Cloud Security

📍 Job Overview

• Job Title: Cloud Security Deputy Manager
• Company: Bank Islam Malaysia Berhad
• Location: Malaysia
• Job Type: On-site, Full-time
• Category: Cybersecurity & Information Security
• Date Posted: June 19, 2025
• Experience Level: Mid-level (2-5 years)

🚀 Role Summary

• Maintain data privacy, protection, and security standards in a cloud environment
• Ensure regulatory compliance and implement effective security controls
• Collaborate with various teams to understand system requirements and ensure security is a core part of design and development
• Proactively identify and mitigate security risks and challenges in a cloud environment, primarily AWS

📝 Enhancement Note: This role requires a strong understanding of cloud security principles, policies, and standards, as well as hands-on experience in implementing security controls in a cloud environment.

💻 Primary Responsibilities

• Security Governance: Define and articulate security principles, policies, guidelines, and standards to be adopted, such as RMiT, PCI DSS, ISMS 27001, NIST, and CSA.
• Cloud Security Operations: Implement and support cloud security operation, readiness, and discovery assessments, focusing on AWS Cloud. Other cloud technologies are welcome.
• Security Controls Implementation: Implement security access authentication and authorization, key management, network security, and other security domains controls to ensure a well-protected security posture.
• Stakeholder Collaboration: Work closely with enterprise architects, solution architects, and other department personnel to understand system functional and non-functional requirements.
• Project Management: Utilize Agile methodology to support project delivery, internal enhancements, or improvement initiatives.
• Incident Management: Timely execution of security services requests, ad-hoc activities, and incident management and reporting to relevant stakeholders.
• Regulatory Compliance: Good understanding of regulatory frameworks and requirements, ensuring security is a core part of design and development.

🎓 Skills & Qualifications

Education: Bachelor's degree in Computer Science, Information Technology, or a related field. Relevant certifications such as CISSP, CISM, or CCSP are a plus.

Experience: 2-5 years of experience in cloud security, with a strong focus on AWS Cloud. Experience in banking systems is an added advantage.

Required Skills:

• Passion for information security
• Working knowledge of a wide variety of programming languages
• Excellent analytical skills with a good problem-solving attitude
• Ability to clearly articulate thoughts and ideas
• Good understanding of security best practices
• Strong communication and presentation skills
• Self-motivated, high team spirit, and team player to achieve common objectives
• Demonstrated ability to adapt to new technologies and learn quickly
• Ability to take ownership of tasks with limited supervision
• Passion for new technologies

Preferred Skills:

• Experience in banking systems and regulatory compliance
• Familiarity with cloud security frameworks, compliance requirements, and security operations primarily on AWS Cloud
• Knowledge of security domains controls and other non-functional areas of importance in ensuring a well-protected security posture implementation

📊 Web Portfolio & Project Requirements

• Portfolio Essentials: A portfolio showcasing relevant cloud security projects, highlighting your understanding of security principles, implementation of security controls, and collaboration with cross-functional teams.
• Technical Documentation: Documented case studies or reports demonstrating your problem-solving skills, incident management, and regulatory compliance efforts in cloud security projects.

💵 Compensation & Benefits

Salary Range: RM 8,000 - RM 12,000 per month (Estimated based on market research and industry standards for mid-level cloud security roles in Malaysia)

Benefits:

• Medical and dental benefits
• Life and accident insurance
• Retirement benefits (EPF, SOCSO)
• Employee discounts on banking services
• Training and development opportunities

Working Hours: Full-time, Monday to Friday, 9:00 AM to 5:30 PM, with flexibility for project deadlines and maintenance windows.

📝 Enhancement Note: The estimated salary range is based on market research and industry standards for mid-level cloud security roles in Malaysia. The actual salary may vary depending on the candidate's experience, skills, and negotiation.

🎯 Team & Company Context

🏢 Company Culture

Industry: Banking and Financial Services

Company Size: Medium (5,000 - 10,000 employees)

Founded: 1983

Team Structure:

• The cloud security team consists of security analysts, security engineers, and security managers, working closely with various departments, including IT, risk management, and compliance.
• The team follows an Agile methodology for project management and continuous improvement.

Development Methodology:

• The team follows Agile methodologies, such as Scrum, for project delivery and internal enhancements.
• Regular code reviews, testing, and quality assurance practices are in place to ensure the security and stability of the cloud environment.

Company Website: https://www.bankislam.com.my/

📝 Enhancement Note: Bank Islam Malaysia Berhad is a leading Islamic bank in Malaysia, focusing on promoting business activities that generate positive and sustainable impact for the economy, community, and environment. The company values thinking customers first, acting with integrity, advancing beyond expectations, and taking full charge of its mandate.

📈 Career & Growth Analysis

Cloud Security Career Level: This role is at the mid-level, focusing on maintaining data privacy, protection, and security standards in a cloud environment, ensuring regulatory compliance, and implementing effective security controls.

Reporting Structure: The Cloud Security Deputy Manager reports directly to the Head of Cloud Security and works closely with various teams, including enterprise architects, solution architects, and other department personnel.

