Talent.com
Senior Cloud Security Engineer (AWS) | 2025HP11006 / #4nLAED41

Senior Cloud Security Engineer (AWS) | 2025HP11006 / #4nLAED41

Mindverse Consulting ServicesKuala Lumpur, Kuala Lumpur, Malaysia
16 hours ago
Job description

We are seeking a Senior Cloud Security Engineer to lead the design, implementation, and enforcement of advanced AWS and container security controls under the First Global Security Program. This role spans VPC segmentation, firewalls, encryption, DLAP / DLP, EDR, DNS protection, Kubernetes hardening, and virtualization security, with a heavy emphasis on Terraform‑driven automation, anomaly detection, and attack prevention at scale. The successful candidate will be instrumental in building global Zero Trust architectures across multi‑region AWS deployments, securing EKS / ECS clusters, virtualization workloads, and hybrid integrations while ensuring full alignment with compliance frameworks in regulated financial environments.

Job Responsibilities

  • Design and implement multi‑VPC architectures with subnet micro‑segmentation and Transit Gateway routing enforcement.
  • Enforce Zero Trust network segmentation between workloads, users, and external partners.
  • Apply strict ingress / egress controls with AWS Network Firewall, Security Groups, and NACLs.

Firewalling, DNS & Threat Prevention

  • Deploy AWS Network Firewall with custom Suricata / DPI rulesets.
  • Apply AWS WAF Advanced Protections for APIs, trading platforms, and client portals.
  • Harden DNS with Route 53 Resolver DNS Firewall, enforcing global anti‑tunneling and anti‑spoofing policies.
  • Define and monitor DLAP / DLP prevention policies to prevent data exfiltration across all workloads.
  • Integrate EDR (CrowdStrike, SentinelOne) for all EC2, container, and serverless workloads.

    • Encryption & Data Security

  • Enforce encryption at rest, in transit, and in use (KMS, ACM, HSM, TLS 1.3, Nitro Enclaves).
  • Automate key lifecycle management and cross‑region rotation.
  • Apply confidential computing protections for financial and trading workloads.
  • Secure EKS, ECS, and Kubernetes clusters with pod‑level network policies, RBAC / ABAC, and runtime security.
  • Implement container image scanning (ECR, third‑party registries) and vulnerability management pipelines.
  • Deploy Kubernetes‑native firewalls and admission controllers for Zero Trust enforcement.
  • Harden virtualized workloads (VMs, WorkSpaces, VMware on AWS) with endpoint monitoring and network micro‑segmentation.
  • Establish runtime anomaly detection for containerized and virtualized workloads (Falco, GuardDuty for EKS, Datadog).

    • Anomaly Detection & Attack Prevention

  • Implement AI / ML‑based anomaly detection for network, DNS, and workload behaviors.
  • Define preventive playbooks for insider threats, DNS tunneling, and privilege escalation.
  • Correlate findings from GuardDuty, WIZ, Inspector, and SIEM platforms to predict and prevent attacks.
  • Lead threat modeling and red team exercises across cloud and container environments.

    • Infrastructure as Code & Automation

  • Build secure Terraform modules for AWS, Kubernetes, and firewall policies.
  • Automate posture drift detection with Terraform + WIZ / Security Hub integrations.
  • Drive adoption of GitOps workflows for immutable security deployment.

    • Observability & Incident Response

  • Integrate ISeeFirst alerting into Jira, Slack, and PagerDuty workflows.
  • Lead incident response and containment for anomalies in AWS, Kubernetes, and virtualized workloads.
  • Build automated response pipelines (e.g., isolate compromised containers or VPC subnets automatically).

    • Qualifications

  • 6–8+ years in Cloud Security Engineering, with AWS specialization.
  • Deep knowledge of VPC segmentation, subnets, firewalling, and Zero Trust architectures.
  • Strong expertise in Kubernetes / EKS security (network policies, admission controllers, pod runtime security).
  • Proven track record implementing EDR, DLAP / DLP, and DNS protection strategies.
  • Strong experience with Terraform and IaC security automation.
  • Advanced knowledge of encryption‑in‑transit, -at‑rest, and -in‑use (KMS, TLS, Nitro, Enclaves).
  • Hands‑on with SIEM, anomaly detection, and ML‑based attack prevention.
  • Familiarity with compliance frameworks (CIS, NIST 800‑53, ISO 27001, SOC2, GDPR, ASIC, ESMA).
  • No criminal record.

