Responsibilities
1. Design, implement and oversee cloud security architecture, including physical hardware security, operating system security, cloud native application security, data security and privacy protection, internal threat governance and generative AI security 2. Develop and enforce cloud security policies, standards and processes in accordance with industry regulations and best practices 3. Conduct security risk assessments, security training and vulnerability assessments to proactively identify and address security risks 4. Work with cross-functional teams to integrate security controls into cloud products and underlying infrastructure 5. Keep up to date with emerging cloud security trends, technologies and threats, and provide guidance on security strategies and solutions.
Qualifications
1. Familiar with the principles of common risks, attack and defense strategies understand how to systematically lead security architecture and governance 2. Familiar with cloud native and infrastructure technologies such as network access, LLM, big data, storage, cloud computing, microservices, zero trust, etc. 3. Familiar with container security technologies (such as Docker, Kubernetes) and serverless security best practices 4. Proficient in at least one language among Golang, Python, Java or NodeJS, and able to conduct code audits/reviews and development 5. Familiar with common security frameworks and international security standards, such as: CIS Benchmarks, GDPR, HIPAA 6. Excellent communication and teamwork skills. Bonus points 1. Experience in discovering high-impact vulnerabilities/winning security competitions domestically or internationally 2. Priority will be given to those who have led or participated in security governance, architecture, and design projects 3. Have a deep understanding of cloud computing platforms (such as AWS, Azure, Google Cloud) and cloud security best practices.
