-
View all jobs
Key Responsibilities:
- Provide security advisory and oversight for AWS cloud architectures, ensuring alignment with security-by-design and defense‑in‑depth principles.
- Define, implement, and enforce AWS cloud security standards, guardrails, and best practices across accounts, regions, and workloads.
- Conduct security architecture reviews for AWS‑based applications and infrastructure, including VPC design, IAM models, data protection, and network segmentation.
- Review and track remediation of cloud security findings.
- Ensure AWS environments comply with applicable regulatory and industry requirements (e.g. MAS TRM, NIST).
- Responsible for ensuring IT systems and applications within our organization meet the needs of the business while adhering to security best-practices, compliance and regulatory requirements.
- Collaborate with teams within and outside of Information Security to assess, monitor, and reduce security risk within the organisation.
- Manage project risks and issues, including risk identification, assessment, monitoring, remediation, and ensure escalation in project governance
- Experience in leading and implementing multiple security solutions and technologies across one or more IT Security domains (Cyber Program Management, Threat Intelligence, Identity & Access Management, Data Protection, Privacy). This experience should include responding to compliance and advisories from regulatory bodies.
- Ensure cybersecurity programs are structured and well-planned and budgeted
- Oversee CAPEX & OPEX budget for security services and projects and manage all reporting to Committees
- Work with IT Security Leads to manage changes in IT Security Roadmap and manage the change management for IT Security programs
- Manage IT Security incidents, mitigation planning, damage assessment and corrective measures.
- Review vulnerability assessment & penetration testing to assess the residual risks & mitigation plans.
- Responsible for ensuring identified cyber security issues are addressed in a timely manner.
- Raise cybersecurity knowledge and awareness within the organisation
Key Requirements:
- Minimally Bachelor's degree in computer science or equivalent
- Security industry certifications such as CISSP, CISA, CREST, CEH, SANS, GSEC, AWS Certified Security etc are preferred.
- Minimum 6-10 years’ experience working in a highly-regulated IT Security/CII environment; Including 5 years of threat intelligence, incident response and VAPT experience
Technical / Functional skills
- Good knowledge and hands-on experience in native-cloud services on Cloud Security
- Good understanding of TCP/IP protocol and OSI Seven Layer Model.
- Strong knowledge of security best practices and concepts.
- Analyzes & prepares recommendations relating to security for existing IT infrastructures / Applications.
- Expert understanding of firewall technologies.
- Advance knowledge & Hands-on experience in supporting and maintaining enterprise IT Security solutions and technologies such as Firewall, IDS/IPS and Proxy, etc
- Advance knowledge of Windows and/or Unix-based systems / architectures and related security.
- Advance knowledge of cryptography / cryptographic systems
- Advance level of knowledge of LAN / WAN technologies
- Knowledge of VPN technologies.
- Be able to articulate threats and risk to business and technology leaders.
Personal skills (Soft Competencies [Core/Leadership])
- Ability to plan, organize and prioritize tasks to complete within established time frames.
- Highly result oriented and can work independently.
- Ability to build relationships and interact effectively with internal and external parties.
- Strong analytical, technical, and communication (both oral and written) skills.
- Strong interest in the field of information security.
- Creative, independent with good problem solving skills.
- Ability to work effectively as a team
Key Skills
Ranked by relevance
cloud
aws
cloud security
cybersecurity
firewall
vulnerability assessment
penetration testing
incident response
cyber security
cissp
cisa
unix
vpn
ceh
wan
lan
Related Jobs
3 roles aligned with this opportunity
View Job Details
Related
Application Developer
2026-07-05
Full-time
Mid-Senior
Singapore
Banking
Information Technology
View Job Details
Related
DevOps Engineer — Terraform/HashiCorp Consul
2026-07-03
Contract
Mid-Senior
Singapore
Banking
Information Technology
View Job Details
Related
Engenheiro(a) de Software Júnior (.NET | AWS | Angular)
2026-07-02
Full-time
Not Applicable
Brazil
Banking
Engineering
Login to Apply
- Posted
- Jul 03, 2026
- Type
- Full-time
- Level
- Mid-Senior
- Location
- Singapore
- Company
- CIMB Singapore
Industries
Banking
Categories
Information Technology
Related Jobs
3 roles aligned with this opportunity
View Job Details
Related
Application Developer
2026-07-05
Full-time
Mid-Senior
Singapore
Banking
Information Technology
View Job Details
Related
DevOps Engineer — Terraform/HashiCorp Consul
2026-07-03
Contract
Mid-Senior
Singapore
Banking
Information Technology
View Job Details
Related
Engenheiro(a) de Software Júnior (.NET | AWS | Angular)
2026-07-02
Full-time
Not Applicable
Brazil
Banking
Engineering