance: The role involves providing vulnerability monitoring and recommending and implementing mitigation actions to system Officers-in-Charge and infrastructure teams. The team will also provide security advice or proposals on security measures for new projects and functionalities and monitor governance compliance tools, such as Cloudscape. The team will also provide their risk-based assessments to prioritise rectification of alerts (e.g. Cloudscape). The Team is also expected to manage and update into the governance compliance tools with the relevant information to suppress the affected findings when approval is sought. The team will respond to auditors' RFI on security monitoring.

Reporting and Training: Monthly reports to summarise the progress of tasks and to flag outstanding non-remediated issues/alerts across the key security domains will be compiled collaboratively by the team and presented to the Board's Cybersecurity team. The team will coordinate monthly IT security awareness training and briefings for users to enhance organisational security posture, with team members contributing their specialised expertise to deliver comprehensive training programmes.

Qualifications: All candidates must possess a bachelor's degree in computer science, Information Technology, Cybersecurity, or a related field along with minimally an internationally recognised security certifications such as CISSP, CISM, CRISC, or CISA. Proven experience of at least 2 years in Cloud cybersecurity is required, including security assessment, vulnerability management within cloud and on prem environments, particularly GCC. Familiarity with security platforms such as Azure Log Analytics, AWS CloudWatch, AWS Security Hub CSPM, and Microsoft Defender for Cloud are preferred. Strong analytical and problem-solving skills are necessary to resolve security related issues, along with excellent communication skills in both spoken and written English to effectively collaborate with team members, system Officers-in-Charge, infrastructure teams, and external vendors.

General Requirements: Strong collaborative skills are essential to ensure seamless coordination between the specialised roles whilst maintaining comprehensive security coverage.