LOCATION: HN/HCMC 

JOB DESCRIPTION 

We are seeking a Cloud Security & Compliance Engineer to join a fast-growing blockchain and digital asset platform in Singapore.
This role focuses on supporting cloud security in Azure, contributing to compliance (SOC 2, MAS TRM), and helping secure backend systems and services.
You will support security operations, audit readiness, and the development of scalable, secure infrastructure in a regulated environment.

1. Cloud Security & Hardening

• Assist in implementing and maintaining security controls across Azure cloud infrastructure
• Support infrastructure and application hardening aligned with best practices
• Contribute to securing backend systems, APIs, and related services
• Support IAM, network security, and endpoint protection tasks

2. Monitoring, Logging & Incident Response

• Support configuration and operation of SIEM / centralized logging systems
• Monitor logs, alerts, and security events; assist in investigating incidents
• Contribute to dashboards and alerting for threat detection
• Support incident response and post-incident analysis

3. Compliance & Audit Readiness

• Support SOC 2, MAS TRM, and internal audit requirements
• Collect, organise, and maintain audit evidence and documentation
• Implement and monitor internal controls across systems and processes
• Work closely with auditors and internal stakeholders to ensure compliance

4. Endpoint & Device Security

• Manage endpoint security using Microsoft Intune
• Enforce device compliance policies and secure configurations
• Monitor endpoint health and respond to security risks

5. Documentation & Process Improvement

• Develop and maintain security policies, procedures, and runbooks
• Document system configurations, audit trails, and compliance controls
• Continuously improve security posture and operational processes

REQUIRED SKILLS AND EXPERIENCE 

• 2+ years of experience in DevSecOps, Cloud Security, or related roles.
• Basic understanding of cloud security (Azure preferred)
• Experience with log analysis and incident investigation
• Familiarity with endpoint security (e.g., Microsoft Defender, Intune)
• Understanding of networking and system security fundamentals
• Strong problem-solving and communication skills
• Willingness to learn SIEM tools and compliance frameworks

NICE TO HAVE

• Experience with SIEM tools (Sentinel, Splunk, ELK)
• Exposure to compliance frameworks (SOC 2, MAS TRM)
• Hands-on experience with Azure security services
• Experience with Terraform / Infrastructure as Code (IaC)
• Knowledge of blockchain / digital assets
• Azure certifications (AZ-500, SC-200, SC-300)

BENEFITS 

• Salary: Negotiation (UP TO 40M)
• Probation salary is 100% of official salary
• 13th-month salary and performance review twice a year 
• Bonus for special occasions each year (Labor Day, National Day, Solar New year, Lunar New Year) 
• Employee’s professional certification and training allowances subject to company regulations 
• Health Care Insurance
• Annual Health Assessment 
• Social, health and unemployment Insurance following Government policy 
• Enjoy company summer trips and other team building activities held monthly and quarterly 
• Work five days per week with flexible working time 
• Professional, creative and dynamic working environment  

CONTACT

• Send CV to: tuyendung@gem-corp.tech
• Hotline: +842466666100 (Recruitment Team)
• Facebook GEM Careers: https://www.facebook.com/tuyendungGEM
• Linkedin GEM Careers: https://www.linkedin.com/company/gem-careers-hiring/