**Role Purpose** Responsible for the end\-to\-end delivery of Cloud Security Managed Services (Scope A) and provides technical leadership and oversight for Vulnerability Management \& Patching (Scope B) across enterprise environments. Leads posture assessments, architecture design, and implementation of security controls, ensuring full alignment with organizational and regulatory standards. **Key Responsibilities** * Conduct cloud\-security posture assessments for AWS, Azure, Google Cloud, and Oracle environments. * Design and implement secure cloud architectures aligned with NIST CSF, CIS Controls, and ISO 27001\. * Configure and maintain CSPM, IAM (RBAC, MFA, SSO), WAF, and encryption controls. * Integrate SIEM/SOAR tools for 24 × 7 threat monitoring and incident response. * Ensure ongoing compliance with PDPL, PCI DSS, ISO 27001, CBB, SAMA, and CBUAE or other applicable standards. * Produce compliance mappings, dashboards, and KPI reports (MTTD, MTTR, audit success rate). * Supervise and guide the Cloud Security Analyst in daily operations and incident handling. * Provide technical oversight for Scope B, ensuring unified governance between cloud\-security and vulnerability\-management teams. * Review and validate Qualys–ServiceNow integration outputs, remediation timelines, and KPI adherence. * Align cloud\-security monitoring with vulnerability\- and patch\-management operations for consistent risk posture and reporting. * Coordinate with Information Security and Governance stakeholders for reviews, approvals, and escalations. * Oversee and deliver awareness and training sessions, including phishing simulations through KnowBe4 (or equivalent). **Qualifications \& Skills** * Bachelor’s degree in Computer Science, Cybersecurity, or equivalent. * 5 \+ years in cloud security engineering or managed security services. * Hands\-on experience with AWS /Azure security tools and Trend Micro Cloud Risk Management or equivalents (Prisma Cloud, Wiz, etc.). * Knowledge of SIEM /SOAR (Splunk, QRadar, Microsoft Sentinel) and DevSecOps practices. * Certifications preferred: CISSP, CISM, CCSP, or Azure/AWS Security Specialty. * Strong analytical and reporting skills; excellent stakeholder communication. Job Types: Full\-time, Contract Contract length: 12 months Pay: BD1,500\.000 \- BD2,500\.000 per month