Cloud Security Engineer | Singapore
A fast-growing technology company is looking for a hands-on Cloud Security Engineer to own and evolve its cloud security posture across a primarily Microsoft Azure environment, with GCP in the mix. You will be the go-to security engineer, designing controls, building detection capabilities, and securing AI/ML workloads, while using automation and AI tooling to operate with high leverage.
What you'll do:
- Build and tune threat detection across multi-cloud infrastructure (Azure/GCP), covering containers, Kubernetes, IoT/OT, and AI/ML workloads
- Deploy and operate SIEM/SOAR platforms including AI-assisted detection, triage, and automated response playbooks
- Govern identity and access for human and non-human identities (service principals, workload identities, AI agents) using Microsoft Entra ID
- Secure AI/LLM systems against threats such as prompt injection, model exfiltration, and insecure agent permissions
- Collaborate with cloud infrastructure and platform teams to embed security across the SDLC
- Maintain and drive the security roadmap aligned to regulatory mandates and customer demands
What you'll bring:
- 5+ years of hands-on cloud security experience with deep Azure expertise (AZ-500 or SC-100 required or strongly preferred)
- Strong knowledge of IAM/federation protocols (SAML, OAuth 2.0, OIDC) and Microsoft Entra ID
- Hands-on experience with CSPM/CNAPP tooling (e.g. Microsoft Defender for Cloud)
- SIEM/SOAR experience including log onboarding and automation development
- Python scripting and AI-assisted tooling proficiency
- Working knowledge of AI/LLM security concepts , OWASP Top 10 for LLMs, MITRE ATLAS, or NIST AI RMF
- GCP Professional Cloud Security Engineer certification is a plus