About the role
The Global Principal Network & Cloud Hosting Engineer is the senior technical authority responsible for the strategic design, implementation, and security of the organization's global network and multi-cloud infrastructure across AWS, Azure, GCP, and Ali Cloud.
This role focuses heavily on operational security excellence, ensuring robust protection across all cloud environments through proactive security control management, continuous monitoring, and timely remediation of vulnerabilities specific to each platform's security capabilities.
What you will do
Multi-Cloud Security Management :
Design and implement consistent security policies across AWS, Azure, GCP, and Ali Cloud platforms
Configure and manage Ali Cloud Security Center for threat detection and compliance monitoring
Implement and maintain cloud-specific WAF rules and DDoS protection across all platforms
Network Security Operations :
Lead regular security reviews of Cloud Firewall rules (Ali Cloud Cloud Firewall, AWS Network Firewall, Azure Firewall)
Manage Anti-DDoS solutions across all cloud providers, including Ali Cloud Anti-DDoS Pro
Implement and maintain consistent network segmentation strategies across all environments
Security Monitoring & Compliance :
Monitor and analyze security reports from Ali Cloud Security Center and other cloud security tools
Conduct regular configuration audits using Ali Cloud Config and other CSPM tools
Maintain compliance with regional regulations across all cloud deployments
Identity & Access Management :
Implement and maintain RAM (Resource Access Management) policies in Ali Cloud
Establish consistent IAM policies across all cloud platforms
Manage cloud access keys and credential rotation processes
Incident Response & Forensics :
Utilize Ali Cloud Action Trail for security investigation and forensics
Develop incident response playbooks specific to Ali Cloud environments
Coordinate security response across multiple cloud platforms
Skills / Competencies
Technical Skills :
Expert knowledge of Ali Cloud security services (Security Center, Cloud Firewall, WAF)
Deep proficiency in multi-cloud security management across AWS, Azure, GCP, and Ali Cloud
Strong experience with cloud-native security monitoring and compliance tools
Proficiency in security automation using Terraform, Ansible, and cloud-specific APIs
Analytical Skills :
Ability to analyze security threats across diverse cloud environments
Experience with cross-cloud security correlation and analysis
Strong risk assessment capabilities for multi-cloud architectures.
Soft Skills :
Excellent communication for coordinating security efforts across regions
Ability to work with diverse teams in different geographical locations
Strong documentation skills for multi-cloud security frameworks
Unwavering ethics due to frequent handling of highly sensitive and confidential information.
What you will need
Bachelor’s degree in computer science, Cybersecurity, or related field, or equivalent practical experience.
10+ years in cybersecurity, with at least 5 years focused on securing complex, global network and multi-cloud environments.
Hands-on experience managing security operations in AWS, Azure, and / or GCP. Proven experience with automation and scripting (Python, PowerShell) for security orchestration.
Preferred Certifications (Any of the following) :
Ali Cloud Security Associate or Professional
CCSP (Certified Cloud Security Professional)
AWS Certified Security - Specialty
Microsoft Azure Security Engineer Associate
CISSP (Certified Information Systems Security Professional)
Accountable for security consistency across AWS, Azure, GCP, and Ali Cloud environments
Accountable for the proper configuration and management of Ali Cloud security services
Accountable for maintaining security compliance across all cloud platforms
Accountable for leading security incident response across all cloud environments
Accountable for maintaining comprehensive multi-cloud security documentation
Accountable for identifying and mitigating security risks in Ali Cloud and other cloud environments
Accountable for implementing consistent security policies across all cloud platforms
Talent acquisition based on Nexperia vacancies is not appreciated. Nexperia job adverts are Nexperia copyright material and the word Nexperia is a registered trademark.
D&I Statement
As an equal-opportunity employer, Nexperia values diversity not just because it is the right thing to do but because diverse teams perform better. We are dedicated to being inclusive, and a proof point of this dedication is that we were the main partner of the very first Dutch Paralympic Team NL House during the Paris 2024 Paralympic Games. Our recruitment process is inclusive and accessible to all, and we consider all applicants fairly, as well as providing a safe work environment and reasonable adjustments where requested.
In addition, we offer our colleagues the possibility to join employee resource groups such as the Pride Network Group or global and local Women's groups. Nexperia is committed to increasing women in management positions to 30% by 2030.
#J-18808-Ljbffr
Network Engineer • Kuala Lumpur, Kuala Lumpur, Malaysia