Cloud Security Staff Engineer – Riyadh or Remote

Cloud Security Staff Engineer – Riyadh or Remote, Full Time
NOTE: IN ORDER TO BE CONSIDERED FOR THIS POSITION YOU MUST BE WILLING TO WORK THE KSA WORKING WEEK, WHICH IS FROM SUNDAY – THURSDAY AT TIME ZONE GMT -3.
We are looking for an experienced Cloud Security Staff Engineer to join our client’s Cloud Engineering team, based either in Riyadh, KSA or Remote within a suitable time zone.
In this key role, you will design, implement, and maintain secure cloud environments that align with best practices and organizational goals. Partnering closely with our Cybersecurity team, you will lead initiatives to enhance cloud security, improve Identity and Access Management (IAM) strategies, and ensure the confidentiality, integrity, and availability of our cloud infrastructure.
Responsibilities:

Design and implement secure cloud architectures in alignment with industry standards and organizational objectives.

Develop and manage robust IAM policies to ensure secure identity federation and least-privilege access.

Enforce advanced network security controls, including firewalls, VPNs, and zero-trust principles, to protect cloud environments.

Work closely with the Cybersecurity team to identify risks, define security requirements, and maintain cross-departmental alignment.

Lead investigations into cloud security incidents, implement remediation strategies, and develop proactive mitigation measures.

Ensure cloud environments meet regulatory and organizational compliance standards (e.g., GDPR, ISO 27001, NIST, SOC 2).

Integrate security tools into CI/CD pipelines for automated vulnerability scanning, compliance checks, and secure deployments.

Deploy cloud-native security solutions to detect and respond to threats in real-time.

Create and maintain detailed documentation of security policies, procedures, and architectures to support audits and internal knowledge sharing.

Provide guidance and mentorship to engineers on cloud security best practices and emerging technologies.

Qualifications:

Education:

Bachelor’s degree in Computer Science, Engineering, or a related field, or equivalent experience.

Experience:

7+ years in cybersecurity, cloud engineering, or a related field.

Proven experience securing major cloud platforms like AWS, Azure, or Google Cloud Platform (GCP).

Technical Skills:

In-depth knowledge of cloud security architecture and tools, including IAM, encryption, and WAF.

Hands-on expertise with IAM policies, roles, and permissions in cloud environments.

Proficiency in scripting/programming (e.g., Python, Go).

Familiarity with container security tools (e.g., Kubernetes, Docker).

Experience with DevSecOps practices and tools (e.g., Terraform, Jenkins, Git).

Soft Skills:

Strong collaboration, problem-solving, and communication skills.

Preferred Qualifications:

Certifications: AWS Certified Security – Specialty, Microsoft Azure Security Engineer, GCP Professional Cloud Security Engineer, or Certified Identity and Access Manager (CIAM).

Expertise in complex IAM scenarios, such as multi-cloud environments and hybrid identities.

Experience with securing hybrid cloud and multi-cloud architectures.

Knowledge of Security Information and Event Management (SIEM) systems.

Experience with serverless computing security and microservices.

FOR MORE INFORMATION
CONTACT Dan Wardle

Kingston Stanley