Talent.com
Senior Cloud Security Engineer

Senior Cloud Security Engineer

Edison Smart®Kuala Lumpur, Kuala Lumpur, Malaysia
3 days ago
Job description

Principal Consultant - OT & Cyber Security

We’re looking for a hands‑on Senior Cloud Security Engineer to take ownership of cloud and container security across complex AWS environments. The focus is on Zero Trust, Terraform automation, Kubernetes hardening, encryption, and threat detection at scale.

What You’ll Do

  • Design and secure multi‑VPC architectures with full network segmentation and Transit Gateway control.
  • Enforce Zero Trust access and fine‑grained ingress / egress policies using AWS Network Firewall, Security Groups, and NACLs.
  • Deploy and tune WAFs, DNS firewalls, and DLP / EDR solutions (e.g., CrowdStrike, SentinelOne).
  • Implement end‑to‑end encryption across workloads (KMS, ACM, HSM, TLS 1.3, Nitro Enclaves).
  • Secure EKS / ECS clusters  — network policies, RBAC, admission controllers, image scanning, and runtime protection.
  • Harden virtualized environments (VMs, WorkSpaces, VMware on AWS) with micro‑segmentation and endpoint monitoring.
  • Build and maintain Terraform modules to deploy compliant, secure infrastructure as code.
  • Integrate compliance‑as‑code and automated posture checks into CI / CD pipelines.
  • Correlate alerts from GuardDuty, WIZ, Inspector, and SIEMs to identify and prevent attacks.
  • Lead incident response and containment for anomalies across AWS and container workloads.
  • Develop automated playbooks for isolation, threat mitigation, and privilege escalation detection.

What You’ll Bring

  • 6+ years in cloud security engineering , with strong AWS focus.
  • Deep knowledge of VPC segmentation, Zero Trust, encryption, and IaC .
  • Hands‑on with Kubernetes / EKS security , runtime detection, and policy enforcement.
  • Experience implementing DLP, EDR, DNS, and threat prevention at scale.
  • Strong Terraform automation and secure CI / CD integration skills.
  • Familiar with SIEMs, anomaly detection, and compliance frameworks (CIS, NIST, ISO 27001, SOC 2).

    • Certifications (Preferred)

  • AWS Certified Security – Specialty (required)
  • AWS Solutions Architect – Professional
  • Certified Kubernetes Security Specialist (CKS)
  • HashiCorp Terraform Associate
  • CISSP / CCSP

    • Seniority level

    Mid‑Senior level

    Employment type

    Full‑time

    Job function

    Information Technology, Engineering, and Other

    Industries

    IT Services and IT Consulting, Computer and Network Security, and Financial Services

    #J-18808-Ljbffr

    Create a job alert for this search

    Cloud Engineer • Kuala Lumpur, Kuala Lumpur, Malaysia