Cloud Engineer

  • Full-time
  • Department: Others

Company Description

NCS is a leading AI Tech Services company. With a 15,000-strong team across the Asia Pacific, NCS scales its platforms and capabilities to provide clients with greater agility and AI expertise across a range of Industries. Embracing a strong ecosystem of global partners, NCS transforms technology services delivery combining AI with digital resilience to drive real business impact. NCS is a subsidiary of the Singtel Group.

Job Description

Cloud Infrastructure & Security Operations

  • Deploy, configure, and maintain cloud native security services across AWS and Azure (e.g., AWS Security Hub, GuardDuty, Inspector, Macie; Azure Defender for Cloud, Microsoft Sentinel)
  • Monitor cloud environments for misconfigurations, vulnerabilities, and anomalous activity; triage and remediate L2-level findings
  • Enforce least-privilege IAM policies across AWS (IAM roles, SCPs) and Azure (RBAC, PIM, Conditional Access)

Cloud Native Cyber Tool Management

  • Operate and tune CSPM (Cloud Security Posture Management) tools such as Prisma Cloud, Wiz, or Defender for Cloud
  • Support SIEM integration pipelines — ingesting cloud logs (CloudTrail, Azure Monitor, VPC Flow Logs) into Sentinel or Splunk and writing detection rules/KQL queries

Incident Response & Compliance Support

  • Participate in cloud security incident response — investigation, containment, and post-incident documentation
  • Support audit and compliance activities against frameworks including CIS Benchmarks (AWS & Azure) and IM8
  • Run regular vulnerability assessments and coordinate remediation tracking with engineering teams

Qualifications

  • 3–5 years of experience in cloud engineering or cloud security roles
  • Hands-on production experience with both AWS and Azure (not just one)
  • Demonstrated experience operating cloud native security tools in a live environment
  • Familiar with Singapore Government Cloud (GCC/GCC+)
  • AWS: EC2, VPC, IAM, S3, CloudTrail, GuardDuty, Security Hub, KMS, Secrets Manager
  • Azure:  VNet/NSG/UDR, Defender for Cloud, Microsoft Sentinel, Key Vault,IAM, RBAC
  • Scripting:  KQL for Sentinel queries, IOC Hash Scanning
  • Networking: Solid understanding of cloud networking concepts — routing, DNS, TLS, zero-trust architecture – Optional
  • Crowdstrike – Onboarding of VM
  • AWS Certified Security – Specialty or AWS Certified Solutions Architect – Associate
  • Microsoft Certified: Azure Security Engineer Associate (AZ-500) or Azure Administrator (AZ-104)

Additional Information

We are driven by our AEIOU beliefs—Adventure, Excellence, Integrity, Ownership, and Unity—and we seek individuals who embody these values in both their professional and personal lives. We are committed to our Impact: Valuing our clients, Growing our people, and Creating our future.

 

Together, we make the extraordinary happen.

 

Learn more about us at ncs.co and visit our LinkedIn career site.

 

Scam Alert

 

We are aware of fraudulent job offers and impersonations of NCS recruiters. Phishing emails using convincing-looking but fake addresses are also commonly used to trick you into thinking that they come from official NCS sources.

 

Please note that all official communications from NCS Group will only be sent from verified corporate email addresses. Always check that the sender’s email address ends with the genuine NCS domain, @ncs.com.sg and beware of extra letters, symbols or misspellings. When in doubt, verify the sender’s identity by contacting us at [email protected].

By clicking the link above or any third-party link within this posting, you are leaving this site and going to a third-party website where the third-party website's terms and privacy policy apply

Privacy Notice