Talent.com
This job offer is not available in your country.
Specialist, Cloud Security

Specialist, Cloud Security

TNG DigitalKuala Lumpur, Kuala Lumpur, Malaysia
1 day ago
Job description

Senior Talent Acquisition Specialist @ TNG Digital - We're Hiring!

Get AI-powered advice on this job and more exclusive features.

Direct message the job poster from TNG Digital

We fuel the ideas and ambitions of our people with an environment built on Our DNA of Love, Entrepreneurship, Agility, and Passion – LEAP!

We are a culture that empowers everyone to innovate and create solutions that will leave a positive impact on our communities and our nation, Touch ‘n Go will always be here to inspire our talents to grow as leaders and innovators giving you the power to make a difference.

What would you do?

  • Design and implement secure cloud architectures in AWS, Azure, or Alibaba Cloud.
  • Implement and enforce strong Identity and Access Management (IAM) controls, including least privilege, RBAC, MFA, and privileged access monitoring.
  • Identify and remediate cloud infrastructure vulnerabilities and misconfigurations using CSPM and other tools.
  • Configure and manage network security controls, including cloud firewalls, Web Application Firewalls (WAF), and DDoS mitigation services (e.g., AWS Shield, AWS WAF, AWS Network Firewall) to protect applications from external threats.
  • Deploy and manage Data Loss Prevention (DLP) tools and policies to prevent unauthorized data exposure.
  • Configure and maintain Key Management Systems (KMS) for secure cryptographic key storage and usage.
  • Implement and manage encryption protocols for data at rest and in transit using industry standards (e.g., TLS, AES).
  • Perform operating system (OS) hardening (CIS Benchmark) and ensure timely patch management across cloud-based systems to reduce vulnerability exposure.
  • Define and enforce security policies, standards, and best practices across cloud environments (e.g., PCI-DSS, RMiT, ISO 27001).
  • Oversee API security management, including secure design and governance of APIs, Authentication and authorization (e.g., OAuth2, API keys, JWT), rate limiting, input validation, and anomaly detection.
  • Develop and enforce cloud policies to maintain consistent and secure cloud configurations (e.g., AWS SCP, Azure Policy).
  • Manage and analyse security-relevant logs from various sources, including (AWS CloudTrail, Azure Activity Logs, Alibaba ActionTrail).
  • Respond to cloud-related security incidents, collaborate with SOC / IR teams, and lead forensic investigations where needed.
  • Staying up-to-date with emerging cloud security trends, technologies, and threats, and making recommendations to improve the organization's security posture.

Who should join us?

  • Bachelor's degree in computer science, information technology, or a related field. Degree in IT Security related field is preferred.
  • Minimum of 2-5 years of experience in cloud security or related fields, such as cybersecurity or information security with a focus on cloud environments.
  • Experience with cloud security technologies and tools, such as identity and access management (IAM), encryption, firewalls, and intrusion detection systems (IDS), WAF, DDoS protection etc.
  • Experience in managing a secure Cloud Landing Zone (e.g., using AWS Control Tower, Azure Blueprints) to establish a scalable, secure foundation for cloud environments.
  • In-depth understanding of cloud security best practices and regulatory compliance frameworks.
  • Experience in managing cloud security incidents, including conducting forensic analysis and incident response in cloud-based environments.
  • Experience with container security (Docker, Kubernetes).
  • Strong understanding of disaster recovery and business continuity planning within cloud environments.
  • Relevant cloud certifications (e.g., AWS Certified Security Specialty, Azure Security Engineer Associate, Alibaba Cloud Security Engineer are preferable).
  • Strong knowledge of API security protocols and communication methods, including RESTful APIs, OAuth2, JWT, WebSockets, and GraphQL, as well as experience in securing and optimizing API communication for high-performance environments.

    • We believe that you have what it takes to fit into the Touch ‘n Go family and help revolutionize the Fintech industry by paving the way to a cashless society. If you're ready to take the next step, apply now!

    Touch ‘n Go is an organization that strives to provide Equal Opportunity Employment, based on merit, qualifications, capabilities, and calibre. It is Touch ‘n Go’s policy to not discriminate based on age, race, religion, colour or other personal status, identity or characteristics. Fair Opportunity is Our Value and Practice. Please advise us of any accommodations you may need by e-mailing :

    Note : Only shortlisted candidates will be contacted.

    Let’s keep LEAP-ing forward together!

    We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.

    #J-18808-Ljbffr

    Create a job alert for this search

    Cloud Security Specialist • Kuala Lumpur, Kuala Lumpur, Malaysia