Cloud Security Architecture
เกี่ยวกับตำแหน่งนี้
The Cloud Security Architecture position involves implementing and managing security strategies and best practices in public cloud environments, ensuring compliance, and responding to security incidents.
หน้าที่รับผิดชอบ
• Acting as L1.5/L2 security operations for break-fix and security incident response
• Implement cloud security strategies, standards, and best practices on public cloud environments (e.g., AWS, Azure, Google Cloud)
• Manage cloud infrastructure security elements such as antivirus, endpoint protection, NGFW, and WAF
• Maintain security controls and governance tools and ensure compliance with internal policies and regulatory requirements
• Monitor cloud environments for security threats and respond to security breaches in a timely manner
• Support development teams or client engineers on security patching and vulnerability remediation
• Liaise with business users to explain security configuration recommendations and obtain approval for implementation
• Maintain asset information in CMDB and generate regular security service delivery reporting
• Create documentation including standards, procedures, and knowledge base articles
• Join client call on technical discussion as required
• Support the operations on-call rotation
• Pro-active engagement for improvement of overall infrastructure operations and managed services
คุณสมบัติ
• Diploma or Bachelor’s degree in Computer Science, Information Technology, or a related field, or equivalent practical experience
• Have knowledge or experience in Network Security Engineer, CyberSec Engineer, and InfoSec Engineer
• Have knowledge or experience in public cloud environment (e.g., AWS, Azure, Google Cloud) and their security features and services
• Have experience with implementing and managing cloud security governance and controls (e.g., IAM, encryption, network security) is a plus
• Good understanding of networking principles and protocols (e.g., TCP/IP, DNS, VPN)
• Familiar with security compliance standards and frameworks (e.g., ISO 27001, NIST CSF, OWASP, GDPR, PDP)
• Proficient with Windows and Linux / Unix-based operating systems
• Good analytical and problem-solving skills with attention to detail
• Familiar with ServiceNow CMDB or ITSM / ITIL framework
• Proficient in drafting technical specifications and documenting system changes
• Good English communication skills both written and verbal
• Certifications such as CCSP, CISSP, CISA, or OSCP is a plus
• Experience with CSPM tools such as Prisma Cloud, Wiz, or CrowdStrike is a plus
• Experience with NGFW tools such as Palo Alto Networks, Cisco, or Fortinet is a plus