Talent.com
Senior Cloud Security Engineer (AWS) | 2025HP11006 / #4nLAED41

Senior Cloud Security Engineer (AWS) | 2025HP11006 / #4nLAED41

MindverseconsultingKuala Lumpur, Kuala Lumpur, Malaysia
6 jam yang lalu
Penerangan pekerjaan

Mindverse Consulting Services | Permanent

Kuala Lumpur, Malaysia | Posted on 08 / 11 / 2025

  • Education Bachelor’s or Master’s degree in Computer Science, Telecommunications, or related field.
  • Positions 1
  • Job Opening Status In-progress
  • Country Malaysia
  • Postal Code 50000

About Us

We are SME IT Consulting Company focusing on Cloud Computing & Data Science Consulting space across Europe and INDIA .

We also support our customers by providing technical consultant on contract as per their project requirements.

We call such services as SKILL-PARTNERSHIP and we are now operational in 40+ countries globally .

Job Description

JobSummary

We areseeking a Senior Cloud Security Engineer to lead the design, implementation,and enforcement of advanced AWS and container security controls under the FirstGlobal Security Program. This role spans VPC segmentation, firewalls,encryption, DLAP / DLP, EDR, DNS protection, Kubernetes hardening, andvirtualization security, with a heavy emphasis on Terraform-drivenautomation, anomaly detection, and attack prevention at scale. The successfulcandidate will be instrumental in building global Zero Trust architecturesacross multi-region AWS deployments, securing EKS / ECS clusters,virtualization workloads, and hybrid integrations while ensuring fullalignment with compliance frameworks in regulated financial environments.

JobResponsibilities

  • Design and implement multi-VPC architectures with subnet micro-segmentation and Transit Gateway routing enforcement.
  • Enforce Zero Trust network segmentation between workloads, users,and external partners.
  • Apply strict ingress / egress controls with AWS Network Firewall, Security Groups, and NACLs.
  • 2. Firewalling, DNS & Threat Prevention

    • Deploy AWS Network Firewall with custom Suricata / DPI rulesets.

  • Apply AWS WAF Advanced Protections for APIs, trading platforms, andclient portals.
  • Harden DNS with Route 53 Resolver DNS Firewall, enforcing globalanti-tunneling and anti-spoofing policies.
  • Define and monitor DLAP / DLP prevention policies to prevent dataexfiltration across all workloads.
  • Integrate EDR (CrowdStrike, SentinelOne) for all EC2, container,and serverless workloads.
  • 3. Encryption & Data Security

    • Enforce encryption at rest, in transit, and in use (KMS, ACM, HSM,TLS 1.3, Nitro Enclaves).

  • Automate key lifecycle management and cross-region rotation.
  • Apply confidential computing protections for financial and tradingworkloads.
  • Secure EKS, ECS, and Kubernetes clusters with pod-level networkpolicies, RBAC / ABAC, and runtime security.
  • Implement container image scanning (ECR, third-party registries)and vulnerability management pipelines.
  • Deploy Kubernetes-native firewalls and admission controllers forZero Trust enforcement.
  • Harden virtualized workloads (VMs, WorkSpaces, VMware on AWS) withendpoint monitoring and network micro-segmentation.
  • Establish runtime anomaly detection for containerized andvirtualized workloads (Falco, GuardDuty for EKS, Datadog).
  • 5. Anomaly Detection & Attack Prevention

    • Implement AI / ML-based anomaly detection for network, DNS, andworkload behaviors.

  • Define preventive playbooks for insider threats, DNS tunneling, andprivilege escalation.
  • Correlate findings from GuardDuty, WIZ, Inspector, and SIEMplatforms to predict and prevent attacks.
  • Lead threat modeling and red team exercises across cloud andcontainer environments.
  • 6. Infrastructure as Code & Automation

    • Build secure Terraform modules for AWS, Kubernetes, and firewallpolicies.

  • Automate posture drift detection with Terraform + WIZ / Security Hubintegrations.
  • Drive adoption of GitOps workflows for immutable securitydeployment.
  • 7. Observability & Incident Response

    • Integrate ISeeFirst alerting into Jira, Slack, and PagerDutyworkflows.

  • Lead incident response and containment for anomalies in AWS,Kubernetes, and virtualized workloads.
  • Build automated response pipelines (e.g., isolate compromisedcontainers or VPC subnets automatically).
  • 6–8+ years in Cloud Security Engineering, with AWS specialization.
  • Deep knowledge of VPC segmentation, subnets, firewalling, and ZeroTrust architectures.
  • Strong expertise in Kubernetes / EKS security (network policies,admission controllers, pod runtime security).
  • Proven track record implementing EDR, DLAP / DLP, and DNS protectionstrategies.
  • Strong experience with Terraform and IaC security automation.
  • Advanced knowledge of encryption-in-transit, -at-rest, and -in-use(KMS, TLS, Nitro, Enclaves).
  • Hands‑on with SIEM, anomaly detection, and ML-based attackprevention.
  • Familiarity with compliance frameworks (CIS, NIST 800-53, ISO27001, SOC2, GDPR, ASIC, ESMA).

