Cloud Security Engineer

Help AG is looking for a experienced Cloud Security Engineer who will be working closely with governance, operations, and Help AG teams. The Cloud Security Engineer will be responsible for designing, implementing, and maintaining security controls across multi-cloud and hybrid environments with a strong focus on Microsoft Azure and Microsoft 365.

Responsibilities

• Architect and implement secure cloud solutions for Azure, AWS, and Microsoft 365 environments.

• Define and enforce identity and access management (IAM) policies, conditional access, and Zero Trust security models.

• Manage and optimize SIEM/SOAR platforms such as Microsoft Sentinel, Splunk, or ArcSight.

• Develop and maintain use cases, detection rules, dashboards, and automation playbooks in Sentinel.

• Investigate and respond to security incidents, working closely with SOC and IR teams.

• Administer and manage Microsoft Defender ATP, Intune, Azure Security Center, and Azure Information Protection.

• Monitor cloud environments for threats, vulnerabilities, and misconfigurations.

• Deploy and maintain endpoint detection, firewalls, proxies, and DLP solutions across hybrid environments.

• Conduct cloud risk assessments, security audits, and compliance reviews against frameworks like NIST, CIS Benchmarks, and MITRE ATT&CK.

• Provide recommendations and remediation steps for improving the organization’s cloud security posture.

• Work with IT, SOC, DevOps, and compliance teams to ensure secure deployment pipelines and governance alignment.

• Stay updated on evolving cloud security threats, attack techniques, and emerging technologies.

• Prepare detailed technical documentation, reports, and SOPs

Qualifications & Skills

• Bachelor’s degree in computer science, Cybersecurity, Information Systems, or a related field.

• 7+ years of hands-on experience in Cloud Security Engineering.

• Proven expertise in Microsoft Azure Security and Microsoft 365 Security.

• Exposure to AWS Security; familiarity with GCP security tools is an advantage.

• Strong experience with Microsoft Sentinel

• Log ingestion, content creation, KQL queries, playbooks, connectors, automation.

• Expertise in Microsoft Defender suite:

• Defender for Endpoint, Identity, Cloud Apps, Defender for Cloud.

• Hands-on experience with: o Azure Security Center, Azure Information Protection, Microsoft Intune.

  o Azure Key Vault and secrets management.

  o Strong knowledge of Azure infrastructure security:

  o VNets, NSGs, firewalls, Application Gateway, WAF.

  o Proficient in Entra ID (Azure AD), IAM, and Conditional Access.

  o Experience with cloud security posture management (CSPM) tools such as Prisma Cloud.

  o Exposure to AWS security services and Kubernetes security.

  o Experience conducting cloud security assessments, governance, and incident response.

  o Understanding of CI/CD security in DevOps and DevSecOps environments.

  o Exposure to Akamai security solutions is a plus.

• Strong knowledge of: o Networking, firewalls, IDS/IPS, and endpoint protection.

• Skilled in scripting and automation using:

  o PowerShell, Python, Bash, and Terraform.

• Experience with Infrastructure as Code (IaC) for automating cloud security configurations.

• Familiarity with major compliance frameworks:

  o ISO 27001, NIST CSF, GDPR, and related cloud governance standards.

  o Excellent problem-solving and troubleshooting skills.

• Strong client-facing communication and technical documentation abilities.

• Ability to work effectively under pressure in dynamic environments.

• Preferred Certifications:

  o Microsoft AZ-500 – Azure Security Engineer

  o Microsoft SC-200 – Security Operations Analyst

  o CISSP, CISM, CEH, or GIAC (preferred)

Benefits

• Health insurance with one of the leading global providers for medical insurance.

• Career progression and growth through challenging projects and work.

• Employee engagement and wellness campaigns activities throughout the year.

• Excellent learning and development opportunities.

• Annual flight tickets to home country.

• Inclusive and diverse working environment.

• Flexible/Hybrid working environment.

• Open door policy.

About Us

Help AG is the cybersecurity arm of e& enterprise (formerly Etisalat Digital) and provides leading enterprise businesses across the Middle East with strategic consultancy combined with tailored information security solutions and services that address their diverse requirements, enabling them to evolve securely with a competitive edge.

Present in the Middle East since 2004, Help AG was strategically acquired by e& (formerly Etisalat Group) in 2020, hence creating a cybersecurity and digital transformation powerhouse in the region.

Help AG has firmly established itself as the region's trusted IT security advisor by remaining vendor-agnostic, trustworthy, independent, and maintaining its focus on all aspects of cybersecurity.

With best of breed technologies from industry-leading vendor partners, expertly qualified service delivery teams and a state-of-the-art consulting practice, Help AG delivers unmatched value to its customers by strengthening their cyber defenses and safeguarding their business.