Senior Cloud Security Engineer

Job Summary

Cognizant Technology Solutions Asia Pacific Pte. Ltd
IT/Computers - Software
Years of Experience
4 - 9 years
Posted On
17th Jan 2020
Cloud Security,Cloud Consulting,AZURE,AWS,cloud azure,AWS Cloud,ansible,jenkins,chef,puppet

Job Description:

Job Description:

• Required - experience of security best practices for cloud (Google Cloud Platform, Microsoft Azure & Amazon Web services)

• Required - deep experience in multi-tier application architecture in the context of network security & security boundaries

• Required - proficient in one of the following languages: Python, Golang

• Required – background in penetration testing, honeypot implementations, intrusion detection, exploits

• Required - experience and expertise in Continuous Integration / Continuous Deployment practise, tooling, and techniques, particularly evidence of leading organisational and cultural change to adopt CI/CD practises (Jira, Confluence, Bitbucket, git; Jenkins, Artifactory, Terraform, Packer, Rundeck, Ansible, AWS, OpenShift, Splunk, ELK, AppDynamics)

• Required – experience with at least one type of infrastructure as code product (Terraform, Cloud Formation, Bosh)

• Strongly advantageous - experience of using Splunk as an intrusion detection system, ability to write searches

• Strongly advantageous - experience and demonstrable accomplishments as an automation engineer in the security sector

• Strongly advantageous – experience and demonstrable achievements in collaborative working with compliance, technology risk and regulatory requirement specialists to design requirements of control frameworks to meet these multi-disciplinary requirements, then successfully implementing solutions that meet these requirements

• Advantageous - extensive experience and demonstrable accomplishments in selecting, designing, and implementing automation and compliance frameworks that are applied to virtual compute resource deployments in the cloud

• A degree in Information Technology, Computer Science or related field is highly desirable. Some employers may require additional advanced security qualifications such as SABSA (Sherwood Applied Business Security Architecture) or CISSP (Certified Information Systems Security Professional) certifications. (like CCSP, SSCP, CISSP preferred). Specialized cloud specific certification like Certified Cloud Associate/Professional/Security Architect, CSA Star certification preferred

• Solid understanding of security protocols, cryptography, authentication, authorization and security Assess, design, implement and document security solutions and process leveraging on cloud technology (XaaS) Design architecture, methods and controls required to meet security, compliance and audit requirements

• Deploy security and automation solutions in cloud environment. In-depth knowledge in XaaS technology, container technology, VPC, security group and ACL Design and implement security monitoring for cloud infrastructure and application

• Develop procedures to automate security tasks for code build and deployment

• Conduct security threat risk assessment on system hosted in the cloud

• Hands-on experience in designing, building, deploying and securing of highly available web application in cloud platform (AWS, Azure and Google Cloud)

• Proficient in programming with Java, Nodejs, JavaScript, CLI, Bash and Python

• Experience in administering, configuring and hardening of operating system (Windows, RHEL) Experience in configuration management tools (Ansible, Chef and Puppet) and automation tools (Jenkins)Experience in securing container technology including Dockers and Kubernetes

• Knowledge of technical security control environments and compliance frameworks including CSA CCM, ISO 27017 and NIST 800-53

• Experience in Devops environments and maintaining security in CI/CD processes

• Experience with broad range of security technologies including SAST, DLP, IPS, IAM, PIM, certificate management

• Good understanding of recognized independent audit reports e.g. SOC2 reports

• Strong knowledge in network and application security, infrastructure hardening, security baseline, web/application/database security

• Develops standards, policies and procedures as well as best practices documentation.

• Participate in efforts that tailor the company’s security policies and standards for use in cloud environments

• Translate security and technical requirements into business requirements and communicate security risks to different audiences ranging from business leaders to engineers.

• Propose and/or design technical solutions, which include creating prototypes and proofs of concept while maintaining a security mindset

• Lead and influence multi-disciplinary teams in implementing and operating Cyber Security controls.

• Work closely with application developers and database administrators to deliver creative solutions to complex technology challenges and business requirements.

• Provides Info security architecture & systems engineering consulting to other IT and business teams.

• Automate security controls, data and processes to provide better metrics and operational support

• Utilize cloud-based APIs when appropriate to write network/system level tools for securing cloud environments

• Stay current on emerging security threats, vulnerabilities and controls.

• Identify and Implement new security technologies and best practices into Cloud security

• Evaluates new technologies against established requirements and validate the security of the technology.

• Create technical and managerial level reports and risk assessments for Cloud based applications and infrastructure

• Identify processes/procedures for how to handle a cloud security event, including forensic isolation and mitigation with Digital Forensics and Incident Response (DFIR/IR) teams

• Supports the monitoring and maintaining network security suite of tools.

• Identify new security threats by conducting continual monitoring, penetration testing, vulnerability assessments and log analysis. Must have experience with virtualization (cloud or

• non-cloud). Expert knowledge of Cloud infrastructure, security architectures, and standards with deep technical knowledge of Amazon Web Services, and FedRAMP

• Able to automate/script daily tasks through Python, Bash or equivalent

Interested candidates can do apply with their below basic details and updated CV to ""

• Total Years of Experience :

• Relevant Years of Experience :

• Looking for long term of Contract:

• Singapore Citizen (Yes/No) :

• If No, Nationality & Visa Status :

• Current Salary :

• Expected Salary :

• Notice Period :

• Reason for Job Change :


About Us:

Cognizant is a global leader in business and technology services that helps Clients bring the future of work to life – today – in a business environment that is being transformed by accelerating globalization, virtualization, and the shift toward cloud technologies.

We continuously seek the “best and the brightest” when we recruit new employees, and we’re consistently an “employer of choice” at leading engineering and business schools around the world. Our domain industry specialists have well-established backgrounds working with companies in the industries we serve.

Our teams and their talent are a principle reason that we consistently outperform the competition.