Senior Cloud Security Engineer
Devsinc
Employer Active
Posted 5 hrs ago
Send me Jobs like this
Experience
7 - 14 Years
Job Location
Education
Bachelor of Technology/Engineering(Computers)
Nationality
Any Nationality
Gender
Not Mentioned
Vacancy
1 Vacancy
Job Description
Roles & Responsibilities
Key Responsibilities:
- Own and implement cloud security architectures and landing-zone guardrails across network, identity, data, and logging layers.
- Secure configurations for databases, storage, serverless, and other cloud-native services.
- Design and enforce least-privilege IAM, including SSO (SAML/OIDC) and PAM workflows.
- Implement key and credential lifecycle management, including MFA, short-lived tokens, and machine identity governance.
- Ensure data protection via encryption at rest and in transit, along with tokenization where required.
- Define and enforce network segmentation, private connectivity, secure egress, and API security.
- Implement protections such as WAF, DDoS mitigation, and bot defense mechanisms.
- Establish and manage Zero Trust access models for users and services.
- Integrate security scanning tools (SAST, DAST, Secrets, IaC) into CI/CD pipelines.
- Maintain compliance and audit readiness for SAMA, NCA, ISO 27001, PCI DSS, SWIFT CSP.
- Develop and enforce policies-as-code, tagging standards, and exception workflows.
- Integrate and manage cloud logs within SIEM platforms (e.g., Splunk).
- Orchestrate cloud and container security scanning, track remediation SLAs, and collaborate with engineering teams.
- 7 12 years of experience in cybersecurity, including 3+ years securing public cloud environments (GCP or OCI preferred).
- Mandatory experience in fintech, banking, or highly regulated industries.
- Strong expertise in IAM/SSO/PAM, KMS/HSM, PKI, and key rotation strategies.
- Hands-on experience with cloud security platforms: CSPM, CNAPP, CWPP, CIEM, and native tools (e.g., GCP SCC, OCI Cloud Guard).
- Deep understanding of network and web security: VPC/VNet, routing, private link, TLS/mTLS, API gateways.
- Experience with container and Kubernetes security, including runtime protection and network policies.
- Proficiency in DevSecOps tools: Terraform, CI/CD pipelines, scripting (Python/PowerShell), and log analysis (SQL/Regex).
- Strong familiarity with regulatory frameworks:
- SAMA Cybersecurity Framework
- NCA ECC
- ISO 27001
- PCI DSS
- SWIFT CSP
- Experience integrating security monitoring with SIEM tools (Splunk preferred).
Desired Candidate Profile
We are looking for a >Cloud Security Engineer/strong> with mandatory experience in strong>banking, fintech, or regulated sectors/strong> to lead the design and implementation of strong>secure, compliant cloud infrastructures/>. The candidate must have a strong understanding of strong>regulatory frameworks and enterprise-grade security controls/>, with the ability to operate in high-compliance environments.
- Cloud certifications (GCP, OCI, AWS, or Azure Security)
- Experience in strong>banking, fintech, or regulated environments/>
- Strong documentation, communication, and stakeholder management skills
What We re Looking For:
- Strong problem-solving mindset with a strong>security-first approach/>
- Ability to work cross-functionally with strong>DevOps, Engineering, and Compliance teams/>
- Ownership-driven individual who can strong>design and implement scalable security solutions/>
Company Industry
- IT - Software Services
Department / Functional Area
- IT Software
Keywords
- Senior Cloud Security Engineer
Disclaimer: Naukrigulf.com is only a platform to bring jobseekers & employers together. Applicants are advised to research the bonafides of the prospective employer independently. We do NOT endorse any requests for money payments and strictly advice against sharing personal or bank related information. We also recommend you visit Security Advice for more information. If you suspect any fraud or malpractice, email us at abuse@naukrigulf.com