    • Preferred Certifications

  • AWS Certified Security – Specialty (required)
  • AWS Solutions Architect – Professional
  • AWS Advanced Networking – Specialty
  • Certified Kubernetes Security Specialist (CKS)
  • HashiCorp Terraform Associate (with security modules focus)
  • CISSP (Certified Information Systems Security Professional)
  • CCSP (Certified Cloud Security Professional)
  • SANS GIAC Cloud Security Certifications (GCSA, GCLD, GDSA)
  • ISO 27001 Lead Implementer / Auditor (plus for regulatory readiness)

    • Other Requirements

  • Interview process – 2‑3 rounds.
  • This is a 5‑day work‑from‑office role.
  • Candidate must be a local Kuala Lumpur candidate only.
  • Candidate must be ready to join immediately.

    • #J-18808-Ljbffr

    Create a job alert for this search

    Cloud Engineer • Kuala Lumpur, Kuala Lumpur, Malaysia

    Related jobs
    • Promoted
    R&D Senior Engineer - Control Software Design / Embedded

    R&D Senior Engineer - Control Software Design / Embedded

    Daikin Malaysia Sdn BhdSungai Buloh, Selangor, Malaysia
    Power the future of HVAC & IoT.We’re looking for a Senior Engineer, Control Software to join our dynamic R&D team.If you love turning complex requirements into clean, reliable code and want to work...Show moreLast updated: 30+ days ago
    Cybersecurity Analyst (Cloud Security)

    Cybersecurity Analyst (Cloud Security)

    Upscale Sdn BhdKuala Lumpur, Malaysia
    Quick Apply
    We are seeking a passionate and detail-oriented.CCSP (Certified Cloud Security Professional).The ideal candidate will be responsible for protecting the organizations cloud infrastructure, ensuring ...Show moreLast updated: 14 days ago
    • Promoted
    • New!
    Solutions Architect

    Solutions Architect

    MindteckKuala Selangor, Kuala Selangor, Malaysia
    Mindteck is a global engineering and technology solutions company helping clients compete, innovate, and advance along the digital continuum. With expertise in Embedded Systems, Enterprise Applicati...Show moreLast updated: 16 hours ago
    Senior Cloud Engineer (AWS) | 2025HP11003 / #Feie5Emh

    Senior Cloud Engineer (AWS) | 2025HP11003 / #Feie5Emh

    Mindverse Consulting ServicesKuala Lumpur, 14, my
    Quick Apply
    Customer is seeking a Senior AWS Cloud Engineer to design, implement, and manage robust, secure, and scalable cloud infrastructure within the AWS ecosystem. The successful candidate will play a crit...Show moreLast updated: 4 days ago
    • Promoted
    • New!
    Senior IT Security Engineer

    Senior IT Security Engineer

    TechLab Security Sdn BhdKuala Lumpur, Kuala Lumpur, Malaysia
    The role involves hands‑on management of.The ideal candidate is a technically strong and proactive professional with a passion for operational excellence, automation, and continuous improvement in ...Show moreLast updated: 16 hours ago
    • Promoted
    • New!
    Network & Security Engineer

    Network & Security Engineer

    SwisslogPetaling Jaya, Selangor, Malaysia
    Swisslog is a world‑leading robotics company that harnesses technology to shape the future of intralogistics.As part of the KUKA Group, we are transforming performance and efficiency for customers ...Show moreLast updated: 16 hours ago
    • Promoted
    • New!
    Senior Sales Engineer

    Senior Sales Engineer

    SophosSepang, Selangor, Malaysia
    Sophos is a global leader and innovator of advanced security solutions designed to defeat cyberattacks.The company acquired Secureworks in February 2025, creating the largest pure‑play Managed Dete...Show moreLast updated: 16 hours ago
    • Promoted
    • New!
    QA Engineer / Senior Engineer / Asst Manager QA

    QA Engineer / Senior Engineer / Asst Manager QA

    Wistron Technology (Malaysia) Sdn BhdPort Klang, Selangor, Malaysia
    Add expected salary to your profile for insights.Candidate must willing to work in Port Klang Selangor.Compilation of quality control information and drives for quality improvement.Prepare and perf...Show moreLast updated: 16 hours ago
    • Promoted
    • New!
    Senior Web Developer (Remote)