    • Preferred Certifications

  • AWS Certified Security – Specialty (required)
  • AWS Solutions Architect – Professional
  • AWS Advanced Networking – Specialty
  • Certified Kubernetes Security Specialist (CKS)
  • HashiCorp Terraform Associate (with security modules focus)
  • CISSP (Certified Information Systems Security Professional)
  • CCSP (Certified Cloud Security Professional)
  • SANS GIAC Cloud Security Certifications (GCSA, GCLD, GDSA)
  • ISO 27001 Lead Implementer / Auditor (plus for regulatory readiness)

    • BackgroundCheck required

    No criminal record

    Others

  • Interview process- 2-3 rounds
  • This is 5 days work from office role.
  • Candidate should clearly mention all projectdetails along with mandatory technical skills used in each project.
  • You must be a local Kuala Lumpur candidateonly

    • #J-18808-Ljbffr

    Buat amaran kerja untuk carian ini

    Cloud Engineer • Kuala Lumpur, Kuala Lumpur, Malaysia

    Pekerjaan berkaitan
    • Dinaikkan pangkat
    R&D Senior Engineer - Control Software Design / Embedded

    R&D Senior Engineer - Control Software Design / Embedded

    Daikin Malaysia Sdn BhdSungai Buloh, Selangor, Malaysia
    Power the future of HVAC & IoT.We’re looking for a Senior Engineer, Control Software to join our dynamic R&D team.If you love turning complex requirements into clean, reliable code and want to work...Tunjukkan lagiKemas kini terakhir: 30+ hari yang lalu
    Cybersecurity Analyst (Cloud Security)

    Cybersecurity Analyst (Cloud Security)

    Upscale Sdn BhdKuala Lumpur, Malaysia
    We are seeking a passionate and detail-oriented.CCSP (Certified Cloud Security Professional).The ideal candidate will be responsible for protecting the organizations cloud infrastructure, ensuring ...Tunjukkan lagiKemas kini terakhir: 14 hari yang lalu
    Senior Cloud Engineer (AWS) | 2025HP11003 / #Feie5Emh

    Senior Cloud Engineer (AWS) | 2025HP11003 / #Feie5Emh

    Mindverse Consulting ServicesKuala Lumpur, 14, my
    Quick Apply
    Customer is seeking a Senior AWS Cloud Engineer to design, implement, and manage robust, secure, and scalable cloud infrastructure within the AWS ecosystem. The successful candidate will play a crit...Tunjukkan lagiKemas kini terakhir: 3 hari yang lalu
    • Dinaikkan pangkat
    • Baharu!
    Senior IT Security Engineer

    Senior IT Security Engineer

    TechLab Security Sdn BhdKuala Lumpur, Kuala Lumpur, Malaysia
    The role involves hands‑on management of.The ideal candidate is a technically strong and proactive professional with a passion for operational excellence, automation, and continuous improvement in ...Tunjukkan lagiKemas kini terakhir: 6 jam yang lalu
    • Dinaikkan pangkat
    • Baharu!
    Network & Security Engineer

    Network & Security Engineer

    SwisslogPetaling Jaya, Selangor, Malaysia
    Swisslog is a world‑leading robotics company that harnesses technology to shape the future of intralogistics.As part of the KUKA Group, we are transforming performance and efficiency for customers ...Tunjukkan lagiKemas kini terakhir: 6 jam yang lalu
    • Dinaikkan pangkat
    • Baharu!
    Senior Sales Engineer

    Senior Sales Engineer

    SophosSepang, Selangor, Malaysia
    Sophos is a global leader and innovator of advanced security solutions designed to defeat cyberattacks.The company acquired Secureworks in February 2025, creating the largest pure‑play Managed Dete...Tunjukkan lagiKemas kini terakhir: 6 jam yang lalu
    • Dinaikkan pangkat
    • Baharu!
    QA Engineer / Senior Engineer / Asst Manager QA

    QA Engineer / Senior Engineer / Asst Manager QA

    Wistron Technology (Malaysia) Sdn BhdKlang City, Selangor, Malaysia
    Add expected salary to your profile for insights.Candidate must willing to work in Port Klang Selangor.Compilation of quality control information and drives for quality improvement.Prepare and perf...Tunjukkan lagiKemas kini terakhir: 5 jam yang lalu
    • Dinaikkan pangkat
    • Baharu!
    Solutions Architect

    Solutions Architect

    MindteckNilai, Negeri Sembilan, Malaysia
    Mindteck is a global engineering and technology solutions company helping clients compete, innovate, and advance along the digital continuum. With expertise in Embedded Systems, Enterprise Applicati...Tunjukkan lagiKemas kini terakhir: 6 jam yang lalu
    • Dinaikkan pangkat
    • Baharu!
    Senior Web Developer (Remote)