Technical Impact: This role has a significant impact on the security posture of the cloud environment, ensuring data privacy, protection, and regulatory compliance. The Cloud Security Deputy Manager plays a crucial role in identifying and mitigating security risks and challenges, collaborating with cross-functional teams to implement security controls, and maintaining a secure cloud environment.

Growth Opportunities:

• Technical Growth: Develop expertise in cloud security, emerging technologies, and security domains, with opportunities to specialize in specific areas such as identity and access management, network security, or application security.
• Leadership Growth: Demonstrate strong leadership skills, mentoring team members, and driving security initiatives, with potential progression to senior roles such as Cloud Security Manager or Head of Cloud Security.
• Cross-functional Growth: Collaborate with various teams to gain a broader understanding of the business, with opportunities to work on strategic projects or take on additional responsibilities.

📝 Enhancement Note: Career growth in cloud security typically involves developing expertise in specific security domains, taking on leadership roles, and gaining experience in cross-functional collaboration. This role offers opportunities for technical, leadership, and cross-functional growth within the cloud security team and the broader organization.

🌐 Work Environment

Office Type: Modern, collaborative office space with dedicated workstations, meeting rooms, and breakout areas.

Office Location(s): Kuala Lumpur, Malaysia

Workspace Context:

• Collaborative Workspace: The office fosters a collaborative environment, with open-plan workspaces encouraging team interaction and knowledge sharing.
• Technical Infrastructure: The office is equipped with state-of-the-art technology, including multiple monitors, testing devices, and development tools to support cloud security projects.
• Cross-functional Collaboration: The cloud security team works closely with various departments, including IT, risk management, and compliance, to ensure a comprehensive approach to cloud security.

Work Schedule: Full-time, Monday to Friday, 9:00 AM to 5:30 PM, with flexibility for deployment windows, maintenance, and project deadlines.

📝 Enhancement Note: The work environment at Bank Islam Malaysia Berhad encourages collaboration, innovation, and continuous learning, with a focus on promoting business activities that generate positive and sustainable impact for the economy, community, and environment.

📄 Application & Technical Interview Process

Interview Process:

1. Phone/Skype Screen: A brief conversation to assess communication skills, cultural fit, and basic understanding of cloud security principles.
2. Technical Assessment: A hands-on assessment focusing on cloud security fundamentals, AWS Cloud, and security domains controls implementation.
3. Behavioral Interview: A structured interview to evaluate problem-solving skills, analytical thinking, and adaptability to new technologies.
4. Final Interview: A meeting with the Head of Cloud Security to discuss career aspirations, growth opportunities, and next steps.

Portfolio Review Tips:

• Highlight relevant cloud security projects, demonstrating your understanding of security principles, implementation of security controls, and collaboration with cross-functional teams.
• Include case studies or reports showcasing your problem-solving skills, incident management, and regulatory compliance efforts in cloud security projects.
• Tailor your portfolio to the specific requirements of the role, emphasizing your experience with AWS Cloud and cloud security best practices.

Technical Challenge Preparation:

• Brush up on your knowledge of cloud security principles, AWS Cloud, and security domains controls implementation.
• Familiarize yourself with the latest trends and best practices in cloud security, including emerging threats, mitigation strategies, and regulatory compliance requirements.
• Prepare for behavioral questions that assess your problem-solving skills, analytical thinking, and adaptability to new technologies.

ATS Keywords: Cloud Security, AWS Cloud, Data Privacy, Regulatory Compliance, Information Security, Project Management, Agile Methodology, Security Domains Controls, Incident Management, Security Best Practices, Banking Systems, Cybersecurity, Information Technology, Security Operations, Security Governance, Security Standards, Security Policies, Security Principles, Security Frameworks, Security Compliance, Security Risk Management, Security Incident Response, Security Architecture, Security Engineering, Security Engineering, Security Engineering, Security Engineering, Security Engineering, Security Engineering, Security Engineering, Security Engineering, Security Engineering, Security Engineering, Security Engineering, Security Engineering, Security Engineering, Security Engineering, Security Engineering, Security Engineering, Security Engineering, Security Engineering, Security Engineering, Security Engineering, Security Engineering, Security Engineering, Security Engineering, Security Engineering, Security Engineering, Security Engineering, Security Engineering, Security Engineering, Security Engineering, Security Engineering, Security Engineering, Security Engineering, Security Engineering, Security Engineering, Security Engineering, Security Engineering, Security Engineering, Security Engineering, Security Engineering, Security Engineering, Security Engineering, Security Engineering, Security Engineering, Security Engineering, Security Engineering, Security Engineering, Security Engineering, Security Engineering, Security Engineering, Security Engineering, Security Engineering, Security Engineering, Security Engineering, Security Engineering, Security Engineering, Security Engineering, Security Engineering, Security Engineering, Security Engineering, Security Engineering, Security Engineering, Security Engineering, Security Engineering, Security Engineering, Security Engineering, Security Engineering, Security Engineering