    Senior Web Developer (Remote)

    RemotelySelayang Municipal Council, Selayang Municipal Council, Malaysia
    We are currently searching for a Senior Web Engineer to join us and work as part of an enthusiastic, motivated, and delivery focused agile team. You will have the opportunity to work on all aspects ...Show moreLast updated: 14 hours ago
    • Promoted
    Utilities Engineer

    Utilities Engineer

    LonzaKampung Baharu Nilai, Negeri Sembilan, Malaysia
    Today, Lonza is a global leader in life sciences operating across five continents.While we work in science, there’s no magic formula to how we do it. Our greatest scientific solution is dedicated in...Show moreLast updated: 14 days ago
    • Promoted
    • New!
    Senior Cloud Security Engineer (AWS) | 2025HP11006 / #4nLAED41

    Senior Cloud Security Engineer (AWS) | 2025HP11006 / #4nLAED41

    MindverseconsultingKuala Lumpur, Kuala Lumpur, Malaysia
    Mindverse Consulting Services | Permanent.Kuala Lumpur, Malaysia | Posted on 08 / 11 / 2025.Education Bachelor’s or Master’s degree in Computer Science, Telecommunications, or related field.Job Opening...Show moreLast updated: 16 hours ago
    • Promoted
    • New!
    Senior Cloud Engineer (AWS) | 2025HP11003 / #Feie5Emh

    Senior Cloud Engineer (AWS) | 2025HP11003 / #Feie5Emh

    MindverseconsultingKuala Lumpur, Kuala Lumpur, Malaysia
    Mindverse Consulting Services | Permanent.Kuala Lumpur, Malaysia | Posted on 08 / 11 / 2025.We are SME IT Consulting Company focusing on. We also support our customers by providing technical consultant ...Show moreLast updated: 16 hours ago
    • Promoted
    Director of Finance Strategy, Trilogy (Remote) - $400,000 / year USD

    Director of Finance Strategy, Trilogy (Remote) - $400,000 / year USD

    TrilogySepang, Sepang, Malaysia
    Director of Finance Strategy, Trilogy (Remote) - $400,000 / year USD.Apply for the Director of Finance Strategy, Trilogy (Remote) role at Trilogy. Compensation is $200 / hour ($400k / year) with weekly pa...Show moreLast updated: 30+ days ago
    • Promoted
    • New!
    Network & Security Engineer

    Network & Security Engineer

    Swisslog Holding AGPetaling Jaya, Selangor, Malaysia
    Where do people love what they do, and being great at what they do?.At Swisslog, that’s where! Our teams are the heart of a world-leading Robotics company that’s harnessing the power of technology ...Show moreLast updated: 16 hours ago
    • Promoted
    • New!
    DevOps Security Engineer

    DevOps Security Engineer

    HFMKuala Lumpur, Kuala Lumpur, Malaysia
    HFM Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia.HFM is an internationally acclaimed multi-asset broker, delivering cutting‑edge trading tools, platforms, and conditions to traders wor...Show moreLast updated: 16 hours ago
    DevOps Cloud Engineer

    DevOps Cloud Engineer

    Two95 International Inc.Kuala Lumpur, Federal Territory of Kuala Lumpur, MY
    Quick Apply
    Collaborate with multiple teams to define infrastructure requirements in AWS.Implement secure and scalable solutions in AWS for various technical teams. Provide recommendations for architecture and ...Show moreLast updated: 30+ days ago
    • Promoted
    Airbus - AOG Desk Officer

    Airbus - AOG Desk Officer

    Airbus Customer Services Sdn BhdSepang, Malaysia
    Job Description : • • •Scope of Position • • • •Main focal point for FHS customers requiring component support under AOG and CRI priority. Daily management of incoming AOG and CRI Exchange Order to ...Show moreLast updated: 4 days ago
    • Promoted
    • New!
    Machine Learning Engineer

    Machine Learning Engineer

    Second TalentNilai, Negeri Sembilan, Malaysia
    Member of Technical Staff - Environments (ML).As an Environment Engineer (ML), you will build on top of our core platform to create the simulation environments in which frontier coding agents learn...Show moreLast updated: 14 hours ago