ManilaResponsibilities:Employ first-hand experience with a wide variety of enterprise computing infrastructure and private and public Cloud computing technologies on either Azure, AWS, or Oracle CloudÂ
Engineer and implement cloud security controls, evaluate threats and vulnerabilities, develop automated response capabilities, and communicate the controls to relevant teams.Â
The analyst must have the ability to convey complicated technology and security concepts to management and ideally has technical knowledge and/or experience in security, systems administration, security incident response.Â
Maintaining a current understanding of the latest security threats, trends and technologies is a crucial component of the position.Â
Develop cloud-based security procedures and policies, protecting the confidentiality, integrity and availability of information systems and company data.Â
The candidate must have the capability to communicate highly complex technical issues with confidentiality and sensitivity to diverse audiences as appropriate.Â
Engineer and develop technical designs and processes and contribute to cloud security strategies and standardsÂ
Develop and implement public cloud incident response uses cases, assess the effectiveness of existing controls.Â
Leverage or centralize the available logging systems throughout the different cloud organization accounts, to monitor and alert for any critical eventÂ
Utilize cloud-based APIs when appropriate to write system level tools for securing cloud environmentsÂ
Provides guidance and assistance to ensure IT controls are designed to mitigate intended risks and operating effectively, ensuring cloud engineering best practices are followedÂ
Researches and assesses new threats and security alerts, recommends and implements remedial actionÂ
Maintains an awareness of existing and proposed security standard setting groups, relevant legislation and regulations (e.g. HIPAA, GDPR, ISO27001) and how they will affect company cloud environmentÂ
Keep the Information Security Team informed of security posture by reporting performance metrics
Requirements
Bachelor’s degree/College/University graduate on Computer Science, Computer Engineering, ECE or related fieldsÂ
Minimum 3 years of experience in information security and/or relevant field, with experience supporting private and public cloud deployments, clear passion for cloud security and cloud technologiesÂ
Minimum 3-4 years of work experience in IT and Information Security fieldÂ
Expert knowledge of Cloud infrastructure, security architectures, and standardsÂ
Deep technical knowledge of Amazon Web Services in GuardDuty, Lambda, EC2, S3, IAM, VPC, Cloud WatchÂ
Working knowledge of Amazon Web Services in API Gateway, Step-function, Rout53, EBS, Elastic Cache, Auto-Scaling, Load Balancer, Cloud Formation, SNSÂ
Working knowledge of different security technologies and concepts such as but not limited to VA, PT, SIEM, DLP gateway and endpoints, IPS/IDS, WAF, Cloud Security, IAM, Cyber Incident Response, Digital ForensicSÂ
Working knowledge of IT Infrastructure such as but not limited to network, systems, applications, etc.Â
Programming knowledge (Java, PHP, C++, Phyton, scripting, etc)Â
Preference will be given to applicants who has active certifications (CEH, CISSP, CISM, Security+, CCNA security, or equivalent)Â
Advantage will be given to applicants that have relevant Cloud Security certifications (ex. Certified Cloud Security Professional by ISC2, or AWS, Azure Cloud Certifications)
Provide Cloud Security support and expertise to the company’s various cloud resources and properties. Take lead in the design, development, implementation, and monitoring of cloud security standards and controls.
