Responsibilities
- Lead Cloud Security Strategy Alignment
- Collaborate with clients to align cloud security management strategies with their business goals, ensuring security frameworks support both current and future business needs
- Develop and Implement Cloud Security Frameworks
- Design and guide the implementation of strategic and tactical security frameworks for cloud environments, particularly within the Google Cloud Platform (GCP).
- Conduct Technical Reviews of Cloud Security Architecture
- Perform in-depth technical reviews of clients’ cloud security architectures, identifying vulnerabilities and recommending enhancements to strengthen security posture
- Provide Expert Guidance on Cloud Security Best Practices
- Serve as a trusted advisor on best practices for securing cloud environments, offering recommendations tailored to GCP and specific industry needs
- Architect Security Solutions for Hybrid Environments
- Develop security solutions for both on-premises and cloud environments, ensuring consistency in security controls and policies across traditional and evolving infrastructures
- Perform Risk Assessments and Security Audits
- Conduct regular risk assessments and security audits to identify potential threats, vulnerabilities, and gaps in existing cloud security measures, prioritizing remediation actions
- Guide Compliance and Regulatory Adherence
- Ensure that cloud security frameworks and practices meet relevant compliance standards and regulatory requirements, assisting clients with alignment to industry frameworks such as ISO, NIST, and GDPR
- Collaborate with Cross-Functional Teams
- Work closely with various internal and client teams, including IT, compliance, and business units, to integrate cloud security practices into all aspects of operations and project planning
- Stay Updated on Emerging Cloud Security Threats
- Monitor emerging trends, risks, and technologies in cloud security, especially as they relate to GCP, and update security strategies to address evolving threats
- Conduct Technical Training and Knowledge Sharing
- Provide technical training and guidance on GCP security architecture to internal teams and clients, fostering a strong understanding of cloud security best practices
- Oversee Incident Response and Cloud Security Monitoring
- Establish and manage protocols for cloud security incident response, coordinating closely with client teams to investigate and address security incidents efficiently
- Prioritize and Manage Security Workloads
- Effectively prioritize tasks and adapt to changing project demands, balancing multiple security initiatives and shifting client needs in a fast-paced environment.
- Travel to Client Sites for Hands-On Support
- Frequently travel to client locations in the Middle East to provide hands-on support, lead security discussions, and deliver in-person expertise on GCP security.
Requirements
- In-Depth Knowledge of Google Cloud Platform (GCP)
- Strong understanding and hands-on experience with GCP architecture, services, and security configurations
- Proficiency in Cloud Security Standards
- Knowledge of established cloud security standards, such as NIST, CIS, ISO, and CSA STAR, with the ability to implement them effectively
- Bachelor’s Degree in a Relevant Field
- A degree in Information Technology, Computer Science, Computer Engineering, Information Systems, or a related discipline
- Relevant Cloud Certifications
- Certification in GCP, such as Google Associate Cloud Engineer, Google Professional Cloud Security Engineer, or Google Professional Cloud DevOps Engineer
- Experience Delivering High-Quality Client Services
- Proven ability to consistently produce high-quality deliverables within established timeframes and budget constraints, ensuring client satisfaction
- Technical Knowledge in Key Security Domains
- Strong technical expertise in areas such as routing/switching, firewalls (stateful and NGFW), DDoS mitigation, web application firewalls, IDS/IPS, and network segmentation
- Experience with Threat and Vulnerability Management Tools
- Familiarity with security information and event management (SIEM), deceptive technologies, and other tools used for threat detection and vulnerability management
- Excellent Presentation and Communication Skills
- Strong skills in communicating complex technical concepts clearly to clients, stakeholders, and team members, both in writing and presentations
- Ability to Evaluate New Cloud Security Technologies
- Proficiency in assessing emerging cloud security tools and technologies, making recommendations based on their applicability and potential impact
- Hands-On Expertise in Cloud Security Configurations
- Practical experience in configuring and managing cloud security controls, especially within the GCP ecosystem
- Knowledge of Network Security Protocols
- Understanding of network security protocols and best practices, with experience implementing them in both cloud and on-premises environments.
- Strong Problem-Solving and Adaptability Skills
- Ability to analyze and address security challenges in dynamic and fast-changing environments, prioritizing solutions effectively
- Collaboration with Cross-Functional Teams
- Experience working closely with cross-functional teams to align security measures with broader business goals and IT infrastructure.
- High Motivation and Client-Focused Mindset
- Self-motivated with a focus on delivering value to clients, meeting their security needs, and building trust through reliability and expertise.
- Willingness to Travel Frequently
- Flexibility and readiness to travel to client locations in the Middle East
What we offer
- B2B Contract
- Employment based on a B2B contract
- Stable and Dynamic International Firm
- Opportunity to work in a stable, dynamically developing international company
- Engaging Projects and Latest IT
- Chance to participate in interesting projects and work with the latest information technologies
- Competitive Rates
- Attractive remuneration rates offered.
- Renowned International Projects
- Involvement in the most prestigious international projects.
- Multisport and Private Medical Care
- Access to Multisport benefits and private healthcare services.
Nice to have
- Knowledge of DevOps and DevSecOps Methodologies
- Familiarity with DevOps and DevSecOps practices, with the ability to integrate security measures into continuous integration and deployment pipelines.
- Proficiency in Security as Code (SaC)
- Experience implementing “Security as Code” approaches, automating security practices within infrastructure and deployment processes to enforce consistency and improve response times.
- Experience Recommending Cloud Security Best Practices
- Demonstrated ability to advise clients on best practices for cloud security controls and measures, tailoring recommendations to meet specific business and compliance needs.
- Expertise in Cloud Computing Technology Recommendations
- Ability to assess and recommend cloud computing tools and practices that align with client needs, enhancing security and efficiency within cloud environments
Work with us
Apply & join the team
Didn’t find anything for yourself? Send your CV to [email protected]