AVP/VP, Cloud Security Engineer (contract)

GIC Private Limited
Singapore, Singapore
28 Feb 2023
30 Mar 2023
Job Function
Industry Sector
Finance - General
Employment Type
Full Time
GIC is one of the world's largest sovereign wealth funds. With over 2,000 employees across 11 locations around the world, we invest in more than 40 countries globally across asset classes and businesses. Working at GIC gives you exposure to an extraordinary network of the world's industry leaders. As a leading global long-term investor, we Work at the Point of Impact for Singapore's financial future, and the communities we invest in worldwide.

Technology Group
We experiment, design, and lead a 24×7 global business where we support core capabilities in asset management, trading, investment operations, and risk management. We deliver secure, reliable, and integrated solutions, and provide insights on new, and emerging technologies.

Cyber Security, Information & Technology Risk Management
You will be a part of an independent risk management function to protect the firm's information technology assets, including business data, from external threats and operational risks, and to facilitate the firm's digitalisation journey in a secure manner.

What Impact can you make in this role?
You will be empowered to be at the top of your game by providing strategic partnership, and innovative technology solutions that supports GIC's vision of being a tech-driven, global, long-term investment firm.

We are looking for an AVP/VP, Cloud Security Engineer on a 2 year contract.

What will you do as a Cybersecurity Engineer:
  • Configuration of security tools on the cloud platform, including but not limited to tools such as AWS CloudWatch, CloudTrail, Config, GuardDuty, Security Hub, Security Hub Automated Response and Remediation (SHARR)
  • Tuning of the alerts generated by the security tools and working with the Security Operations Center (SOC) team to ensure that the alerts are properly triaged
  • Creation of customised rules to detect for any non-compliance to the security baseline. These customised rules can be built on tools such as AWS Config and SHARR
  • Implement automatic remediation to fix non-compliance to the security baseline, at the same time ensuring the remediation work do not affect the system functionality
  • Provide security advisory and consultancy services to application teams who wish to onboard to the cloud platform
  • Security review and testing of new cloud services to be used on the cloud platform, as well as to incorporate the requirements into the security baseline
  • Propose and implement security enhancements to the cloud platform, by reviewing the existing configuration and implementing new tools, such as Cloud Security Posture Management (CSPM) and Cloud Workload Protection Platform (CWPP) tools
  • Write AWS Lambda functions using Python Boto3 for automation work
  • Develop integrated security operating models and documentations to ensure operational efficiency, scalability, and sustainability
  • Act as a domain expert and trusted partner in CSITR; work closely with stakeholders in other groups on cybersecurity engineering related matters

What qualifications or skills should you possess in this role?
  • Bachelor's Degree in Information Technology, Computer Engineering or equivalent
  • Subject-matter expertise across all AWS (preferred) and/or Azure and/or Google Cloud Platform (GCP) services
  • Hands-on experience in AWS (preferred) and/or Azure and/or GCP including technical design, configuration and implementation
  • Hands-on experience in Infrastructure as Code (IaC) tools such as AWS CloudFormation, Terraform, etc. and familiar with IaC security best practices
  • Hands-on experience with Identity and Access Management (IAM) configuration and familiar with IAM best practices
  • Hands-on experience writing AWS Lambda functions using Python Boto3
  • Familiar with the AWS (preferred) and/or Azure and/or GCP range of services
  • Professional qualification in information security, such as CISSP / CISM will be advantageous
  • Preferably have the following certifications or equivalent: AWS Certified Solutions Architect and AWS Certified Security Specialty
  • Must be able to work independently or with a team, under minimum supervision

Work at the Point of Impact
We need to be forward-looking to attract the right people to help us become the Leading Global Long-term Investor. Join our ambitious, agile, and diverse teams - be empowered to push boundaries and pursue innovative ideas, share your views, and be heard. Be anchored on our PRIME Values: Prudence, Respect, Integrity, Merit and Excellence, which guides us in how we make our day-to-day decisions. We strive to inspire. To make an impact.

GIC is a Great Place to Work
At GIC, we believe sustainable high performance is driven by high expectations and a commitment to excellence, as well as empowerment and flexibility. As such, we currently operate under a hybrid model in which most employees spend 3-4 days in office and 1-2 days working from home each week. This balance allows us to preserve the 'office as a hub' for ideation, professional growth, and interpersonal connection, while giving our employees the flexibility to do their best work and be their best selves.

We are an equal opportunity employer
As an employer, we passionately believe every individual brings with them unique diversity of thought and perspectives to meaningfully enrich perspectives of GIC teams to drive competitive performance. An inclusive environment yields exceptional contribution.

Learn more about our Technology Group here:
  • You need to sign in to save