Senior Cloud & Container Security Engineer
Ad Astra Consultants
Job Description
Role Overview: We are hiring a Senior Cloud & Container Security Engineer to lead the design and governance of secure cloud-native platforms. This role is critical in supporting Singapore’s rapidly growing digital economy, where cybersecurity is now a core business function rather than a support role. The ideal candidate will bring deep expertise in cloud security, Kubernetes, and DevSecOps, with the ability to operate at both hands-on engineering and strategic architecture levels.
Key ResponsibilitiesCloud & Platform Security LeadershipArchitect and secure multi-cloud environments (AWS, Azure, GCP) aligned with enterprise and regulatory requirementsLead Kubernetes and container security strategy (runtime, network policies, workload protection)Define cloud security standards across the organization
DevSecOps & AutomationEmbed security into CI/CD pipelines (SAST, DAST, container/image scanning)Drive Infrastructure-as-Code (IaC) security using Terraform and policy-as-code (OPA, Sentinel)Automate compliance and remediation processes
Regulatory & Compliance (Singapore-Focused)Ensure compliance with:MAS TRM (for financial services)PDPA (Personal Data Protection Act)ISO 27001, NIST, CIS BenchmarksSupport audits, risk assessments, and governance reporting
Threat & Risk ManagementConduct threat modeling for cloud-native applicationsLead incident response for cloud and container environmentsImplement monitoring using SIEM/SOAR tools
Identity & Zero TrustDesign and enforce IAM, RBAC, and Zero Trust architecturesSecure secrets management using Vault, KMS, or equivalent
Stakeholder LeadershipCollaborate with DevOps, engineering, compliance, and business teamsAct as a subject matter expert (SME) for cloud security across the organizationMentor junior engineers and drive security best practices
Required Qualifications12+ years in cybersecurity / infrastructure security5–8+ years specifically in cloud and container security (high-demand niche)Strong expertise in Kubernetes security (network policies, runtime, admission controls)Hands-on experience with AWS / Azure / GCP (multi-cloud preferred)Experience implementing DevSecOps pipelinesProficiency in scripting (Python, Bash, or Go)
Preferred Qualifications (Highly Valued in Singapore Market)Certifications:CISSP / CCSP (widely expected for senior roles)AWS Security Specialty / Azure Security EngineerCKS (Kubernetes Security Specialist)Experience in banking, fintech, or regulated industries (high salary premium)Exposure to AI/ML security or API security (emerging demand areas)Experience with cloud-native security tools (Prisma Cloud, Wiz, Aqua, etc.)