Location: Shah Alam, Selangor (On-site)
Role Description
We are looking for a Cloud Security Engineer who will be responsible for assessing and enhancing the security posture of clients’ cloud environments, identifying vulnerabilities, and recommending remediation strategies.
Responsibilities
- Responsible for assessing and enhancing the security posture of client cloud environments, identifying vulnerabilities, and recommending remediation strategies.
- This role requires a strong focus on both technical security controls and process governance to ensure resilient, compliant, and secure cloud architectures.
- The Cloud Security Engineer will engage directly with clients, guiding them through security assessments, architecture reviews, and implementation plans.
Requirements
- Minimum 2 years of experience in cloud security architecture and assessment, specifically within Azure environments.
- Deep knowledge of Azure security architecture and cloud-native security resiliency patterns.
- Strong experience with security frameworks and methodologies (e.g. NIST CSF, ISO/IEC 27001).
- Proficient in vulnerability management, risk assessment, and security compliance standards.
- Ability to communicate complex security concepts clearly to both technical and non-technical stakeholders.
- Strong written and verbal communication and documentation skills.
- Hands-on experience with Azure security and governance services – Defender for Cloud, Sentinel, Key Vault, Azure AD (Entra ID), PIM, Azure Policy, Azure Monitor, and Log Analytics.
- Familiarity with Security Assessments, such as the Well-Architected Review Assessment (WARA) and Security Assessment Frameworks.
- Solid understanding of process governance, security incident response planning, and Major Incident Response Plan (MIRP) development.