    Senior Web Developer (Remote)

    RemotelyNilai, Negeri Sembilan, Malaysia
    We are currently searching for a Senior Web Engineer to join us and work as part of an enthusiastic, motivated, and delivery focused agile team. You will have the opportunity to work on all aspects ...Tunjukkan lagiKemas kini terakhir: 6 jam yang lalu
    • Dinaikkan pangkat
    Director of Finance Strategy, Trilogy (Remote) - $400,000 / year USD

    Director of Finance Strategy, Trilogy (Remote) - $400,000 / year USD

    TrilogyKlang Municipal Council, Klang Municipal Council, Malaysia
    Director of Finance Strategy, Trilogy (Remote) - $400,000 / year USD.Apply for the Director of Finance Strategy, Trilogy (Remote) role at Trilogy. Compensation is $200 / hour ($400k / year) with weekly pa...Tunjukkan lagiKemas kini terakhir: 30+ hari yang lalu
    • Dinaikkan pangkat
    • Baharu!
    Senior Cloud Security Engineer (AWS) | 2025HP11006 / #4nLAED41

    Senior Cloud Security Engineer (AWS) | 2025HP11006 / #4nLAED41

    Mindverse Consulting ServicesKuala Lumpur, Kuala Lumpur, Malaysia
    We are seeking a Senior Cloud Security Engineer to lead the design, implementation, and enforcement of advanced AWS and container security controls under the First Global Security Program.This role...Tunjukkan lagiKemas kini terakhir: 6 jam yang lalu
    • Dinaikkan pangkat
    • Baharu!
    Senior Cloud Engineer (AWS) | 2025HP11003 / #Feie5Emh

    Senior Cloud Engineer (AWS) | 2025HP11003 / #Feie5Emh

    MindverseconsultingKuala Lumpur, Kuala Lumpur, Malaysia
    Mindverse Consulting Services | Permanent.Kuala Lumpur, Malaysia | Posted on 08 / 11 / 2025.We are SME IT Consulting Company focusing on. We also support our customers by providing technical consultant ...Tunjukkan lagiKemas kini terakhir: 6 jam yang lalu
    • Dinaikkan pangkat
    Utilities Engineer

    Utilities Engineer

    LonzaSerendah, Selangor, Malaysia
    Today, Lonza is a global leader in life sciences operating across five continents.While we work in science, there’s no magic formula to how we do it. Our greatest scientific solution is dedicated in...Tunjukkan lagiKemas kini terakhir: 13 hari yang lalu
    • Dinaikkan pangkat
    • Baharu!
    Network & Security Engineer

    Network & Security Engineer

    Swisslog Holding AGPetaling Jaya, Selangor, Malaysia
    Where do people love what they do, and being great at what they do?.At Swisslog, that’s where! Our teams are the heart of a world-leading Robotics company that’s harnessing the power of technology ...Tunjukkan lagiKemas kini terakhir: 6 jam yang lalu
    • Dinaikkan pangkat
    • Baharu!
    DevOps Security Engineer

    DevOps Security Engineer

    HFMKuala Lumpur, Kuala Lumpur, Malaysia
    HFM Kuala Lumpur, Federal Territory of Kuala Lumpur, Malaysia.HFM is an internationally acclaimed multi-asset broker, delivering cutting‑edge trading tools, platforms, and conditions to traders wor...Tunjukkan lagiKemas kini terakhir: 6 jam yang lalu
    DevOps Cloud Engineer

    DevOps Cloud Engineer

    Two95 International Inc.Kuala Lumpur, Federal Territory of Kuala Lumpur, MY
    Quick Apply
    Collaborate with multiple teams to define infrastructure requirements in AWS.Implement secure and scalable solutions in AWS for various technical teams. Provide recommendations for architecture and ...Tunjukkan lagiKemas kini terakhir: 30+ hari yang lalu
    • Dinaikkan pangkat
    Airbus - AOG Desk Officer

    Airbus - AOG Desk Officer

    Airbus Customer Services Sdn BhdSepang, Malaysia
    Job Description : • • •Scope of Position • • • •Main focal point for FHS customers requiring component support under AOG and CRI priority. Daily management of incoming AOG and CRI Exchange Order to ...Tunjukkan lagiKemas kini terakhir: 3 hari yang lalu
    • Dinaikkan pangkat
    • Baharu!
    Machine Learning Engineer

    Machine Learning Engineer

    Second TalentNilai, Negeri Sembilan, Malaysia
    Member of Technical Staff - Environments (ML).As an Environment Engineer (ML), you will build on top of our core platform to create the simulation environments in which frontier coding agents learn...Tunjukkan lagiKemas kini terakhir: 5 jam yang lalu