Cloud Security Lead Consultant / Engineer

Role Purpose

Responsible for the end-to-end delivery of Cloud Security Managed Services (Scope A) and provides technical leadership and oversight for Vulnerability Management & Patching (Scope B) across enterprise environments. Leads posture assessments, architecture design, and implementation of security controls, ensuring full alignment with organizational and regulatory standards.

Key Responsibilities

• Conduct cloud-security posture assessments for AWS, Azure, Google Cloud, and Oracle environments.
• Design and implement secure cloud architectures aligned with NIST CSF, CIS Controls, and ISO 27001.
• Configure and maintain CSPM, IAM (RBAC, MFA, SSO), WAF, and encryption controls.
• Integrate SIEM/SOAR tools for 24 × 7 threat monitoring and incident response.
• Ensure ongoing compliance with PDPL, PCI DSS, ISO 27001, CBB, SAMA, and CBUAE or other applicable standards.
• Produce compliance mappings, dashboards, and KPI reports (MTTD, MTTR, audit success rate).
• Supervise and guide the Cloud Security Analyst in daily operations and incident handling.
• Provide technical oversight for Scope B, ensuring unified governance between cloud-security and vulnerability-management teams.
• Review and validate Qualys–ServiceNow integration outputs, remediation timelines, and KPI adherence.
• Align cloud-security monitoring with vulnerability- and patch-management operations for consistent risk posture and reporting.
• Coordinate with Information Security and Governance stakeholders for reviews, approvals, and escalations.
• Oversee and deliver awareness and training sessions, including phishing simulations through KnowBe4 (or equivalent).

Qualifications & Skills

• Bachelor’s degree in Computer Science, Cybersecurity, or equivalent.
• 5 + years in cloud security engineering or managed security services.
• Hands-on experience with AWS /Azure security tools and Trend Micro Cloud Risk Management or equivalents (Prisma Cloud, Wiz, etc.).
• Knowledge of SIEM /SOAR (Splunk, QRadar, Microsoft Sentinel) and DevSecOps practices.
• Certifications preferred: CISSP, CISM, CCSP, or Azure/AWS Security Specialty.
• Strong analytical and reporting skills; excellent stakeholder communication.

Job Types: Full-time, Contract
Contract length: 12 months

Pay: BD1,500.000 - BD2,500.000 per month