Cloud Security Manager

Responsibilities

• Cloud Security Governance & Strategy - Develop and maintain AWS cloud security policies, standards, and frameworks; lead security strategy aligned with business and regulatory requirements; enforce AWS Well-Architected, CIS, and Zero Trust principles.
• Cloud Security Architecture & Engineering - Design, review, and approve secure AWS architectures; guide secure cloud-native implementations; govern IAM (RBAC, least privilege, automated remediation); oversee network security controls including WAF, Shield, and service mesh.
• Compliance, Risk Management & Audit Assurance - Ensure compliance with regulatory and internal requirements (SOC 2, GDPR, MAS TRM, PDPA); conduct cloud risk assessments and threat modeling; coordinate penetration testing; prepare documentation and evidence for audits.
• Data Protection & Cloud Security Controls - Ensure effective protection of sensitive data through encryption, access governance, classification, and DLP controls; manage cloud data exposure risks and ensure secure storage and handling of information across AWS services.
• Leadership, Collaboration & Security Culture - Serve as AWS cloud security SME; collaborate with Cloud, DevOps, Network, and Cybersecurity teams to embed security-by-design; mentor teams and promote a strong security culture through training and stakeholder engagement
• Team Scope/ Stakeholders:
• Business & Operational Stakeholders: The candidate will engage with business units to understand operational requirements, communicate potential risks, and ensure security systems support business continuity, performance, and compliance needs.
• Minimum Profile/ Track Record:
• Bachelor's degree in Computer Science, Information Security, Engineering, or a related field; Master's degree is a plus.
• 5-10 years of cybersecurity experience, with at least 3+ years focused on AWS cloud security and cloud security architecture.
• Strong expertise in AWS security services (e.g., IAM, Security Hub, GuardDuty, CloudTrail, Config, Macie, KMS, WAF, Shield).
• Hands-on experience in cloud security architecture, DevSecOps, and infrastructure-as-code (Terraform, CloudFormation).
• Proven ability to implement IAM governance, least privilege, encry

Additional Information

Accountabilities: Cloud Security Governance & Policy - Establish, maintain, and enforce cloud security policies, standards, and governance frameworks to ensure secure cloud adoption across the organization. Secure Cloud Architecture & Design Assurance - Review and approve cloud solution designs, ensuring secure-by-design principles, threat modeling, and compliance with best practices and reference architectures. Identity & Access Management (IAM) Control - Own and govern cloud IAM strategy, enforcing least privilege, strong authentication, privileged access control, and periodic access reviews. Cloud Security Operations & Monitoring - Oversee continuous monitoring of cloud environments, ensuring timely detection and remediation of misconfigurations, vulnerabilities, and security threats. Compliance, Audit & Risk Management - Ensure cloud environments meet regulatory, legal, and internal compliance requirements; manage risk assessments, audits, and cloud security reporting. Incident Response & Forensics - Lead cloud security incident response, including investigation, containment, recovery, and root cause analysis for cloud-related security events. Leadership, Stakeholder Engagement & Continuous Improvement - Provide cloud security expertise to stakeholders, lead security teams, manage security tools/vendors, and drive cloud security capability enhancemen ts.

Your Match

How well this role fits your profile.

Company Intel

What employees say

Worked at Cygnify? Share your experience