Enable job alerts via email!
Cloud Security (InfoSec) Specialist
Fusion Outsourcing
Doha
On-site
QAR 200,000 - 400,000
Full time
Today
Be an early applicant
Generate a tailored resume in minutes
Land an interview and earn more. Learn more
Job summary
A leading cloud consulting firm is seeking a Cloud Security Engineer to ensure secure, compliant cloud environments. The role involves developing policies, handling risk assessments, designing identity governance models, and preparing for audits while fostering operational excellence. Ideal candidates have a Bachelor's degree in a relevant field and 3-5 years of experience in cloud security with knowledge of AWS, Azure, or GCP.
Qualifications
- Hands-on experience with governance and compliance for at least 3-5 years.
- Certifications such as CCSP or CISSP are preferred.
- Knowledge of relevant standards like ISO 27001 and NIST.
Responsibilities
- Establish and enforce cloud security policies and best practices.
- Conduct risk assessments and manage exceptions.
- Design RBAC/ABAC access governance models.
Skills
Cloud security governance
Risk assessment
Identity & Access Management
Education
Bachelor’s degree in Computer Science or equivalent
Tools
AWS
Azure
GCP
Job description
Job-Specific Skills & Responsibilities
The Cloud Security Engineer ensures secure and compliant cloud environments, implementing governance, risk, and assurance practices while supporting cloud adoption and operational excellence.
Key Responsibilities
1. Cloud Governance and Standards
- Establish and enforce cloud security policies, standards, and best practices.
- Maintain compliance with internal policies and external regulations.
2. Risk & Exception Management
- Conduct risk assessments on cloud services and workloads.
- Propose compensating controls for exceptions.
- Manage exception register with defined expiry and review cadence.
3. Identity & Access Governance
- Design and implement RBAC/ABAC models, SoD matrices, privileged access patterns, and break-glass procedures.
- Lead quarterly access reviews and capture evidence.
4. Data Protection
- Classify data and define encryption standards for data at rest and in transit.
- Manage key lifecycle (KMS/Key Vault/Cloud KMS), including BYOK/HYOK guidance.
- Implement DLP guardrails and data handling policies.
5. Logging & Monitoring
- Define mandatory telemetry and logging requirements (CloudTrail, Azure Activity, GCP Audit).
- Ensure log retention, integrity controls, and SIEM onboarding use cases.
6. Cloud Posture Management
- Configure and tune CSPM, CIEM, and CNAPP policies.
- Triage high-severity findings, assign ownership, and track remediation SLAs.
7. Incident Response Enablement
- Develop cloud-specific IR playbooks (privilege escalation, exposed storage, key compromise).
- Define evidence collection and containment procedures for SOC operations.
8. Compliance & Audit Readiness
- Map controls to ISO 27001, GDPR, Qatar Cloud Policy frameworks.
- Produce test procedures and evidence plans; support audits with minimal findings.
9. Stakeholder Communication
- Prepare clear risk narratives and decision records for engineering leads, product owners, and auditors.
10. Nice-to-Have / Advanced Skills
- DevSecOps Oversight: Policy-as-code checks (OPA/Kyverno/Conftest), IaC compliance gates (Terraform/ARM/Bicep), artifact integrity (signing/SBOM/SLSA).
- Kubernetes/Container Governance: Pod Security Standards, admission policy enforcement, registry controls, runtime policy baselines.
- SaaS Security Reviews: Conduct due diligence and ongoing assurance for high-risk SaaS applications (identity, data residency, logging, export controls).
- Data Residency & Sovereignty: Design guardrails and map regulatory constraints for regional compliance.
Requirements
Minimum Qualifications
- Bachelor’s degree in Computer Science, Information Security, IT, or equivalent hands‑on experience.
- Nice‑to‑have certifications: CCSP, CISSP, ISO 27001 Lead Implementer/Auditor, Microsoft SC‑100/SC‑200, AWS Security Specialty, GCP Cloud Security Engineer.
- Knowledge of CIS Benchmarks, ISO 27001/27017/27018, NIST 800‑53/CSF, CSA CCM, MITRE ATT&CK (Cloud).
Minimum Experience
- 3–5+ years in cloud security governance and assurance.
- Hands‑on experience with at least one major cloud provider (AWS, Azure, GCP).
Submission date: Please submit CV's on or before 02nd December 2025.
Get your free, confidential resume review.
or drag and drop a PDF, DOC, DOCX, ODT, or PAGES file up to 5MB.
'/%3e%3cpath%20d='M101.744%2012.4726L102.894%2016.1947L99.0021%2013.2201L101.744%2012.4726ZM105.3%208.40937H100.488L99.0026%203.59473L97.5116%208.41047L92.7%208.40385L96.5965%2011.3834L95.1055%2016.1942L99.0021%2013.2196L101.408%2011.3834L105.3%208.40992V8.40937Z'%20fill='white'/%3e%3cdefs%3e%3clinearGradient%20id='paint0_linear_5593_1381'%20x1='90'%20y1='9.44471'%20x2='99'%20y2='9.44471'%20gradientUnits='userSpaceOnUse'%3e%3cstop%20stop-color='%2300AD70'/%3e%3cstop%20offset='0.998594'%20stop-color='%2300B67A'/%3e%3cstop%20offset='1'%20stop-color='%23DCDCE6'/%3e%3c/linearGradient%3e%3c/defs%3e%3c/svg%3e){kind=small}
Michael Carter
I was stuck sending out resumes with no response until I used JobLeads. They made my resume impossible for recruiters to ignore.
Sophie Reynolds
JobLeads' resume review helped me fix critical mistakes, and I started getting interviews almost immediately!
Daniel Fischer
With JobLeads' resume review, my resume went from overlooked to interview-ready in no time!