Home About us Contact
Sign Up

CXC Global Vietnam

Saigon Trade Center, 37 Ton Duc Thang, TP Hồ Chí Minh

Company Size : 25-99

View more

Job Summary

25-99

Outsourcing

Việt Nam

AWS Cloud Security Engineer

CXC Global Vietnam

Quận 1, TP Hồ Chí Minh

  • English
  • Experienced (Non-Manager)
  • Full Time
  • Negotiable
  • Posted:01/12/2020
  • 1
Expired

Job description

Overview of job

We are seeking an a AWS Cloud Security Engineer who can provide hands-on technical engineering of the growing cloud security program (Threat Model / Attack Vectors), mostly on the AWS infrastructure for our prime Digital Bank client.
You will work closely with the Cloud Engineering team as well the Cloud Operations team to help build secure and robust controls including 4 levels of (sec) controls:
 Directive: i.e. policies
 Preventive: Access controls, segregation, etc.
 Detective: scanning and such
 Canary: automated approach using our in-house developed Canary Engine that goes and reads directive controls and tests those

Responsibilities
 Serves as the subject matter expert (SME) on Cloud Chaos Security
 Develops security experiments and procedures as well as best practices documentation.
 Participate in efforts that tailor the company’s security policies and standards for use in cloud environments
 Propose and/or design technical solutions, which include creating prototypes and proofs of concept while maintaining a security mindset

 Work closely with cloud platform engineers to deliver creative solutions to complex technology challenges and business requirements.
 Automate security controls, data and processes to provide better metrics and operational support
 Utilize cloud-based APIs when appropriate to write network/system level tools for securing cloud environments
 Stay current on emerging security threats, vulnerabilities and controls.
 Identify and Implement new security technologies and best practices into Cloud offerings
 Exposure to Chaos Engineering principles for delivery of highly available & reliable software on cloud platforms
 Identify detect and remediate failures in security controls by executing continuous instrumentation and validation of security capabilities

Must have:
 Cloud Security experience (AWS)
 Code experience (Python/Bash)
 Good English communication skills
Nice to have:
 Ability to map security standards against the proposed solution/architecture (for both IaaS & SaaS solutions)
 Demonstrated relevant security expertise in designing security solutions for a mix of technology areas, with a focus on application, network and cloud security.
 Demonstrated ability to understand and propose security requirements on Cloud (but not limited)
 Open Banking/PSD2, APIs
 Big Data Platform/Security Components (Hortonworks/Apache)
 Cloud Service, Provider, and Platform Security (SaaS, FaaS, PaaS & crypt IaaS)
 Advanced Identity & Access Management
 Cryptography & PKI
 Automated Vulnerability Management Solutions (Qualys, SonarQube, Open Sources, IBM App Scans, X-Ray, etc)
 Application Security (Secure SDLC, DevSecOps, and Automation)
 Next Generation Network Security (Software Defined Perimeter, Zero Trust/BeyondCorp, SDWAN)
 End User Technology, Productivity & Collaboration Security

Job Requirement

Requirements
 Bachelor’s degree or an equivalency of education and work experience.
 Minimum of 5 years of IT Security and/or security engineering experience, with proven focus on Cloud Security and Cloud technologies.
 Must have experience with virtualization (cloud or non-cloud)
 Expert knowledge of Cloud infrastructure, security architectures, and standards
 Deep technical knowledge of AWS infrastructure
 Able to demonstrate clear understanding of current threats to Cloud infrastructure and/or IT infrastructures at technical and managerial levels
 Able to automate/script daily tasks through Python, Bash or equivalent
 Experience with web-based applications or web-services
 Proficient in Linux system design, automation and operations
 Experience in designing and implementing standards, specifications and procedures.
 Demonstrated ability to take initiative and accountability for achieving results.
 Strong interpersonal, oral, and written communication skills
 Knowledge of network and web related protocols (e.g., TCP/IP, UDP, IPSEC, HTTP, HTTPS, routing protocols)
 Very detailed knowledge of system security vulnerabilities and remediation techniques
 Security certification desired (e.g., CISSP, CCSP, GIAC, CEH, etc)

Languages

  • English

    Speaking: Advanced - Reading: Advanced - Writing: Advanced

Technical Skill

  • AWS
  • Python
  • Bash
  • Cryptography
  • Linux
  • HTTP
  • TCP/IP
  • PKI Server
  • CCSP
  • Apache
  • SonarQube
  • CEH
  • UDP
  • IPSEC
  • Routing Protocols
  • CISSP
  • SDLC
  • GIAC
  • HTTPS
  • SD-WAN
  • BeyondCorp
  • Zero Trust
  • Qualys
  • PSD2
  • Hortonworks

COMPETENCES

  • Interpersonal Skills
  • Communication Skills
  • Logical Thinking
  • Detail oriented

BUSINESS PROFILE

CXC, Global HR Outsourcing for your contingent workforce. 

 

We’ve been operating in the contingent workforce management industry since 1992. Today, CXC continues to lead the way by enabling both corporations and individual consultants to adapt to today’s high-performance work environment.

With the rapid change in workforce dynamics and contingent workers now playing a pivotal role in organisational growth and prosperity, CXC simplifies how organisations and contingent workers connect compliantly and efficiently.

Established in Australia in 1992 to provide contractor vetting, compliance and payroll, the contingent workforce market has continued to be our core, with services now delivered in over 50 countries internationally by local specialists. Our corporate offering has evolved over the past decade due to increasing market complexity, regulation, technology and evolving client demand.

MORE JOBS FROM THIS EMPLOYER