The Cybersecurity and Data Privacy team reports directly under the office of the CISO headed by Chief Information Security Officer (CISO) Jason Lau () who has over 23+ years of experience in the cybersecurity space, awarded Global Top 100 CISO, and also serves on the World Economic Forum, International Association of Privacy Professionals and more. The team comprises of multiple functions from Blockchain Security, Operational Security, Security Governance and Compliance and more. We drive a culture of having a growth mindset and being humble to help everyone achieve their potential. Security and Data Privacy Compliance first strategy which has been at the core of our company. The security team helped to drive us to be the first Crypto company worldwide to achieve ISO27001, ISO27701, ISO22301 and PCI:DSS (Level 1) certifications. Extremely detailed third party attested by international audit firm SGS and achieved "Adaptive (Tier 4)" – the highest level possible for the US National Institute of Standards and Technology (NIST) Cybersecurity Framework and the latest NIST Privacy Framework as well as SOC2 and many other regional certifications like the Data Protection Trust Mark.About The Role The Identity Security Team at team protects our data and the privacy of our customers seriously. Prevents identity risk events through effective and proactive management of cyber security, privacy, and operational risk.The Identity and Access Management Services team is responsible for managing the Services and Controls that deliver stable and efficient Identity & Access services to , The IAM services and controls are key to the group as they provide the Right People are provided the Right Access to the Right Resources with the Right Audit trails.Technologies: Microsoft Azure (Entra ID), Okta, AWS, IaC (Terraform), and any other IAM technologies is plus.Responsibilities: Deliver control management, ensuring services are maturing and evolving along with the Business risks so that the organization is adequately defended against identified threats, risky access paths, and/or inappropriate access;Proactively manage risk, internal, and external audit obligations and responsibilities, in line with the group's operational risk management framework;Tracking open issues to ensure timely completion, and coordinate review, investigation, and remediation;Forge strong relationships with business stakeholders, project teams, and operational teams;Working with Service Managers and other key stakeholders across the Group to ensure that service design is fit for purpose to meet the control objectives;Requirements: 3-5 years of experience with cloud operations, any identity-related tooling platforms, and understanding of identity protocols. Previous experience in a risk-related role, with a deep understanding of IT security-related risks and audit processes;Degree in Computer Science or Engineering or Information Technology or similar discipline;Technical and Industry certification (AWS, Azure, CISSP);Strong understanding of Identity Cloud Infrastructure. Azure-Native and AWS Services;Experience with AWS and Azure Infrastructure as Code (IaC) methodologies;Experience in deploying in various cloud technologies (Azure, Google, Amazon);Strong understanding of Authentication and Authorisation Protocols;Good working knowledge of application, and infra-integration patterns;Scripting skills with PowerShell and/or Python is an advantage; Good working knowledge of security monitoring and logging tools;Proven track record and experience of project deliveries;Experience in organizational change management;Strong ability to collaborate with cross-functional teams and external partners;Excellent communication skills to interact effectively with stakeholders;Self-sufficient and have good time management skills;Demonstrate attention to detail with an analytical mindset;Proficient written communication skills in English;#Hybrid#LI-MK1
