Senior Cloud Security Consultant

Senior Cloud Security Consultant

Role Overview

The Senior Cloud Security Specialist will serve as a lead security advisor within the CoE, supporting government organizations in their journey toward secure and compliant cloud adoption.

With deep expertise in both Google Cloud Platform (GCP) and Microsoft Azure, the specialist acts as a trusted advisor, ensuring alignment with Kuwait’s National Cybersecurity Strategy, data residency laws, and international best practices.

This profile brings a cloud-provider-agnostic approach, focusing on high-level strategic and technical security advisory tailored to the unique regulatory and operational landscape of the Kuwaiti public sector.

Key Responsibilities

• Strategic advisory on secure cloud adoption for public sector entities transitioning to or operating in GCP and Azure environments.
• Evaluate and guide the design of secure cloud landing zones, cloud governance frameworks, and risk mitigation strategies.
• Assessment of cloud architectures for compliance with national benchmarks and best practices.
• Guidance on IAM, network segmentation, data protection, incident response, and threat modeling.
• Ensure alignment with data residency and sovereignty laws in Kuwait.
• Collaborate with cloud providers and government stakeholders to design secure multi-cloud and hybrid cloud architectures.
• Create and maintain security reference architectures, policies, and cloud security roadmaps.
• Contribute to the creation of cloud security standards and playbooks for public entities.
• Provide mentorship and knowledge transfer to internal security teams and stakeholders.
• Keep abreast of regional and global cybersecurity developments and cloud-native security capabilities.

Qualifications

• Over 5 years of experience in cybersecurity, with strong specialization in cloud security.
• Hands-on expertise in GCP and Azure security tools, configurations, and compliance models.
• Deep knowledge of cloud security principles including Zero Trust, DevSecOps, and security automation
• Strong knowledge of global compliance standards including ISO 27001, NIST, and data privacy laws.
• Professional certifications preferred: Google Cloud Security Engineer, Azure Security Engineer Associate, Certificate of Cloud Security Knowledge (CCSK) or equivalent.
• Experience working in or advising public sector organizations or regulated industries.
• Familiarity with GCC and Kuwaiti government cybersecurity policies, particularly CITRA cloud frameworks and Kuwait National Cybersecurity Strategy.
• Excellent communication and stakeholder management skills in English.