Security Architect

We are seeking a Security Architect with expertise in AWS Cloud Security and Enterprise Security Architecture to design, govern, and maintain secure-by-design solutions across infrastructure, applications, and DevSecOps pipelines. This role combines strategic security governance with hands-on AWS expertise, ensuring that all workloads, integrations, and tools entering the organization are secure, resilient, and compliant with both international and UAE regulatory requirements.

Key Responsibilities:

• Design secure solutions across AWS services including VPC, IAM, KMS, GuardDuty, Macie, Inspector, CloudTrail, Config, WAF, Shield, Secrets Manager, Control Tower, and Landing Zones.
• Lead Cloud Security Posture Management (CSPM) and Cloud Workload Protection Platform (CWPP) programs utilizing AWS-native and third-party solutions.
• Embed DevSecOps practices into CI/CD, focusing on IaC scanning, container/Kubernetes security, and Lambda/serverless hardening.
• Define architectures for secure APIs/microservices and SaaS applications, ensuring strong identity, encryption, and monitoring controls.
• Maintain enterprise security architecture frameworks and reference models across applications, data, networks, identity, and infrastructure.
• Establish and promote Zero Trust and defense-in-depth security models across cloud and enterprise environments.
• Conduct threat modeling, risk assessments, and security design reviews for enterprise projects.
• Ensure compliance with regulations such as ISO 27001, NIST CSF, CIS Benchmarks, PCI DSS, SOC 2, GDPR, and UAE PDPL, NESA, and CBUAE.
• Review and approve security posture of integrations, third-party applications, and SaaS platforms before onboarding.
• Collaborate with IT, product, and procurement teams to establish a security evaluation and approval workflow for new technology.
• Oversee IAM/PAM, DLP, SIEM/SOAR, EDR/XDR, and AWS key management implementations.
• Partner with Security Operations Center (SOC)/Managed Security Service Provider (MSSP) for monitoring, detection, and response capabilities.
• Support incident response with architectural guidance and root cause analysis.
• Act as a trusted advisor to IT, DevOps, product, and leadership teams, promoting a security-first culture.

Qualifications:

• Bachelor’s or master’s degree in computer science, Cybersecurity, or a related field.
• 8–12 years of IT/security experience, with a minimum of 5 years in AWS security and enterprise security architecture.
• Expertise with the AWS Well-Architected Framework and AWS native security services.
• Strong knowledge of enterprise security frameworks (e.g., SABSA, TOGAF, NIST CSF, MITRE ATT&CK).
• Practical experience with DevSecOps, IaC scanning, container/Kubernetes security, and SaaS integration security reviews.
• Familiarity with UAE regulations (PDPL, NESA, CBUAE).

Preferred Certifications:

• AWS Certified Security – Specialty (mandatory).
• CISSP-ISSAP / SABSA (architecture).
• AWS Solutions Architect – Professional.
• CCSP, CISM, or GCSA (cloud/application security).

Key Competencies:

• A hybrid mindset combining strategic security design with hands-on AWS expertise.
• Strong skills in integration/vendor risk assessment.
• Analytical and problem-solving capabilities with expertise in threat modeling.
• Ability to communicate effectively with technical, business, and executive stakeholders.
• A commitment to continuous learning, staying informed about AWS innovations and the evolving threat landscape.

Location: Abu Dhabi Emirate, United Arab Emirates
Work Conditions: On-site, Full-time