Senior Cyber Specialist

Do meaningful work with us. Every day.

At Amplify Health, we’re looking for individuals with ambition, resilience and passion for healthcare, insurance, wellness and digital technology. As a fast-growing business with the ambition of making people and communities across Asia healthier, we have exciting career opportunities available to help us achieve our vision.

As the Infrastructure and Data Protection Lead, you will play a critical role in safeguarding our organization’s technology stack and ensuring a secure operating environment. This role involves developing, implementing, and managing comprehensive strategies to secure platforms, applications, networks, and data. Your primary role will be in setting the standards, and design patterns for the following areas of security, and working with our platform team to ensure the correct implementation and ongoing compliance with these standards.

Who We Are

Amplify Health Asia Pte. Limited (Amplify Health) is a leading health technology and analytics organisation, providing our customers with integrated solutions to improve outcomes for individuals and the sustainability of health systems.

We aim to be a trusted custodian of Asia's largest repository of health data, unifying financial, clinical, operational and behavioral data to empower our customers with insights that highlight opportunities to deliver better value and care outcomes.

We’ve set a bold vision

The vision for Amplify Health is to be a leading digital health technology and integrated solutions business.

Our Culture and Values

At Amplify Health, we believe in fostering a culture that embodies the spirit of Courageous Entrepreneurs. We are passionate and innovative individuals who continuously strive to push boundaries and think outside the box. We understand that calculated risks are essential for driving progress, and we view failures as valuable opportunities to learn and grow.

As Outstanding People, collaboration, learning, and growth are at the core of our values. We trust and rely on each other, working together as a unified team to achieve our goals. When success comes our way, we celebrate it as a collective achievement, and we are committed to improving and excelling together.

We firmly believe in the mantra of Discuss, Decide, Do. Listening is fundamental in our decision-making process, and we act promptly, ensuring accountability in everything we do. Simplicity is the key to our efficiency, and we get things done quickly and effectively while being guided by facts and understanding.

At the heart of our pursuits lies a Lasting Impact. We prioritize the needs of our customers, and we are crystal clear about the problems we are solving for them. Progress is our north star, and while we strive for excellence, we acknowledge that perfection is a journey, and we remain focused on delivering excellent products that make a tangible difference.

If you are a passionate and innovative individual who thrives in a collaborative environment, where courage is celebrated, and customer focus is paramount, we invite you to join our team. Together, we will shape the future with our unwavering commitment to excellence and the determination to make a lasting impact in the industry.

What You Will Do

Platform Security and Cloud Security

• Lead the security of our Azure cloud environment by setting standards, designs patterns and processes identity-based access controls, encryption, and monitoring tools to ensure compliance and security.
• Advise the platform team on the hardening of Kubernetes clusters, and in the implementation of runtime security measures.
• Collaborate with platform and DevOps teams to address platform-specific vulnerabilities and risks.
  
  

Application Security and DevSecOps

• Define and enforce security standards for internally developed and third-party applications.
• Govern and monitor the use of security tools like GitHub Advanced Security, CodeQL, and Trivy into our CI/CD pipelines to detect and remediate vulnerabilities early in the software development lifecycle.
• Promote secure coding practices through development of best practices, and developer training.
  
  

Vulnerability and Patch Management

• Deploy and maintain tools such as Microsoft Defender and Azure Update Manager, in collaboration with platform and IT teams, to regularly scan systems for vulnerabilities and apply patches promptly.
• Develop a formal process for managing CVEs, including triage, risk assessment, and remediation workflows.
  
  

Network Security

• Set and maintain standards for network security, including platform perimeter security and SSE.
• Review the implementation of Checkpoint NVAs for platform security and Cloudflare Zero Trust for endpoint security, ensuring minimal exposure to threats.
• Design and maintain secure connectivity models, including VPNs and secure access to cloud resources.
• Conduct periodic reviews of network configurations to detect and address potential risks.
  
  

PKI Lifecycle Management

• Administer the internal PKI using EZCA for private certificate issuance and renewal.
• Oversee public certificate procurement using Let’s Encrypt and third-party providers to maintain the security of public-facing services.
• Implement automation for certificate lifecycle management to reduce manual intervention and potential errors.
  
  

Security Architecture and Threat Modelling

• Establish and document security architecture based on the MITRE framework, ensuring alignment with business objectives.
• Introduce a threat modeling process to identify risks in applications and infrastructure, leveraging frameworks like STRIDE or OWASP.
• Provide recommendations to address identified threats during the design phase of new systems.
  
  

Secure Configuration Management

• Co-design and govern secure configuration baselines for cloud environments.
• Jointly implement Azure Policy to enforce secure configurations across resources, such as enabling encryption, restricting public access, and ensuring compliance with regulatory standards.
• Regularly review and update configurations to align with evolving security requirements and best practices.
  
  

Cloud Security Management

• Develop and execute strategies to protect workloads, data, and configurations within Azure cloud environments.
• Design and co-implement
• Implement monitoring and incident response capabilities for cloud-based threats.
  
  

What You Need To Be Successful

• Min 6-7 years of hands-on experience in cybersecurity roles, with a focus on cloud and platform security.
• In-depth expertise in Azure security, Kubernetes management, and modern cloud technologies.
• Proficiency with tools like Microsoft Defender, Azure Update Manager, and CI/CD pipelines.
• Familiarity in PowerShell and Bash scripting for automation and tool integration (Desired)
• Knowledge of ISO27001 and CCM compliance standards.
• Qualifications: Certifications such as CISSP or Azure Security Engineer Associate.
  
  

You must provide all requested information, including Personal Data, to be considered for this career opportunity. Failure to provide such information may influence the processing and outcome of your application. You are responsible for ensuring that the information you submit is accurate and up-to-date.

ABOUT AIA

For over a century, AIA has served the ever-changing needs of our customers across Asia-Pacific. Our Purpose to help millions of people live Healthier, Longer, Better Lives is at the heart of everything we do.

As pioneering innovators, we’re now transforming AIA to be faster, simpler and more connected to create better solutions and impactful experiences for our customers and communities. AIA encourages and enables our people to act with clarity, courage and humanity in service of our Purpose.

JOIN US

At AIA, we believe in empowering every one of our people to find their 'better' - in the work they do, the career they build, the life they live and the difference they make. Whether it’s investing better wellbeing, inspiring better learning, building better relationships, or making a better impact on customers, a career at AIA will challenge you to find new ways to pursue your ‘better’.

AIA is committed to building a vibrant, diverse, and inclusive workforce for all employees to thrive in. Join us if you believe in creating a better tomorrow!