Manager Cyber Security (Cloud Security)

Role Overview

This position is for a senior cloud security specialist who will shape and oversee security architecture across Microsoft Azure, Google Cloud Platform (GCP), and major SaaS ecosystems such as Oracle Fusion, Salesforce, Google Workspace, Adobe Creative Cloud, and LinkedIn Enterprise. The role is centered on building secure, scalable, and compliant environments while applying strong cloud-native security and identity principles.

Key Responsibilities

The selected professional will design, implement, and govern security controls across multi-cloud and SaaS platforms, working closely with engineering, operations, and business teams to embed protection into architecture and daily operations.

Cloud Security Architecture and Engineering

For Azure, the role involves creating secure cloud foundations using tools such as Defender for Cloud, Sentinel, Azure Policy, Blueprints, and Key Vault. It also includes reviewing Privileged Identity Management, Conditional Access, Managed Identities, and Just-In-Time access, as well as designing hybrid and multi-tenant environments with Zero Trust practices. Monitoring and telemetry should be integrated through Azure Monitor, Log Analytics, and Defender for Cloud.

For GCP, responsibilities include deploying and administering Security Command Center, IAM roles, VPC Service Controls, and Cloud Armor. The role also calls for enforcing Organization Policies, Workload Identity Federation, and Binary Authorization, while using tools such as Forseti Security, Cloud Audit Logs, and Chronicle to strengthen compliance and threat visibility.

DevSecOps and Automation

Security must be embedded into delivery pipelines using GitHub Actions, Azure DevOps, and GCP Cloud Build. The role also requires automating security standards and baseline controls through Infrastructure as Code, particularly Terraform.

Identity, Access, and SaaS Security

The position includes designing federated identity models across Azure AD, GCP IAM, and SaaS applications using SSO, SAML, OAuth2, and OpenID Connect. It also involves implementing RBAC and ABAC, running access reviews, managing entitlements, and ensuring least-privilege access with proper segregation of duties.

For Oracle Fusion, the role includes applying role-based controls, data masking, audit trails, and integration security, along with reviewing roles for financial and privacy compliance. For Salesforce, it includes Shield Encryption, Field Audit Trail, Event Monitoring, secure API integrations, and permission and session monitoring. For Google Workspace, the focus is on DLP, context-aware access, sandboxing, audit-log review, and CASB integration. For Adobe Creative Cloud, access to licensed applications must be restricted and collaboration activity monitored. For LinkedIn Enterprise, secure access to learning and recruiter tools must be maintained along with monitoring and data-sharing controls.

Cybersecurity Operations, Risk, and Governance

The role will lead threat modeling, cloud and hybrid risk assessments, and architecture reviews. It requires close collaboration with SOC and incident response teams to feed cloud telemetry into SIEM and SOAR tools, and to develop incident playbooks for cloud and SaaS scenarios. The person will also drive proactive reviews of cloud infrastructure to improve security posture.

Governance responsibilities include aligning controls with ISO 27001, NIST, GDPR, SOC 2, and aviation-related standards such as ICAO, IATA, and DO-326A. The role also includes reviewing audit findings and risk assessments, implementing remediation, and tracking progress through KPIs and maturity assessments.

Leadership and Collaboration

This role partners with IT, DevOps, and business stakeholders to ensure security is built into cloud and SaaS strategy from the start. It also involves mentoring junior architects and engineers and representing cybersecurity in architecture review forums and strategic planning discussions.

About the Organization

The employer describes a fast-growing global group with a strong culture of ambition, innovation, and large-scale impact. The environment is positioned as one where people can contribute to challenging work, develop their skills, and grow within an international community.

Qualifications

A bachelor’s degree in Information Security or a related discipline is required. The ideal candidate should bring at least 8 years of cybersecurity experience, including a minimum of 5 years focused on cloud and SaaS security architecture. Practical experience with Azure and GCP security services, plus SaaS platforms such as Oracle Fusion and Salesforce, is expected. A strong grasp of IAM, encryption, network security, data protection, and compliance frameworks is essential.

Preferred or accepted certifications include CCSP, CISSP, Google Cloud Certified Fellow – Security, Azure Security Engineer Associate, GCP Professional Cloud Security Engineer, and SANS GIAC Cloud Security Automation (GCSA). A master’s degree in Information Security or a related field is preferred. Experience with aviation-industry SaaS compliance, DevSecOps, CI/CD security, and Terraform will be an advantage. Strong analytical ability, clear communication, and solid documentation skills are also important.

Application Details

Reference number: 226054. Location: Doha, Qatar. Job family: Corporate & Commercial. Closing date: 2026-06-24.

Applicants are expected to submit a CV and complete the application form through the employer’s recruitment process.